Enabling Monitoring of Instances and Application Partitions that use SSL

  • Article

Applies To: Operations Manager 2007

When AD LDS instances start, they will enable or disable Secure Sockets Layer (SSL) connections depending on the availability of a valid certificate on the computer. The AD LDS Management Pack does not assume that you want SSL communications monitored by default. Instead, you must specifically enable SSL monitoring in the AD LDS Management Pack. This approach has the benefit of allowing you to decide whether you want to monitor this type of communication. Further, if you do enable it, and something happens to your certificate (such as expiration) that causes SSL communications to stop, you will be notified by the management pack that there is an issue. However, if you decide to stop using SSL communication, and you had previously enabled monitoring of SSL, then you will also have to turn off monitoring in order to prevent the reporting of alerts you no longer care about.

To perform the procedures in this section, you must be a member of the Operations Manager Administrators group in the Operations console. For more information, see Account Information for Operations Manager 2007(https://go.microsoft.com/fwlink/?LinkId=165736).

To enable monitoring of an instance that uses SSL

  1. On your management server, open the Operations Console, and then click Authoring.

  2. In the navigation pane, ensure that Management Pack Objects is expanded and then click Monitors.

  3. In the Monitors pane, expand the following objects Services Instance, Entity Health, Availability..

  4. Right-click LDAP Bind Over SSL and then click, Override, click Override the Monitor, click For a specific object of type: Service Instance

  5. In the Select Object dialog box, you will see the AD LDS instances detected by the AD LDS Management Pack. Click the instance that you would like to monitor and then click OK.

  6. In the Override Properties dialog box, in the Override-controlled parameters table, select the Override checkbox that is in the Enabled row

    Tip

    You can find the row names of the Override-controlled parameters table in the Parameter Name column of the table.

  7. In the Enabled row, change the Override Setting column from False to True and then select the Enforced checkbox.

To enable monitoring of an application partition that uses SSL

  1. In the Operations Console, ensure that Authoring is selected.

  2. In the navigation pane, ensure that Management Pack Objects is expanded and that Monitors selected.

  3. In the Monitors pane, expand the following objects Application Partition, Entity Health, Availability..

  4. Right-click LDAP Bind Over SSL and then click, Override, click Override the Monitor, click For a specific object of type: Application Partition

  5. In the Select Object dialog box, you will see the AD LDS instances detected by the AD LDS Management Pack. Click the instance that you would like to monitor and then click OK.

  6. In the Override Properties dialog box, in the Override-controlled parameters table, select the Override checkbox that is in the Enabled row

    Tip

    You can find the row names of the Override-controlled parameters table in the Parameter Name column of the table.

  7. In the Enabled row, change the Override Setting column from False to True and then select the Enforced checkbox.