Can I enable below mentioned metrics using check_mk. If below can be monitored let me know the steps or provide me guide
1.Network ping response
2.Server TOD response
3.Windows Systems Log - Netlogon
4.Windows Security Log - Audit (>3 Audit Failures)
5.Windows Application Log (Error)
every host has automatically an host check and this is a normal ping if you don’t use the enterprise edition
If you mean the time then you get this automatically also with the agent output from your host as difference to your monitoring system
The agent has some possible configuration options for this.
From the example config file.
logwatch:
# enabled: yes
# sendall: no # this is MANDATORY
# vista_api: no # this is RECOMMENDED
# max_size: 500000 # default value
# entries in the windows eventlog
logfile:
# - 'EventLogName': <crit|warn|all|off> + [context|nocontext]
# - 'Application': crit context # example
# - 'System': warn nocontext # another example
# - 'YourOwn': all nocontext # yet another example
# - '*': warn nocontext # This is default params for not missing entries
What you see is that it is not possible to set a general failure counter you need to transfer the events to CMK and then process these events than there.
This can be achieved by forwarding the Windows Event Logs to the checkmk Event Console and counting the messages there before opening an event.
r.sander thanks for the info.
Can u please give me a guide or steps/screenshots for implementing this.
The very big article from the manual about the Event Console should be a good start.
This topic was automatically closed 365 days after the last reply. New replies are no longer allowed. Contact @fayepal if you think this should be re-opened.