Quest InTrust Connector for Microsoft System Center Operations Manager User

Similar documents
Quest InTrust Preparing for Auditing and Monitoring Solaris

CaseWare Working Papers. Data Store user guide

Quest InTrust Preparing for Auditing and Monitoring Linux

Wave IP 4.5. CRMLink Desktop User Guide

AvePoint Timeline Enterprise for Microsoft Dynamics CRM

AvePoint Pipeline Pro 2.0 for Microsoft Dynamics CRM

Introduction to Mindjet on-premise

Release Notes Version: - v18.13 For ClickSoftware StreetSmart September 22, 2018

Admin Report Kit for Exchange Server

EView/400i Management Pack for Systems Center Operations Manager (SCOM)

SMART Room System for Microsoft Lync. Software configuration guide

VMware AirWatch Certificate Authentication for Cisco IPSec VPN

Customer Information. Agilent 2100 Bioanalyzer System Startup Service G2949CA - Checklist

CROWNPEAK DESKTOP CONNECTION (CDC) INSTALLATION GUIDE VERSION 2.0

Date: October User guide. Integration through ONVIF driver. Partner Self-test. Prepared By: Devices & Integrations Team, Milestone Systems

HP Universal CMDB. Software Version: Backup and Recovery Guide

Group Policy Manager Quick start Guide

LiveEngage and Microsoft Dynamics Integration Guide Document Version: 1.0 September 2017

Graduate Application Review Process Documentation

Dear Milestone Customer,

USO RESTRITO. SNMP Agent. Functional Description and Specifications Version: 1.1 March 20, 2015

Universal CMDB. Software Version: Backup and Recovery Guide

STIDistrict AL Rollover Procedures

Launching Xacta 360 Marketplace AMI Guide June 2017

VMware EVO:RAIL Customer Release Notes

NiceLabel LMS. Installation Guide for Single Server Deployment. Rev-1702 NiceLabel

DocAve 6 Software Platform

TPP: Date: October, 2012 Product: ShoreTel PathSolutions System version: ShoreTel 13.x

Troubleshooting Citrix- Published Resources Configuration in VMware Identity Manager

TDR and Trend Micro. Integration Guide

AvePoint Accessibility Accelerator 2.0

Avigilon Control Center Server User Guide. Version 6.4

ESET REMOTE ADMINISTRATOR PLUG-IN FOR KASEYA Technical Setup and User Guide. Click here to download the latest version of this document

Quick Guide on implementing SQL Manage for SAP Business One

OATS Registration and User Entitlement Guide

Shavlik Protect. Migration Tool User s Guide

Shavlik Protect. Upgrade Guide

INSTALLING CCRQINVOICE

BMC Remedyforce Integration with Remote Support

Avigilon Control Center Server User Guide. Version 6.8

Enterprise Chat and Developer s Guide to Web Service APIs for Chat, Release 11.6(1)

Virtual Office

Avigilon Control Center Virtual Matrix User Guide. Version 6.8

Aras Innovator Viewer Add-Ons

Shavlik Protect. Upgrade Guide

UPGRADING TO DISCOVERY 2005

SANsymphony Installation and Getting Started Guide. November 7, 2016

Demand Forecasting. For. Microsoft Dynamics 365 for Operations. Technical Guide. Release 7.1. December 2017

Adverse Action Letters

Kaltura Video Extension for SharePoint 2013 Deployment Guide for Microsoft Office 365. Version: 1.0

Your New Service Request Process: Technical Support Reference Guide for Cisco Customer Journey Platform

HPE AppPulse Mobile. Software Version: 2.1. IT Operations Management Integration Guide

OO Shell for Authoring (OOSHA) User Guide

Oracle Universal Records Management Oracle Universal Records Manager Adapter for Documentum Installation Guide

Technical Paper. Installing and Configuring SAS Environment Manager in a SAS Grid Environment with a Shared Configuration Directory

Upgrade Guide. Medtech Evolution General Practice. Version 1.9 Build (March 2018)

Click Studios. Passwordstate. RSA SecurID Configuration

TDR and Kaspersky. Integration Guide

TDR and Avast Business Antivirus. Integration Guide

DIVAR IP 3000 Field Installation Guide

User Guide. Document Version: 1.0. Solution Version:

Using the Swiftpage Connect List Manager

These tasks can now be performed by a special program called FTP clients.

Integrating QuickBooks with TimePro

Planning, installing, and configuring IBM CMIS for Content Manager OnDemand

TDR & Bitdefender. Integration Guide

Proficy* SmartSignal 6.1 Installation Guide

Campuses that access the SFS nvision Windows-based client need to allow outbound traffic to:

The screenshots/advice are based on upgrading Controller 10.1 RTM to 10.1 IF6 on Win2003

DocAve 6 Granular Backup and Restore

Upgrade Guide. Medtech Evolution Specialist. Version 1.11 Build (October 2018)

Please contact technical support if you have questions about the directory that your organization uses for user management.

Frequently Asked Questions

Refreshing Axiom TEST with a Current Copy of Production Axiom EPM June 20, 2014

DocAve 6 ediscovery. User Guide. Service Pack 3, Cumulative Update 1. Revision F Issued August DocAve 6: ediscovery

TIBCO Statistica Options Configuration

Imagine for MSDNAA Student SetUp Instructions

Compliance Guardian 4. User Guide

Sircon User Guide A Guide to Using the Vertafore Sircon Self-Service Portal

Single File Upload Guide

IMPORTING INFOSPHERE DATA ARCHITECT MODELS INFORMATION SERVER V8.7

REFWORKS: STEP-BY-STEP HURST LIBRARY NORTHWEST UNIVERSITY

TDR and Panda Fusion. Integration Guide

Xerox Security Bulletin XRX12-007

WorldShip PRE-INSTALLATION INSTRUCTIONS: INSTALLATION INSTRUCTIONS: Window (if available) Install on a Single or Workgroup Workstation

Table of Contents. WipeDrive Enterprise Logging, March Logging Settings... 3 Log Format Types Audit Log Destination Options...

HP Server Virtualization Solution Planning & Design

This document describes new features and resolved issues for Intelligent Scene Analysis System

Virtual Server Protection (VSP)

Using the Swiftpage Connect List Manager

Definiens XD Release Notes

ClassFlow Administrator User Guide

Password Reset for Remote Users

Kaltura Video Extension for IBM Connections User Guide. Version: 1.0

FollowMe. FollowMe. Q-Server Quick Integration Guide. Revision: 5.4 Date: 11 th June Page 1 of 26

INTELLISNAP. TECHNOLOGY QUICK START GUIDE Pure Storage FlashArray. Publish Date: July 30, 2015 Distribution: Public Author: Jonathan Howard

Secure File Transfer Protocol (SFTP) Interface for Data Intake User Guide

BMC Remedyforce Integration with Bomgar Remote Support

List Notification Feature

Troubleshooting Citrix- Published Resources Configuration in VMware Identity Manager

Transcription:

Quest InTrust 11.3 Cnnectr fr Micrsft System Center Operatins Manager User

Guide

2017 Quest Sftware Inc. ALL RIGHTS RESERVED. This guide cntains prprietary infrmatin prtected by cpyright. The sftware described in this guide is furnished under a sftware license r nndisclsure agreement. This sftware may be used r cpied nly in accrdance with the terms f the applicable agreement. N part f this guide may be reprduced r transmitted in any frm r by any means, electrnic r mechanical, including phtcpying and recrding fr any purpse ther than the purchaser s persnal use withut the written permissin f Quest Sftware Inc. The infrmatin in this dcument is prvided in cnnectin with Quest Sftware prducts. N license, express r implied, by estppel r therwise, t any intellectual prperty right is granted by this dcument r in cnnectin with the sale f Quest Sftware prducts. EXCEPT AS SET FORTH IN THE TERMS AND CONDITIONS AS SPECIFIED IN THE LICENSE AGREEMENT FOR THIS PRODUCT, QUEST SOFTWARE ASSUMES NO LIABILITY WHATSOEVER AND DISCLAIMS ANY EXPRESS, IMPLIED OR STATUTORY WARRANTY RELATING TO ITS PRODUCTS INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTY OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, OR NON-INFRINGEMENT. IN NO EVENT SHALL QUEST SOFTWARE BE LIABLE FOR ANY DIRECT, INDIRECT, CONSEQUENTIAL, PUNITIVE, SPECIAL OR INCIDENTAL DAMAGES (INCLUDING, WITHOUT LIMITATION, DAMAGES FOR LOSS OF PROFITS, BUSINESS INTERRUPTION OR LOSS OF INFORMATION) ARISING OUT OF THE USE OR INABILITY TO USE THIS DOCUMENT, EVEN IF QUEST SOFTWARE HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. Quest Sftware makes n representatins r warranties with respect t the accuracy r cmpleteness f the cntents f this dcument and reserves the right t make changes t specificatins and prduct descriptins at any time withut ntice. Quest Sftware des nt make any cmmitment t update the infrmatin cntained in this dcument. If yu have any questins regarding yur ptential use f this material, cntact: Quest Sftware Inc. Attn: LEGAL Dept 4 Plaris Way Alis Viej, CA 92656 Refer t ur Web site (https://www.quest.cm) fr reginal and internatinal ffice infrmatin. Patents Quest Sftware is prud f ur advanced technlgy. Patents and pending patents may apply t this prduct. Fr the mst current infrmatin abut applicable patents fr this prduct, please visit ur website at https://www.quest.cm/legal. Trademarks Quest, the Quest lg, and Jin the Innvatin are trademarks and registered trademarks f Quest Sftware Inc. Fr a cmplete list f Quest marks, visit https://www.quest.cm/legal/trademark-infrmatin.aspx. All ther trademarks and registered trademarks are prperty f their respective wners. Legend CAUTION: A CAUTION icn indicates ptential damage t hardware r lss f data if instructins are nt fllwed. IMPORTANT, NOTE, TIP, MOBILE, r VIDEO: An infrmatin icn indicates supprting infrmatin. InTrust Cnnectr fr Micrsft System Center Operatins Manager Updated - May 2017 Versin - 11.3

Cntents Intrductin t InTrust Cnnectr fr Operatins Manager 5 Hw It Wrks 5 Cntents f the Package 7 Using InTrust Cnnectr fr Operatins Manager 8 Sftware Requirements 8 User Rights 8 InTrust OpsMgr Cnnectr Admins Grup 8 Cnnectin t Alert Database and Operatins Manager Server 9 Installing InTrust Cnnectr fr Operatins Manager 10 Step 1: Install InTrust Cnnectr Management Pack 10 Step 2: Install InTrust Cnnectr 10 Unattended Installatin 11 Installatin Using Cmmand Prmpt 11 Installatin Using Grup Plicy 11 Cnfiguring InTrust Cnnectr fr Operatins Manager 12 Befre Yu Begin: Preparing a Custm Alert State 12 Running Cnfiguratin Wizard 12 Wrking with Alerts 17 Alert View Interface 17 Alert Prperties General 18 Alert Prperties Prduct Knwledge 18 Alert Prperties Cmpany Knwledge 19 Alert Prperties Histry 20 Alert Prperties Alert Cntext 20 Alert Prperties Custm Fields 21 Alert Field Mapping 21 Abut us 24 Cntacting Quest 24 Technical supprt resurces 24 InTrust 11.3 Cnnectr fr Micrsft System Center Operatins Manager 4

Intrductin t InTrust Cnnectr fr Operatins Manager InTrust Cnnectr fr Micrsft System Center Operatins Manager (Operatins Manager) 2007/2012 helps establish a single, cmprehensive wrkflw fr managing yur Windws-based netwrk. With InTrust Cnnectr fr Operatins Manager yu can integrate the InTrust capabilities f tracking the business-critical security events int the existing enterprise-wide system f netwrk peratins management. The prduct cnsists f the fllwing cmpnents: InTrust Cnnectr fr Operatins Manager A bridge frwarding alerts frm InTrust t Operatins Manager. It ptinally can frward updates t the alerts frm Operatins Manager back t InTrust. InTrust Cnnectr Management Pack Required fr InTrust Cnnectr's peratin. Hw It Wrks InTrust Cnnectr fr Operatins Manager allws yu t frward alerts stred in the InTrust Alert database t Operatins Manager s that persnnel in charge can view and reslve the alerts using the Operatins Manager user interface. The wrkflw is implemented thrugh InTrust, InTrust Cnnectr fr Operatins Manager, and Operatins Manager. NOTES: Yu can install these cmpnents using any deplyment scheme that suits yur netwrk envirnment and meets the system requirements listed in this dcument. Fr example, t evaluate the slutin in a test lab, yu can install all required cmpnents n a single cmputer. A dedicated InTrust Cnnectr is used t frward alerts frm a single Alert database, s yu must deply a separate InTrust Cnnectr instance fr each Alert database yu want t frward alerts frm. A sample deplyment is shwn in the figure belw. InTrust 11.3 Cnnectr fr Micrsft System Center Operatins Manager Intrductin t InTrust Cnnectr fr Operatins Manager 5

The steps in the prcess are as fllws: 1. T prvide fr interactin between Operatins Manager and InTrust Cnnectr, a specially develped Management Pack is installed n the Operatins Manager Server. 2. Alerts are generated by InTrust upn certain cnditins. InTrust Server stres alerts in the InTrust Alert database. 3. InTrust Cnnectr service scans this database, applying filters t the alerts (i.e., selecting them by severity r ther criteria). Selected alerts are frwarded t Operatins Manager t be prcessed by persnnel in charge. 4. During alert frwarding prcess, the InTrust Cnnectr Management Pack maps InTrust alert fields int Operatins Manager alert recrd fields; then this recrd is stred t the Operatins Manager database. Alert field mapping is described in the Alert Field Mapping tpic. NOTE: Alert states are adjusted after the initial synchrnizatin cmpletes. Until then, the riginal state value is kept in the alert recrd's custm field #9. Fr details, see the Wrking with Alerts tpic. 5. An authrized peratr views and reslves the alert received, changing the alert's status in the Operatins Manager cnsle. 6. Alert infrmatin is updated in bth the Operatins Manager and InTrust databases. InTrust Cnnectr is subscribed t the alerts it has created and stred t the Operatins Manager database (they are identified by the Cnnectr GUID stred in the alert recrd's custm field #10). InTrust Cnnectr service peridically scans the Operatins Manager database and retrieves infrmatin abut any alerts mdified since the last scan. 7. The infrmatin retrieved is used t adjust alert state, as fllws: If n status changes were made by the Operatins Manager peratr, then the status is set t the value kept in custm field #9 (initially received frm InTrust). Otherwise, the status is set in accrdance with the value entered by the peratr. 8. Changes t alert states in Operatins Manager are ptinally synchrnized back t InTrust by the Cnnectr. NOTE: If an alert is frwarded t Operatins Manager by InTrust Cnnectr and then changes were made t the alert state using InTrust Mnitring Cnsle, these changes will nt be frwarded t Operatins Manager. Yu can cnfigure the alert synchrnizatin by running InTrust Cnnectr Cnfiguratin Wizard. In particular, it helps yu t d the fllwing: Specify cnnectin settings fr the Cnnectr t access InTrust Alert database Select the alerts that shuld be synchrnized by applying filters Set up the alert synchrnizatin prcess (i.e., select whether t frward the alerts nly frm InTrust t Operatins Manager, r t synchrnize them back t InTrust) NOTE: By default, the alerts displayed in the Operatins Manager Cnsle can have a state f either 'New' r 'Clsed', while the InTrust alert status can be New, Acknwledged, r Reslved. Therefre, t prperly prcess the alerts, yu may need t assign a custm state that will present the Acknwledged InTrust alerts displayed in Operatins Manager. Fr details, refer the Cnfiguring InTrust Cnnectr fr Operatins Manager tpic. InTrust 11.3 Cnnectr fr Micrsft System Center Operatins Manager Intrductin t InTrust Cnnectr fr Operatins Manager 6

Cntents f the Package The slutin package includes the fllwing: ITC4SCOM.<versin>.msi the InTrust Cnnectr installatin file System.Cnnectrs.Library.InTrustIntegratin.xml InTrust Cnnectr Management Pack InTrust Cnnectr fr Micrsft System Center Operatins Manager this dcument Readme.htm last-minute prduct infrmatin and updates t the dcumentatin InTrust 11.3 Cnnectr fr Micrsft System Center Operatins Manager Intrductin t InTrust Cnnectr fr Operatins Manager 7

Using InTrust Cnnectr fr Operatins Manager Sftware Requirements User Rights Installing InTrust Cnnectr fr Operatins Manager Cnfiguring InTrust Cnnectr fr Operatins Manager Sftware Requirements Fr InTrust Cnnectr installatin and functining, yur netwrk envirnment must meet the fllwing requirements: InTrust Server (remte r lcal) Micrsft System Center Operatins Manager 2007 r Micrsft System Center Operatins Manager 2012 (remte r lcal) One f the fllwing must be installed n the cmputer where InTrust Cnnectr will be deplyed: Management Server cmpnent f Operatins Manager Operatins Cnsle Authring Cnsle fr SCOM 2007 User Rights InTrust OpsMgr Cnnectr Admins Grup Cnnectin t Alert Database and Operatins Manager Server InTrust OpsMgr Cnnectr Admins Grup T allw a user t cnfigure InTrust Cnnectr (apply filters t the alerts that shuld be frwarded, set up alert frwarding prcess, etc.), yu must add the user's accunt t the InTrust OpsMgr Cnnectr Admins lcal grup. This grup is autmatically created n the cmputer where InTrust Cnnectr is installed, and the grup is granted the permissins described in the Cnnectin t Alert Database and Operatins Manager Server tpic. The fllwing accunts are added t the InTrust OpsMgr Cnnectr Admins grup during installatin: Service accunt (specified during installatin) under which InTrust Cnnectr fr Operatins Manager service (ITCnOpsMgrService) will run User accunt under which the installatin is perfrmed InTrust 11.3 Cnnectr fr Micrsft System Center Operatins Manager Using InTrust Cnnectr fr Operatins Manager 8

NOTE: The InTrust OpsMgr Cnnectr Admins grup is nt remved when yu uninstall InTrust Cnnectr; yu need t remve it manually. The InTrust OpsMgr Cnnectr Admins grup is granted the fllwing permissins: Fr the <InTrust Cnnectr wrking flder>\itcnmom.xml file where the cnnectr's cnfiguratin is stred: Read Write Append Data Read Extended Attributes Write Extended Attributes Execute Read Attributes Write Attributes Read Permissins Synchrnize NOTE: The Synchrnize permissin is nt displayed in the standard Prperties windw. T shw it, use the Subinacl.exe utility available frm the Resurce Kit. Fr the HKEY_LOCAL_MACHINE\SOFTWARE\Dell\InTrust Cnnectr fr SCOM registry entry: Query Value Set Value Enumerate Subkeys Ntify Read Cntrl Fr the InTrust Cnnectr service (ITCnOpsMgrService): Start Stp Query Status Read Cntrl NOTE: When granting the necessary permissins manually, clear the Allw inheritable permissins frm parents t prpagate t this bject check bx. Cnnectin t Alert Database and Operatins Manager Server T cnnect t the InTrust Alert database, InTrust Cnnectr can use either the ITCnOpsMgrService accunt (supplied during the setup) r a specific different accunt (which yu can supply using the Cnfiguratin Wizard). Whatever accunt is used, it shuld be assigned the fllwing: InTrust 11.3 Cnnectr fr Micrsft System Center Operatins Manager Using InTrust Cnnectr fr Operatins Manager 9

1. db_datareader and db_datawriter SQL Server rles fr the alert database 2. InTrust Real-Time Mnitring r InTrust Mnitring Cnsle rles (which are created during InTrust setup) fr the alert database If specific Windws accunt will be used t access the Alert database (see the Cnfiguring InTrust Cnnectr fr Operatins Manager tpic fr details), then it als must be granted the Lg n as a batch jb right. The accunt used fr cnnecting t the Operatins Manager server must be a member f the dmain glbal grup included in the Operatins Manager Administratrs rle (this grup is created during Operatins Manager setup). Installing InTrust Cnnectr fr Operatins Manager Step 1: Install InTrust Cnnectr Management Pack Step 2: Install InTrust Cnnectr Unattended Installatin Step 1: Install InTrust Cnnectr Management Pack Prir t installing InTrust Cnnectr, yu shuld deply the specially designed InTrust Cnnectr Management Pack (System.Cnnectrs.Library.InTrustIntegratin.xml) n yur Operatins Manager server. This Management Pack is required fr InTrust Cnnectr peratin. T deply the Management Pack 1. In the Operatins Manager cnsle, g t the Administratin page and select Management Packs. 2. Right-click the nde and select Imprt Management Packs. In the Select Management Pack t imprt dialg bx, brwse t the System.Cnnectrs.Library.InTrustIntegratin.xml file, and click OK. When imprted, it appears in the list f Management Packs n the right. Step 2: Install InTrust Cnnectr NOTE: The accunt under which yu run the setup will autmatically be added t the InTrust OpsMgr Cnnectr Admins grup n the cmputer where InTrust Cnnectr is installed. T install InTrust Cnnectr fr Operatins Manager 1. Run the ITC4SCOM.<versin>.msi file. The InTrust Cnnectr fr Operatins Manager Installatin Wizard starts. 2. Select InTrust Cnnectr fr Operatins Manager t be installed. Change the installatin flder, if necessary. InTrust 11.3 Cnnectr fr Micrsft System Center Operatins Manager Using InTrust Cnnectr fr Operatins Manager 10

3. On the next step, yu will be prmpted fr the accunt under which the InTrust Cnnectr service will run, cnnecting t Operatins Manager and InTrust Alert database. Prvide the accunt in DOMAIN\username frmat. Make sure the accunt yu supply meets the requirements stated in the Cnnectin t Alert Database and Operatins Manager Server tpic. 4. Review the settings yu have specified and cmplete the wizard. T cnfigure InTrust Cnnectr fr Operatins Manager immediately after the installatin, select the Run cnfiguratin wizard nw check bx. Unattended Installatin Installatin Using Cmmand Prmpt Yu can install InTrust Cnnectr fr Operatins Manager frm a cmmand prmpt, as shwn belw: Msiexec.exe /q[n b r f] /i IT4SCOM.<versin>.msi IT_SCOM_SVC_USER=ABC\MJack IT_SCOM_SVC_PASSWORD=abc Here: /q specifies the user interface level t be used by the prgram: n n UI b basic UI r reduced UI f full UI (default) IT_SCOM_SVC_USER specifies the service accunt name IT_SCOM_SVC_PASSWORD specifies the passwrd f the service accunt Installatin Using Grup Plicy InTrust Cnnectr fr Operatins Manager can als be installed using Grup Plicy (administrative installatin). The cmmand prmpt fr administrative installatin lks like this: InTrust 11.3 Cnnectr fr Micrsft System Center Operatins Manager Using InTrust Cnnectr fr Operatins Manager 11

Msiexec.exe /A IT4SCOM.<versin>.msi IT_SCOM_SVC_USER=ABC\MJack IT_SCOM_SVC_PASSWORD=abc Here: IT_SCOM_SVC_USER specifies the service accunt name IT_SCOM_SVC_PASSWORD specifies the passwrd f the service accunt CAUTION: If the InTrust Cnnectr service is installed using Grup Plicy, it will be run n the target cmputer under the accunt specified in that cmmand prmpt. Cnfiguring InTrust Cnnectr fr Operatins Manager Befre Yu Begin: Preparing a Custm Alert State Running Cnfiguratin Wizard Befre Yu Begin: Preparing a Custm Alert State This sectin describes an ptinal prcedure yu can fllw if yu want the full range f InTrust alert reslutin states t be represented in Operatins Manager Cnsle. By default, the alerts displayed in the Operatins Manager Cnsle can have ne f the fllwing states: New State ID= 0 Acknwledged State ID= 249 Clsed State ID = 255 The InTrust alert status als can be New, Acknwledged, r Clsed. Yu may want t assign a custm state that will represent the Acknwledged InTrust alerts displayed in the Operatins Manager cnsle. Otherwise, bth New and Acknwledged states f InTrust alerts will appear in the Operatins Manager Cnsle as New. Running Cnfiguratin Wizard T help yu set up InTrust Cnnectr fr Operatins Manager, the Cnfiguratin Wizard is launched autmatically if yu select the Run cnfiguratin wizard nw check bx during the setup. Alternatively, yu can run the Cnfiguratin Wizard using the InTrust Cnnectr fr Operatins Manager shrtcut at Start Prgrams Quest InTrust InTrust Cnnectr fr OpsMgr. InTrust 11.3 Cnnectr fr Micrsft System Center Operatins Manager Using InTrust Cnnectr fr Operatins Manager 12

T cnfigure InTrust Cnnectr fr Operatins Manager 1. On the InTrust Alert Database step f the Cnfiguratin Wizard, specify the Alert database lcatin and name, and the accunt that shuld be used fr cnnectin. Yu can use either the InTrust Cnnectr service accunt (specified during its setup) r anther accunt with sufficient rights (see the Sftware Requirements and User Rights tpics). 2. On the Operatins Manager Server step f the wizard, specify the fllwing: The Operatins Manager Server t cnnect t. The accunt t be used fr cnnectin. Yu can use either the InTrust Cnnectr service accunt (specified during its setup) r anther accunt with sufficient rights. If yu select the Windws specific accunt ptin, then yu can click Brwse t lk fr the accunt yu need (therwise, this buttn is inactive). InTrust 11.3 Cnnectr fr Micrsft System Center Operatins Manager Using InTrust Cnnectr fr Operatins Manager 13

3. Next, specify the InTrust Cnnectr peratin mde: Select Frward alerts frm InTrust t OpsMgr. Synchrnize alert states back t InTrust t receive the alert state back int InTrust. Select Frward alerts frm InTrust t OpsMgr if yu want t have InTrust alerts frwarded t Operatins Manager (alert states will nt be synchrnized back t InTrust). Select Turn ff synchrnizatin if yu want t cancel alert frwarding t Operatins Manager. InTrust 11.3 Cnnectr fr Micrsft System Center Operatins Manager Using InTrust Cnnectr fr Operatins Manager 14

4. On the next step, specify the synchrnizatin ptins. Click Filter t cnfigure the criteria fr selecting alerts t be frwarded t Operatins Manager. The Filtering Prperties dialg bx is displayed: Here yu can select which alerts t synchrnize. Cnsider using wildcards (asterisks r questin marks) in the filtering criteria, as well as Transact-SQL wildcard characters (described in the LIKE (Transact- SQL) MSDN article). InTrust Cnnectr will frward any alert cntaining a custm field with the field name FrwardTMOM, regardless f the filter settings. After setting the filters, click OK t save them and return t the Synchrnizatin Optins. a. Specify hw ften InTrust Cnnectr will scan the InTrust Alert database fr new alerts t be frwarded t Operatins Manager. InTrust 11.3 Cnnectr fr Micrsft System Center Operatins Manager Using InTrust Cnnectr fr Operatins Manager 15

b. Specify which Operatins Manager State ID will be used t represent the Acknwledged state f InTrust alerts. By default, this value is set t 0 (i.e., the Acknwledged alert will be represented as New in Operatins Manager Cnsle). If yu cnfigured a custm value fr it befre starting the wizard (as described in the Befre Yu Begin: Preparing a Custm Alert State tpic), select it frm the list. 5. On the next step, review yur cnfiguratin settings: 6. Click Next t apply the cnfiguratin; wait until the service is restarted, and then finish the wizard. InTrust 11.3 Cnnectr fr Micrsft System Center Operatins Manager Using InTrust Cnnectr fr Operatins Manager 16

Wrking with Alerts Alert View Interface Alert Field Mapping Alert View Interface T view the alerts frwarded frm InTrust, use the Operatins Manager cnsle. After yu select Mnitring Active Alerts, they will be displayed as shwn belw: Yu can examine each alert in detail after pening by duble-clicking it t pen its prperties. InTrust 11.3 Cnnectr fr Micrsft System Center Operatins Manager Wrking with Alerts 17

Alert Prperties General Here yu can find general infrmatin abut the alert, including its severity, descriptin, status, etc. NOTE: When an alert is frwarded t Operatins Manager, the Alert Surce field value is set t Quest InTrust Cnnectr n <Cnnectr_hst_name>. Alert Prperties Prduct Knwledge InTrust 11.3 Cnnectr fr Micrsft System Center Operatins Manager Wrking with Alerts 18

This tab cntains a brief descriptin f the prduct peratin and references t detailed infrmatin n InTrust and InTrust Cnnectr fr Operatins Manager. Alert Prperties Cmpany Knwledge This tab can be used t enter yur cmpany knwledge fr the alert (if any). Fr that, click Edit Rule, and edit the Knwledge field f the rule which is the surce f the selected alert. InTrust 11.3 Cnnectr fr Micrsft System Center Operatins Manager Wrking with Alerts 19

Alert Prperties Histry Use this tab t track the alert histry (frm the mment it was activated), including all mdificatins and their initiatrs. Alert Prperties Alert Cntext The alert cntext (structure) is displayed in XML frmat. InTrust 11.3 Cnnectr fr Micrsft System Center Operatins Manager Wrking with Alerts 20

Alert Prperties Custm Fields This tab cntains a list f custm fields described in the Alert Field Mapping tpic. This data is filled in autmatically by the prduct and shuld nt be changed. Alert Field Mapping The table belw shws hw InTrust alert fields are mapped t the Operatins Manager alert fields displayed in the Operatins Manager cnsle: InTrust Alert Field Descriptin Operatins Manager Alert Field Alert Descriptin Details The Operatins Manager alert descriptin is derived frm InTrust alert fields using the fllwing rule: InTrust Server: <InTrustServer> Lgging Hst: <HstName> Creatin Time: <TimeGenerated> InTrust Alert Descriptin: <Descriptin> Name Name Alert display name, fr example, Successful Lgns During Nn-Business Hurs. AssignedT Owner Nt frwarded. State Alert Status Operatins Manager ffers the fllwing predefined alert reslutin states: InTrust 11.3 Cnnectr fr Micrsft System Center Operatins Manager Wrking with Alerts 21

InTrust Alert Field Severity FrwardTMOM AlertCde Cmment idalert HstName Operatins Manager Alert Field Alert Severity Creatin Time Custm Field 1 Custm Field 2 Custm Field 3 Custm Field 4 Details New State ID= 0 Acknwledged State ID= 249 Clsed State ID = 255 The InTrust alert states are as fllws: New State ID = 0 Acknwledged State ID = 128 Clsed State ID = 255 T represent this state in Operatins Manager, yu can fllw the instructins prvided in the Cnfiguring InTrust Cnnectr fr Operatins Manager tpic. The settings yu cnfigure will take effect fr all alerts frwarded t Operatins Manager. Alert severity values are mapped, as fllws: InTrust OpsMgr Infrmatin Infrmatin Minr Warning Majr Critical Critical Critical Custm Warning Filled in by Operatins Manager. If an InTrust Alert cntains a custm field named 'FrwardTMOM', it is frwarded t Operatins Manager regardless f the filtering settings in the InTrust Cnnectr. InTrust alert ID. This field is mapped t Custm Field 4 in rder t be filled in with the prper data (since the 'Cmputer Name' Operatins Manager alert field is reserved InTrust 11.3 Cnnectr fr Micrsft System Center Operatins Manager Wrking with Alerts 22

InTrust Alert Field TimeGenerated InTrustServer Operatins Manager Alert Field Custm Field 5 Custm Field 6 Custm Field 7 Custm Field 8 Custm Field 9 Custm Field 10 Details fr Operatins Manager data nly). InTrust alert generatin time in GMT frmat. This field is mapped t Custm Field 5 in rder t be filled in with the prper data (since the 'Time Created' Operatins Manager alert field is reserved fr Operatins Manager data nly). This is the InTrust alert field's display name in the InTrust Mnitring Cnsle. Tn the Alert database this field is named ServerName. InTrust Alert database prviding the alerts. Nt used. Used as a temprary strage fr the initial alert state value received frm InTrust: if InTrust alert's initial state is nt 'New', the state will be kept in this field (the Reslutin State in Operatins Manager will first appear as 'New' but will be changed t the value frm this field when the synchrnizatin prcess cmpletes). InTrust Cnnectr instance's GUID (used t identify alerts stred in the Operatins Manager database by this instance). InTrust 11.3 Cnnectr fr Micrsft System Center Operatins Manager Wrking with Alerts 23

Abut us We are mre than just a name We are n a quest t make yur infrmatin technlgy wrk harder fr yu. That is why we build cmmunitydriven sftware slutins that help yu spend less time n IT administratin and mre time n business innvatin. We help yu mdernize yur data center, get yu t the clud quicker and prvide the expertise, security and accessibility yu need t grw yur data-driven business. Cmbined with Quest s invitatin t the glbal cmmunity t be a part f its innvatin, and ur firm cmmitment t ensuring custmer satisfactin, we cntinue t deliver slutins that have a real impact n ur custmers tday and leave a legacy we are prud f. We are challenging the status qu by transfrming int a new sftware cmpany. And as yur partner, we wrk tirelessly t make sure yur infrmatin technlgy is designed fr yu and by yu. This is ur missin, and we are in this tgether. Welcme t a new Quest. Yu are invited t Jin the Innvatin. Our brand, ur visin. Tgether. Our lg reflects ur stry: innvatin, cmmunity and supprt. An imprtant part f this stry begins with the letter Q. It is a perfect circle, representing ur cmmitment t technlgical precisin and strength. The space in the Q itself symblizes ur need t add the missing piece yu t the cmmunity, t the new Quest. Cntacting Quest Fr sales r ther inquiries, visit https://www.quest.cm/cmpany/cntact-us.aspx r call +1-949-754-8000. Technical supprt resurces Technical supprt is available t Quest custmers with a valid maintenance cntract and custmers wh have trial versins. Yu can access the Quest Supprt Prtal at https://supprt.quest.cm. The Supprt Prtal prvides self-help tls yu can use t slve prblems quickly and independently, 24 hurs a day, 365 days a year. The Supprt Prtal enables yu t: Submit and manage a Service Request View Knwledge Base articles Sign up fr prduct ntificatins Dwnlad sftware and technical dcumentatin View hw-t-vides Engage in cmmunity discussins Chat with supprt engineers nline View services t assist yu with yur prduct InTrust 11.3 Cnnectr fr Micrsft System Center Operatins Manager Abut us 24

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback