Presentation is loading. Please wait.

Presentation is loading. Please wait.

Module 8: Implementing an Active Directory Domain ® Services Monitoring Plan.

Published byMarcus O’Brien’ Modified over 8 years ago

Similar presentations

Presentation on theme: "Module 8: Implementing an Active Directory Domain ® Services Monitoring Plan."— Presentation transcript:

1 Module 8: Implementing an Active Directory Domain ® Services Monitoring Plan

2 Module Overview Monitoring AD DS Using Event Viewer Monitoring Active Directory Domain Servers Using Reliability and Performance Monitor Configuring AD DS Auditing

3 Lesson 1: Monitoring AD DS Using Event Viewer Event Viewer Features Demonstration: Overview of the Event Viewer AD DS Logs What Are Custom Views? What Are Subscriptions? Demonstration: Configuring Custom Views and Subscriptions

4 Event Viewer Features

5 Demonstration: Overview of the Event Viewer In this demonstration, you will see how to navigate the Event Viewer

6 AD DS Logs The following logs can provide specific information about AD DS issues : Application log connections System Log DFS Replication log Directory Service Log DNS Server log Group Policy\Operational

7 What Are Custom Views? Event 1. Security log Event 2. System log Event 3: DFS log Event Viewer Custom views : Allow you to aggregate and filter information from multiple logs into a single view Are reusable Can be exported to other computers

8 What Are Subscriptions? Subscriptions collect events from multiple computers, and store them locally

9 Demonstration: Configuring Custom Views and Subscriptions In this demonstration, you will see how to: Create a custom view, and then add the AD DS-specific logs to the view Create a subscription to collect logs from multiple domain controllers

10 Lesson 2: Monitoring Active Directory Domain Servers Using Reliability and Performance Monitor Reliability and Performance Monitor Features Demonstration: Overview of the Reliability and Performance Monitor Monitoring AD DS Using Performance Monitor What Is an Active Directory Baseline? Monitoring Service Availability with Reliability Monitor Monitoring AD DS Using Data Collector Sets Demonstration: Monitoring AD DS

11 Reliability and Performance Monitor Features Reliability and Performance Monitor allows you to: Perform real-time monitoring Track performance of applications and services Collect data Generate alerts Take action when thresholds are reached Generate reports

12 Demonstration: Overview of the Reliability and Performance Monitor In this demonstration, you will see an overview of the Reliability and Performance monitor

13 Monitoring AD DS Using Performance Monitor Useful NTDS Counters for Monitoring Active Directory: NTDS\ DRA Inbound Bytes Total/sec NTDS\ DRA Outbound Bytes Total/sec NTDS\ DRA Inbound Object NTDS\ DRA Pending Replication Synchronizations NTDS\ Kerberos Authentications/sec NTDS\ NTLM Authentications

14 What Is an Active Directory Baseline? A baseline defines what a server looks like under normal workload conditions Baseline measurements should include basic server counters and function specific counters Servers performing different functions will have different baselines measurements Problems areas can be identified by comparing baseline measurements to current statistics

15 Monitoring Service Availability with Reliability Monitor

16 Monitoring AD DS Using Data Collector Sets Organizes multiple data collection points into a single component Can be grouped with other data collection sets Can be incorporated into logs Can be created individually, or from templates Data Collector Sets can contain the following types of data collectors: Performance counters Event trace data System configuration information (registry key values)

17 Demonstration: Monitoring AD DS In this demonstration, you will see how to set up AD DS monitoring

18 Lesson 3: Configuring AD DS Auditing What Is AD DS Auditing? Demonstration: Configuring an Audit Policy Types of Events to Audit Demonstration: Configuring AD DS Auditing

19 What Is AD DS Auditing? AD DS auditing can show both the old values and new values of changed attributes in audit entries AD DS audit policy is divided into four subcategories  Directory service access  Directory service changes  Directory service replication  Detailed Directory service replication Only directory service access is enabled for success by default Use the Auditpol.exe command-line tool to view or set audit policy subcategories

20 Demonstration: Configuring an Audit Policy In this demonstration, you will see how to configure an audit policy

21 Event ID CategoryEvent 4662Directory service access An operation was performed on an AD DS object 4722User account managementA user account was enabled 4726User account managementA user account was deleted 4738User account managementA user account was changed 5136Directory service changesAn AD DS object was modified 5137Directory service changesA new AD DS object was created 5138Directory service changesAn AD DS object was undeleted Types of Events to Audit

22 Demonstration: Configuring AD DS Auditing In this demonstration, you will see how to configure the site link object to manage replication between sites

23 Lab: Monitoring AD DS Exercise 1: Monitoring AD DS Using Event Viewer Exercise 2: Monitoring AD DS Using Performance and Reliability Monitor Exercise 3: Configuring AD DS Auditing Logon information Virtual machine NYC-DC1, NYC-DC2 User nameAdministrator Password Pa$$w0rd Estimated time: 60 minutes

24 Lab Review You want to enable the Directory Service Changes subcategory without enabling a global audit policy. How could you do this? What services must be running on a source computer in order to provide information to a subscription? You have enabled a global audit policy to collect directory service access events, but no events are showing up in the security log. What might the problem be?

25 Module Review and Takeaways Review questions Considerations

Download ppt "Module 8: Implementing an Active Directory Domain ® Services Monitoring Plan."

Similar presentations

Course 2786B Module 8: Implementing an Active Directory® Domain Services Monitoring Plan Presentation: 60 minutes Lab: 60 minutes This module helps students.

Course 2786B Module 8: Implementing an Active Directory® Domain Services Monitoring Plan Presentation: 60 minutes Lab: 60 minutes This module helps students.
Implementing and Administering AD DS Sites and Replication

Implementing and Administering AD DS Sites and Replication
Module 10: Troubleshooting Active Directory, DNS, and Replication Issues.

Module 10: Troubleshooting Active Directory, DNS, and Replication Issues.
Module 10: Troubleshooting AD DS, DNS, and Replication Issues.

Module 10: Troubleshooting AD DS, DNS, and Replication Issues.
Module 10: Troubleshooting Network Access. Overview Troubleshooting Network Access Resources Troubleshooting LAN Authentication Troubleshooting Remote.

Module 10: Troubleshooting Network Access. Overview Troubleshooting Network Access Resources Troubleshooting LAN Authentication Troubleshooting Remote.
Module 5: Creating and Configuring Group Policy

Module 5: Creating and Configuring Group Policy
13.1 © 2004 Pearson Education, Inc. Exam 70-294 Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.

13.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.
Maintaining and Updating Windows Server 2008

Maintaining and Updating Windows Server 2008
Course 6425A Module 2: Configuring Domain Name Service for Active Directory® Domain Services Presentation: 50 minutes Lab: 45 minutes This module helps.

Course 6425A Module 2: Configuring Domain Name Service for Active Directory® Domain Services Presentation: 50 minutes Lab: 45 minutes This module helps.
Module 14 Monitoring and Maintaining Windows Server® 2008 Servers.

Module 14 Monitoring and Maintaining Windows Server® 2008 Servers.
Implementing High Availability

Implementing High Availability
Module 8: Implementing Administrative Templates and Audit Policy.

Module 8: Implementing Administrative Templates and Audit Policy.
Event Viewer Was of getting to event viewer Go to –Start –Control Panel, –Administrative Tools –Event Viewer Go to –Start.

Event Viewer Was of getting to event viewer Go to –Start –Control Panel, –Administrative Tools –Event Viewer Go to –Start.
1 Directory Service Continuity Monitor Active Directory Manage the Active Directory Database Back Up and Restore AD DS and Domain Controllers.

1 Directory Service Continuity Monitor Active Directory Manage the Active Directory Database Back Up and Restore AD DS and Domain Controllers.
Course 6421A Module 7: Installing, Configuring, and Troubleshooting the Network Policy Server Role Service Presentation: 60 minutes Lab: 60 minutes Module.

Course 6421A Module 7: Installing, Configuring, and Troubleshooting the Network Policy Server Role Service Presentation: 60 minutes Lab: 60 minutes Module.
Module 4 Managing Client Access. Module Overview Configuring the Client Access Server Role Configuring Client Access Services for Outlook Clients Configuring.

Module 4 Managing Client Access. Module Overview Configuring the Client Access Server Role Configuring Client Access Services for Outlook Clients Configuring.
Microsoft ® Official Course Module 12 Monitoring, Managing, and Recovering AD DS.

Microsoft ® Official Course Module 12 Monitoring, Managing, and Recovering AD DS.
Network and Active Directory Performance Monitoring and Troubleshooting NETW4008 Lecture 8.

Network and Active Directory Performance Monitoring and Troubleshooting NETW4008 Lecture 8.
Module 1: Installing Active Directory Domain Services

Module 1: Installing Active Directory Domain Services
Course 6425A Module 9: Implementing an Active Directory Domain Services Maintenance Plan Presentation: 55 minutes Lab: 75 minutes This module helps students.

Course 6425A Module 9: Implementing an Active Directory Domain Services Maintenance Plan Presentation: 55 minutes Lab: 75 minutes This module helps students.

Similar presentations

Ads by Google