New OMS (Multi-homed) Agent

An updated OMS agent has been released which enables the ability to send data from one OMS agent to multiple workspaces.  One key capability that this new agent enables, amongst others, is the ability to segregate data for security purposes or by team.  For example, if I want to segregate my Security and Audit data from data that my technology specific teams will utilize (performance, SQL, etc.), I can create a separate workspace for each classification.  Very useful.  If you are currently utilizing SCOM, the agent will automatically be upgraded when you upgrade your environment to System Center Operations Manager 2016.  More details here.



Read Only User Type Added to OMS

A new Read Only user type was added to OMS today which prevents users from making administrative changes in the OMS workspace.  In my opinion, this was a much needed addition which will give a customers deploying OMS in production environments some added user scoping capability.

Users with the ReadOnly user type will not be able to do the following:

  • Add\remove solutions (solution gallery hidden)
  • Add\modify\remove ‘My Dashboards’
  • Setting page is hidden
  • In the Search view, PowerBI configuration, Saved Searches and Alerts tabs are hidden

Continue reading

SCOM – Create a Dashboard To Show Whether an Alert Is Generated By a Monitor or Rule

In a blog I posted last year called “What’s the difference between a rule and a monitor…the simple version“, I ended my post alluding to a follow up to show some options to identify whether an alert is being generated by a rule or a monitor. I have recently been reminded that I never followed through on my next post, so here it is!  This is nothing new and has been blogged about in the past, but I still find quite a few engineers that are not aware of this capability so hopefully this will help some folks out.

Continue reading

OMS – Create Your Own Security and Audit Notable Issues

I was taking a look at some new features and functionality with OMS with morning and decided to give the “Extend OMS security with your own notable issues” feature a walk through.  In my opinion, this feature is very useful as it allows me to come up with my own queries for what I think is critical in my environment.  For example, if a logon failure from a specific account is a critical issue in my environment, I can simply create a saved query for these events and add them to the Notable Issues blade of the Security and Audit solution for easy visualization.

Let’s configure a quick example….

Continue reading