Is there any way I can see if windows updates installed correctly or failed.
Something like windows update history but through SCCM.
I had some trouble with paths and its ineffective running to the clients and controll.
There are multiple ways to check this, but none of them are really perfect:
use Reporting. e.g. "Management 4 - Deployments that target a computer", "Compliance 4 - Deployment (per update)", ... etc. Or some other report, there are tons of reports that tell you basically the same things.
use logging. You can view the status messages and see if the computer installed updates. But this is more useful for troubleshooting and not for checking if all updates were installed.
the client also writes logfiles into the ccm directory http://technet.microsoft.com/en-us/library/bb693878.aspx
Monitoring > Deployments > Select the deployment > View Status. There, you can see which servers/computers installed, in Progress or Failed the installation. You can also see why they failed such as insufficient disk etc
Related
We are using on site Dev-Ops and have a similar problem to that described in the link Example from SO.
But ours is intermittent.
Our environment uses two build and deploy machines, which each deploy machine having two worker agents.
For one of our projects, when it is deployed, we constantly get the error:
The VisualStudioRemoteDeployerc4d3852f-411b-48ba-97d8-5e09c8d07ce4 service failed to start due to the following error:
%%2
But here is the rub, not every time. Sometimes the deployment completes without error.
Other projects that use the same deployment machine and the same target server work each and every time without fail.
The deployment log reports "The WSMan provider host process did not return a proper response." as an error.
Checking the allocated memory, described in PowerShell Out of Memory, to find our set at 2.1 Billion.
This is an interesting issue that I have uncovered. The source of this problem stems from the interaction of McAfee Endpoint security.
Said antivirus was reporting that when the remote powershell script, using WSMan, was called. McAfee, saw this as a viral payload and canceled the deployment by stopping the service from running and deleting the payload. This has been reported to McAfee as an issue. In the mean time, internal network security settings for McAfee has had to be modified to ignore the processes used by powershell in remote deployment.
I have been trying to figure out why Wake On Lan works for Right Click Tools, but not for SCCM Scheduled Deployments.
In the wolmgr.log file I found this happening every five seconds: "Failed to get WOL inbox on AMT Proxy component. Wait 5 seconds... SMS_WAKEONLAN_MANAGER 9/19/2018 11:32:24 AM 480 (0x01E0)".
In the wolcmgr.log file I don't see any errors except this happening about four times a day, which I think is referring to the endless errors shown in the other log file: "CBaseCounter::Initialize - Registered performance counter "Total Number of Packets failed" SMS_WAKEONLAN_COMMUNICATION_MANAGER 9/19/2018 2:01:59 AM 9496 (0x2518)"
I have tried to look up these error messages and haven't found anything to help me get this resolved.
I have tried various ports, including the default (9) and 12287, currently it is on 7. We are being told to use subnet directed broadcasts by our network team due to some limitations with our Cisco network configuration.
I do have a SQL Server Agent (ADK) service that was disabled. I enabled it and it starts but turns off immediately. I don't know if that is related at all. I did have some deployment issues with Windows 7 drivers giving errors during the task sequence, even though they were installing. So I installed a Windows 8.1 ADK after seeing an article about bugs with the latest Win10 ADK and SCCM Task Sequences installing Win7 drivers. I've since then installed Win10 1703 ADK, which works on one of my other SCCM servers on Win7 deployments fine, and I was having this WOL problem before installing 1703 ADK.
Under Administration > System Status > Site Status > Management Point, when I show messages I see these:
*Description Severity
Type Site code
Date / Time System
Component Message ID
Thread ID Process ID
The Wake On LAN component has failed to read the site control file settings. Possible cause: The information is not yet available. Solution: The component is waiting for the information to become available and will retry obtaining the information at its next interval. Error
Milestone CML
9/20/2018 12:47:56 PM SMS_WAKEONLAN_MANAGER
6500 3384
3988
Description Severity
Type Site code
Date / Time System
Component Message ID
Thread ID Process ID
The Wake On LAN component has failed to read the site control file settings. Possible cause: The information is not yet available. Solution: The component is waiting for the information to become available and will retry obtaining the information at its next interval. Error
Milestone CML
9/20/2018 9:39:03 AM SMS_WAKEONLAN_MANAGER
6500 2924
2636*
ADK SQL Server Agent
SCCM WOL configuration
WOL ports
wolmgr.log file screen shot
RightClickTools WOL Configuration
I'am new user on GCP-Storage. I have been charged for large downloads to EMEA(region), but my service(API) conects only to Americas.
Question:
Would anyone please advise on how to set StackDriver or other tool to properly monitor storage at CGP egress?
Thanks alot,
Adriano
Stackdriver isn't currently the best tool for this I believe. You should set up a budget and alerts. Just go to billing in the menu, then budget & alerts. The UI should be self-explanatory.
That's the most important part! Only the budget set there can definitely safe you from exorbitant bills if someone is trying to ruin you/send spam from your instances etc.
Stackdriver's integration with the billing system is currently rather weak, possibly because it's an outside technology that was aquired. Here's what you can do:
If you create a chart, set resource type to Pub/Sub Topic you can choose Costs of Operations which shows your costs live (but you can't create alerts on it).
The GCE metrics include outbound and inbound traffic, so create a chart for that as well.
In the alerts section, you can add an alert to notify you when your hourly egress crosses a threshold you can define – Or suddenly increases in a way it usually doesn't. Note that it could be hard to avoid false positives. Try to find out the maximum throughput of your instances, calculate how fast you need to be alerted and set these alerts based on that value.
If you see a sudden, sustained spike in traffic check the logs. Depending on what ports your firewall configuration has opened, you may find the cause in the webserver or sshd logs. (Oh yeah: go to the network settings and disable all ports you don't need).
If that doesn't help, you'll have to leave google and ssh into the machine(s). A tool I've used before and which is quite easy is nethogs.
$ sudo apt-get install nethogs
[...]
The following NEW packages will be installed:
nethogs
[...[
Setting up nethogs (0.8.1-0.3) ...
$ sudo nethogs
TOTAL 2.873 1.829 KB/sec
NetHogs version 0.8.1
PID USER PROGRAM DEV SENT RECEIVED
1975 root /opt/google-fluentd/embedded/bin/ruby ens4 0.480 0.999 KB/sec
23054 root /usr/bin/python ens4 0.021 0.412 KB/sec
[...]
That will show you the process and then, well – it depends on what that is.
Note that one possibility is that you have been hacked and the server(s) are used for spam or porn distribution or whatever. In that case it's possible (or actually to be expected) that the tools on the server have been patched/replaced to hide the intrusion. Search for rootkit detection if there's a mismatch between the server's internal data and the google tools. If you cannot exclude this possibility with certainty, do not attempt to remove the rootkit. Power down the server(s), create new ones from scratch and, if unavoidable, mount the old disks as read-only partitions in another clean instance to extract the data with utmost care.
I want to monitor the console activities such as who login, Any new users got created and new hosts got added for my PCI Activity.
Unable to figure out in which logs the above mentioned info is present
I have looked into /var/log/ipaserver-install.log but this log does not give me the required information.
Please help.
All operations over IPA framework are visible in /var/log/httpd/error_log on each IPA master. This includes adding users, removing them, etc.
There is a prototyped demo on gathering all logs together and visualizing different flows available at https://www.freeipa.org/page/Centralized_Logging. It is not a complete solution but rather a sketch on how it would look like and it has a detailed description on which logs need to be gathered and how to configure a log forwarding specific to IPA on RHEL 7/CentOS 7: https://github.com/pschiffe/ipa-log-config
We had an application that uses Process.GetProcessesByName() but it is failing only on one user PC with the following error:
Process performance counter is disabled
I searched the registry for the Disable Performance Counters entry but it was not present with the value set to 1.
The user env is XP with administrative rights.
I know that on Windows Server 2003, the user account needs to be a member of the Performance Counter Users Group in order to accomplish this.
Any ideas on how to enable Process performance counter?
Issues that can be responsible: .NET version isn't compatible , Performance Counters need to be enabled or permission problems
Quoted from MSDN
In .NET 1.0/1.1, the Process class relys on performance counters to provide performance information regarding local and remote processes.
.NET 2.0, this dependancy for local processes is no longer present.
This exception can be thrown for a couple of reasons:
Performance counters are disabled - The Windows Resource Kit contains a tool called the Extensible Counter List that can be used to enable/disable counters
The user doesn't have enough rights - non-admin users (I think) may not have enough permissions to access the performance counters.
If it's possible, install .NET > 2.0 and target the newer version
There is a tutorial which shows you how to use the Extensible Counter List to enable Performance Counters here
Open Performance Monitor by clicking Start > Run > Type in Perfmon and choose Ok.
Verify that the Process Monitor object exists, as illustrated in the screenshot posted above.
If the Process object exists, choose all of the Process objects counters and all instances, click Add, and then watch the graph.
Do they all run successfully?
If the counters are missing, then you will need to enable them.
Microsoft provides several KB articles to handle this situation. Begin by reading http://support.microsoft.com/default.aspx?kbid=300956
If the steps in this KB not work properly, and if your server is Microsoft Windows Server 2003, try the next step
Download and install the Windows Server 2003 Resource Kit on the Notification Server or Task Server
Open the Windows Server 2003 Resource Kit command prompt
Type in "exctrlst.exe" to bring up the Extensible Counter List as shown in the screenshot below and scroll down and enable performance counters