Module 8: Implementing an Active Directory Domain ® Services Monitoring Plan.

Slides:



Advertisements
Similar presentations
Course 2786B Module 8: Implementing an Active Directory® Domain Services Monitoring Plan Presentation: 60 minutes Lab: 60 minutes This module helps students.
Advertisements

Implementing and Administering AD DS Sites and Replication
Module 10: Troubleshooting Active Directory, DNS, and Replication Issues.
Module 10: Troubleshooting AD DS, DNS, and Replication Issues.
Module 10: Troubleshooting Network Access. Overview Troubleshooting Network Access Resources Troubleshooting LAN Authentication Troubleshooting Remote.
Module 5: Creating and Configuring Group Policy
13.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.
Maintaining and Updating Windows Server 2008
Course 6425A Module 2: Configuring Domain Name Service for Active Directory® Domain Services Presentation: 50 minutes Lab: 45 minutes This module helps.
Module 14 Monitoring and Maintaining Windows Server® 2008 Servers.
Implementing High Availability
Module 8: Implementing Administrative Templates and Audit Policy.
Event Viewer Was of getting to event viewer Go to –Start –Control Panel, –Administrative Tools –Event Viewer Go to –Start.
1 Directory Service Continuity Monitor Active Directory Manage the Active Directory Database Back Up and Restore AD DS and Domain Controllers.
Course 6421A Module 7: Installing, Configuring, and Troubleshooting the Network Policy Server Role Service Presentation: 60 minutes Lab: 60 minutes Module.
Module 4 Managing Client Access. Module Overview Configuring the Client Access Server Role Configuring Client Access Services for Outlook Clients Configuring.
Microsoft ® Official Course Module 12 Monitoring, Managing, and Recovering AD DS.
Network and Active Directory Performance Monitoring and Troubleshooting NETW4008 Lecture 8.
Module 1: Installing Active Directory Domain Services
Course 6425A Module 9: Implementing an Active Directory Domain Services Maintenance Plan Presentation: 55 minutes Lab: 75 minutes This module helps students.
Module 2 Creating Active Directory ® Domain Services User and Computer Objects.
Module 18 Monitoring SQL Server 2008 R2. Module Overview Monitoring Activity Capturing and Managing Performance Data Analyzing Collected Performance Data.
Implementing Dynamic Host Configuration Protocol
Module 14: Configuring Print Resources and Printing Pools.
Managing Active Directory Domain Services Objects
Configuring and Troubleshooting Identity and Access Solutions with Windows Server® 2008 Active Directory®
Module 6: Designing Active Directory Security in Windows Server 2008.
Managing User and Service Accounts
Configuring Encryption and Advanced Auditing
Module 12: Auditing Active Directory Domain Services Changes.
Module 15: Manage the Windows ® Small Business Server 2008 Environment Using Group Policy.
Module 14: Configuring Server Security Compliance
Securing AD DS Module A 3: Securing AD DS
Module 7: Fundamentals of Administering Windows Server 2008.
Module 11: Remote Access Fundamentals
Maintaining Active Directory Domain Services
Module 3: Configuring Active Directory Objects and Trusts.
Monitoring Windows Server 2012
Module 9 Configuring Messaging Policy and Compliance.
Module 10: Maintaining Active Directory. Overview Introduction to Maintaining Active Directory Moving and Defragmenting the Active Directory Database.
Maintaining and Updating Windows Server Monitoring Windows Server It is important to monitor your Server system to make sure it is running smoothly.
Labs. Lab Session 1: Administering Windows Server 2008 Exercise 1: Install the DNS Server Role Exercise 2: Configuring Remote Desktop for Administration.
Module 5 Managing Message Transport. Module Overview Overview of Message Transport Configuring Message Transport.
Module 11: Troubleshooting Group Policy Issues. Module Overview Introduction to Group Policy Troubleshooting Troubleshooting Group Policy Application.
Module 4: Configuring and Troubleshooting DHCP
Module 3: Managing a Microsoft ® Windows ® Small Business Server Environment.
Module 1: Implementing Active Directory ® Domain Services.
Module 5: Creating and Configuring Group Policies.
Module 4 Planning for Group Policy. Module Overview Planning Group Policy Application Planning Group Policy Processing Planning the Management of Group.
Module 12: Implementing an Active Directory ® Domain Services Infrastructure.
Module 4: Configuring Active Directory Sites and Replication.
Implementing Group Policy
Module 7: Implementing Security Using Group Policy.
Week 4 Objectives Overview of Group Policy Group Policy Processing Implementing a Central Store for Administrative Templates.
Module 10: Windows Firewall and Caching Fundamentals.
Implementing a Group Policy Infrastructure
Module 12: Configuring and Managing Storage Technologies
Module 9 Planning and Implementing Monitoring and Maintenance.
Module 10: Implementing Administrative Templates and Audit Policy.
Module 3 Planning for Active Directory®
Chapter 4- Part3. 2 Implementing User Profiles A local user profile is automatically created at the local computer when you log on with an account for.
Module 7: Auditing Active Directory Domain Services Changes.
Module 6: Administering Reporting Services. Overview Server Administration Performance and Reliability Monitoring Database Administration Security Administration.
Labs. Session 1 Lab 1: Designing an Active Directory Forest Infrastructure in Windows Server 2008 Exercise 1: Designing an Active Directory Forest Exercise.
Module 4: Configuring Active Directory ® Domain Sevices Sites and Replication.
Module 14: Advanced Topics and Troubleshooting. Microsoft ® Windows ® Small Business Server (SBS) 2008 Management Console (Advanced Mode) Managing Windows.
Module 11: Configuring and Managing Distributed File System.
Module 11: Troubleshooting Group Policy Issues. Module Overview Introduction to Group Policy Troubleshooting Troubleshooting Group Policy Application.
Maintaining and Updating Windows Server 2008 Lesson 8.
Monitoring Windows Server 2012
Presentation transcript:

Module 8: Implementing an Active Directory Domain ® Services Monitoring Plan

Module Overview Monitoring AD DS Using Event Viewer Monitoring Active Directory Domain Servers Using Reliability and Performance Monitor Configuring AD DS Auditing

Lesson 1: Monitoring AD DS Using Event Viewer Event Viewer Features Demonstration: Overview of the Event Viewer AD DS Logs What Are Custom Views? What Are Subscriptions? Demonstration: Configuring Custom Views and Subscriptions

Event Viewer Features

Demonstration: Overview of the Event Viewer In this demonstration, you will see how to navigate the Event Viewer

AD DS Logs The following logs can provide specific information about AD DS issues : Application log connections System Log DFS Replication log Directory Service Log DNS Server log Group Policy\Operational

What Are Custom Views? Event 1. Security log Event 2. System log Event 3: DFS log Event Viewer Custom views : Allow you to aggregate and filter information from multiple logs into a single view Are reusable Can be exported to other computers

What Are Subscriptions? Subscriptions collect events from multiple computers, and store them locally

Demonstration: Configuring Custom Views and Subscriptions In this demonstration, you will see how to: Create a custom view, and then add the AD DS-specific logs to the view Create a subscription to collect logs from multiple domain controllers

Lesson 2: Monitoring Active Directory Domain Servers Using Reliability and Performance Monitor Reliability and Performance Monitor Features Demonstration: Overview of the Reliability and Performance Monitor Monitoring AD DS Using Performance Monitor What Is an Active Directory Baseline? Monitoring Service Availability with Reliability Monitor Monitoring AD DS Using Data Collector Sets Demonstration: Monitoring AD DS

Reliability and Performance Monitor Features Reliability and Performance Monitor allows you to: Perform real-time monitoring Track performance of applications and services Collect data Generate alerts Take action when thresholds are reached Generate reports

Demonstration: Overview of the Reliability and Performance Monitor In this demonstration, you will see an overview of the Reliability and Performance monitor

Monitoring AD DS Using Performance Monitor Useful NTDS Counters for Monitoring Active Directory: NTDS\ DRA Inbound Bytes Total/sec NTDS\ DRA Outbound Bytes Total/sec NTDS\ DRA Inbound Object NTDS\ DRA Pending Replication Synchronizations NTDS\ Kerberos Authentications/sec NTDS\ NTLM Authentications

What Is an Active Directory Baseline? A baseline defines what a server looks like under normal workload conditions Baseline measurements should include basic server counters and function specific counters Servers performing different functions will have different baselines measurements Problems areas can be identified by comparing baseline measurements to current statistics

Monitoring Service Availability with Reliability Monitor

Monitoring AD DS Using Data Collector Sets Organizes multiple data collection points into a single component Can be grouped with other data collection sets Can be incorporated into logs Can be created individually, or from templates Data Collector Sets can contain the following types of data collectors: Performance counters Event trace data System configuration information (registry key values)

Demonstration: Monitoring AD DS In this demonstration, you will see how to set up AD DS monitoring

Lesson 3: Configuring AD DS Auditing What Is AD DS Auditing? Demonstration: Configuring an Audit Policy Types of Events to Audit Demonstration: Configuring AD DS Auditing

What Is AD DS Auditing? AD DS auditing can show both the old values and new values of changed attributes in audit entries AD DS audit policy is divided into four subcategories  Directory service access  Directory service changes  Directory service replication  Detailed Directory service replication Only directory service access is enabled for success by default Use the Auditpol.exe command-line tool to view or set audit policy subcategories

Demonstration: Configuring an Audit Policy In this demonstration, you will see how to configure an audit policy

Event ID CategoryEvent 4662Directory service access An operation was performed on an AD DS object 4722User account managementA user account was enabled 4726User account managementA user account was deleted 4738User account managementA user account was changed 5136Directory service changesAn AD DS object was modified 5137Directory service changesA new AD DS object was created 5138Directory service changesAn AD DS object was undeleted Types of Events to Audit

Demonstration: Configuring AD DS Auditing In this demonstration, you will see how to configure the site link object to manage replication between sites

Lab: Monitoring AD DS Exercise 1: Monitoring AD DS Using Event Viewer Exercise 2: Monitoring AD DS Using Performance and Reliability Monitor Exercise 3: Configuring AD DS Auditing Logon information Virtual machine NYC-DC1, NYC-DC2 User nameAdministrator Password Pa$$w0rd Estimated time: 60 minutes

Lab Review You want to enable the Directory Service Changes subcategory without enabling a global audit policy. How could you do this? What services must be running on a source computer in order to provide information to a subscription? You have enabled a global audit policy to collect directory service access events, but no events are showing up in the security log. What might the problem be?

Module Review and Takeaways Review questions Considerations

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.