This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(156.8, 55.00000000000001%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJS%3C/text%3E%3C/svg%3E)
Hello,
I am running SCOM 2019, and I want to setup an alert for when certain computers come online. I created an NT Event Log Rule for Operations Manager Event ID 20020, and Parameter 2 contains Computer01. This works, but how can I setup this alert to notify me if Computer01, Computer02, or Computer03 comes online? I tried entering Computer01 Computer02 in the Parameter field. I also tried Computer01, Computer02, and this did not work either.
Another idea is to create a rule that alerts on event id 6005 in the system log that's targeted at those computers - event ID 6005 means the Event Log service has started and I use it as a way to detect reboots (which would also alert on systems that started up). Target Windows Server (or computer) with the rule disabled by default. Create a group of computers that you want the rule to run on and enable the rule for that group.
This way would be more elegant since you can easily add computers to the group and not have a long regex if you want to watch for more than a few computers.
Maybe a Regex? the pipe character | is an OR
Hello,
I created a group, and I added a few computers in it. I disabled the rule, and when I choose override for a group, my group does not appear. Any suggestions please?
Make sure that the group and the rule are in the same management pack.