Share via

How to monitor ADDS Certificates in SCOM?

Fadil Ck 381 Reputation points
2023-03-07T06:48:19.72+00:00

Hi All,

We have a requirement to monitor Active Directory Domain Services Certificate Store hosted in AD servers.

By using PKI MP the ADDS store is not getting detected. I am unable to find the same in object discovery.

I then tried using the Microsoft Certificate MP, by entering the store name in Other store option. The certificate store is still not getting discovered. Have attached the snip of the current configuration.

Please see the attached snip of the desired certificate store which needs to be monitored.

Kindly suggest how to configure the monitoring of the same.

Cert MP

store

Thanks

Fadil CK

System Center Operations Manager
System Center Operations Manager
A family of System Center products that provide infrastructure monitoring, help ensure the predictable performance and availability of vital applications, and offer comprehensive monitoring for datacenters and cloud, both private and public.
1,608 questions
Windows for business | Windows Client for IT Pros | Directory services | Active Directory
0 comments
Accepted answer
  1. SChalakov 10,576 Reputation points MVP Volunteer Moderator
    2023-03-08T13:41:15.9933333+00:00

    Hi @Fadil Ck ,

    you have actually done the proper thing - added the Store to the monitored Stores option (your screenshot).

    So there are a couple fo questions that need clarification:

    • Did you check if there are failing discoveries?
    • Did you ensure that the Discovery is really overriden?

    Can you please check out this discovery (from the guide):

    User's image

    and more specifically the StoreNames parameter:

    User's image

    (If the reply was helpful please don't forget to upvote and/or accept as answer, thank you)
    Regards
    Stoyan Chalakov

2 additional answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Thameur-BOURBITA 36,261 Reputation points Moderator
    2023-03-07T12:01:09.27+00:00

    Hi,

    I invite you to take a look at this article :

    SCOM Management pack for Certificate Monitoring

    1 person found this answer helpful.
  2. Limitless Technology 44,766 Reputation points
    2023-03-08T09:02:46.23+00:00

    Hello

    Thank you for your question and reaching out. I can understand you are having query\issues related to Monitor ADDS Certificates in SCOM

    1. Download the management pack from the github repository from this thread. https://learn.microsoft.com/en-us/answers/questions/643264/scom-2016-certificate-monitoring

    SCOM-PKICertificateMP

    1. Import the Management Pack itself.
    2. Import the .xml Pack with the overrides. It turns on the different discoveries and monitors.

    --If the reply is helpful, please Upvote and Accept as answer--

    1 person found this answer helpful.
    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.