Ep. 37: Monitoring Window's services with Checkmk
Read Video Transcript
|[0:00:00]||Welcome to the Checkmk Channel. Today we're taking a closer look at Windows service monitoring.|
|[0:00:15]||If you add a Windows host to Checkmk, you already get a lot of services.|
|[0:00:20]||So, you can see the state of your CPU, the utilization file systems, a lot of services that tell you a lot of about the state of your Windows server. But in certain use cases, you need specific information about specific Windows services.|
|[0:00:36]||We already have a service summary by default, which tells you if some service failed unexpectedly, so you get the information in the summary service.|
|[0:00:47]||But as I said, in special use cases you want to have a closer look at specific services.|
|[0:00:53]||For example, if you have a domain controller or an MS SQL database server, you might want to monitor the services that run to enable these applications to run.|
|[0:01:03]||So, you want to be aware of them distinctively, and to be able, for example, to alert specifically on that service and not just on the summary.|
|[0:01:13]||So, that's the general idea. Let's take a look at how we configure that in Checkmk. So, here we are looking at a typical Windows Server.|
|[0:01:21]||You can see all the services I already mentioned, CPU utilization. I actually added some plugins here, so there is some more information than by default.|
|[0:01:30]||But if we scroll down a little, we see the service summary over here and there we can see Autostart services: 58, Stopped services: 2, which is okay because our service summary assumes that if a service is an Autostart, it has to be started.|
|[0:01:46]||If it is stopped, then it's okay because a stopped service has been stopped by a administrator or by someone who does that intentionally.|
|[0:01:55]||Only if a service is in a failed State, will Checkmk show a critical State here and tell you which service failed. So, that's what we have. Now take a look at how we get more insight on specific services.|
|[0:02:09]||To do that, we go to the Setup menu and search for service disco. You could search for service discovery, but the short form suffices here.|
|[0:02:23]||And there we have a rule says Windows service discovery. There we can add a new rule.|
|[0:02:29]||And now, for simplicity reasons, I will simply add a Regular Expression that will add all the windows services here.|
|[0:02:37]||So, of course, you could do several Regular Expressions depending on what you want to monitor. I said, if there are specific use cases, you will be aware of which services are relevant here.|
|[0:02:47]||But I would simply use all of them to just showcase what we can discover here.|
|[0:02:52]||The two next options should be used with caution. The first is Create check if service is in state.|
|[0:03:00]||That doesn't mean that we want the services to be running, but that means Checkmk will only discover the services if they are running.|
|[0:03:07]||So, if there's a critical service for you, that's stopped at this point and you enable this option here and set it to Running, that stopped service will never be discovered.|
|[0:03:17]||So, that's something important to keep in mind. So, this option is there for specific use cases, but, in general, you don't want to check the state of the service here.|
|[0:03:28]||The second option, Create check if service is in start mode, might make more sense because the default here is we only want services that are in the start mode Automatic.|
|[0:03:38]||Because if we take a look here, there's also Manual and Disabled, but a service that is disabled will never run, so it might not make sense to monitor those or it makes special sense to monitor those that depends on the specific use case.|
|[0:03:52]||Also, for Manual Services, there are services that are in a manual startup state, but that will be started by an application, for example, and should be running all the time.|
|[0:04:03]||In that case, you might want to go with this option. Generally, it might make sense to just not give this option and just to discover all the services that match your regular expression.|
|[0:04:15]||In my example here, I'm going to choose the Automatic startup mode because that seems like the same default as long as the service is in automatic startup then I would want to monitor it.|
|[0:04:27]||I'm not going to limit this to any host because this is my default for all the windows hosts. Of course, you could create more specific rules.|
|[0:04:35]||So, let's save that here real quick and let's directly jump to our example Windows host.|
|[0:04:43]||And if we now take a look at the Service configuration page, then we can see there's a lot of new services. We discovered 58 new services, that's all the Windows services in autostart in that Windows operating system.|
|[0:04:57]||And here you can see a lot of services, for example, there is DFS Replication, there is the DHCP server, which would be one use case, for example, to monitor a DHCP server.|
|[0:05:10]||We have the DHCP plugin to monitor the pools, but here we would have the Windows services to be aware of them.|
|[0:05:16]||Same goes for the DNS Service, for example, or something really central like the Lanman Services here, that are relevant for a active directory joint servers. So, there's really a lot to see.|
|[0:05:27]||So, let's just add all of those to the monitoring, just for this example, and activate changes here.|
|[0:05:41]||And if we now take a closer look at our Windows host, we take a few seconds before the services have been checked. So, let's just refresh here real quick.|
|[0:05:56]||So, this is our Windows host, and if we now take a look here, we have all the services and monitoring and we can see in the detailed outputs here. For example, it is running and the start type is auto.|
|[0:06:08]||So, the later one is what we configured in the rule. We only want to see the services that are in auto start and here we see this specific State.|
|[0:06:15]||And if one of the services were stopped now, we would see that it was critical. Actually, there are some sub services here.|
|[0:06:22]||We can see this RemoteRegistry Service. It says it stopped, but it's in startup type auto.|
|[0:06:28]||So, from my configuration, I'm already made aware of a service that isn't running, although it should be running.|
|[0:06:33]||So, I could investigate here. All right, that's how you get the services into monitoring and you see we already have the defaults, so as long as the service is running it's okay.|
|[0:06:44]||If it is stopped unexpectedly, then it's in a critical state. And of course, you can configure that.|
|[0:06:52]||So, if we go to Parameters for this service here and take a look at this rule set, then we can create a rule and now we can tell Checkmk what to do with the service.|
|[0:07:03]||So, the first rule just tells Checkmk to discover the services and to be able to add them to the monitoring.|
|[0:07:12]||And this rule now enables us to configure, for example, the Services states.|
|[0:07:18]||What is the resulting state for Checkmk? You can see we have the Expected state, we can define the Start type here, and we can define the Resulting state of that combination of sets, so you can, in a very detailed way, configure which state the services should be in.|
|[0:07:36]||And there is several more options, like what to do if none of this service state entries match here.|
|[0:07:44]||You could add custom icons to the service, for example, or you could use a alternate name for the service if the service just doesn't speak too much to you.|
|[0:07:55]||So, there's a lot of configuration options on how to monitor the services.|
|[0:07:58]||I'm not going to add anything here because as you saw the defaults are quite same and should work for most use cases.|
|[0:08:04]||So, that concludes the video for today. You learned how to monitor Windows Services.|
|[0:08:09]||You saw that it's quite easy. You just need one rule to monitor them and potentially if there is a special use case, you might need another rule to create some different thresholds, but that's really all there is to do for Windows service monitoring.|
|[0:08:24]||So, that concludes the video for today. Thank you very much for watching. Be sure to subscribe and I will see you around.|
Ep. 1: Installing Checkmk 2.0 and monitoring your first host
In this video, Baris explains how to take get started with Checkmk and start monitoring your first host within a few minutes.
Ep. 2: The Checkmk 2.0 user interface
In this video, Baris take you through the new user interface in Checkmk 2.0. He explains the various components of the User interface such as the new navigation menus, the Sidebar, main dashboard, tactical overview, how to switch between the Checkmk interface themes and much more
Ep. 3: Using SNMP to monitor network devices in Checkmk 2.0
In this episode, Baris explains how to monitor network devices with Checkmk. SNMP is a protocol that many switches, routers, printers, UPSs, hardware sensors and other devices have implemented with the purpose of being able to monitor them easily.
Ep. 4: Monitoring Windows in Checkmk
In this video of our Getting started with Checkmk series, Baris explains how to install a Checkmk agent on a Windows host system and add that into your monitoring environment.
Ep. 5: Using metrics and graphs in Checkmk 2.0
In the 5th episode of the Getting started with Checkmk series, Baris explains using various metrics that you can monitor in Checkmk such as CPU utilization, CPU load etc. You can also see graph visualizations for these metrics or create and customize your own as per your requirements.
Ep. 6: Updating Checkmk 2.0 and using multiple instances
In this video, Baris explains how to update your Checkmk instance. It is very easy and can be done within minutes. You can run multiple Checkmk instances with different versions on the same system. This gives you the flexibility to test the new version before using it in production.
Ep. 7 (part 1): Working with rules and setting thresholds in Checkmk
In the following three-part videos series, Baris explains rule-based monitoring with Checkmk. In the first part, he shows you how you can work with rules and set threshold values. Rule-based configuration is one of the key features for Checkmk which helps you to scale your monitoring easily within minutes.
Ep. 7 (part 2): Smart rules with Host Tags in Checkmk
In the second part of this video, Baris explains using Smart rules with host tags in Checkmk. In the first part, he shows you how you can work with rules and set threshold values. These are features that you can use to build your rules even more intelligently and to better organize your monitoring.
Ep. 7 (part 3): Managing Hosts in Folder in Checkmk
In this final part of our episode on Rule-based monitoring in Checkmk, Baris demonstrates how to manage hosts in folders in Checkmk. This helps you to apply your monitoring configurations at scale and organize your hosts according to your needs.
Ep. 8: Working with Host and Service Groups in Checkmk
In this Baris demonstrates how to create host and service groups in Checkmk, so you can perform actions on an entire group instead of configuring each of them individually.
Ep. 9: Using the Quicksearch function in Checkmk
In this episode of the Checkmk tutorials, Baris shows how you can use the Quicksearch function in Checkmk. You can use it to easily find and manage certain hosts or services. He also explains some examples of filters to you. In Checkmk 2.0 you can use the same syntax in the Seach function found in the monitor menu to get identical results.
Ep. 10: Detecting configuration errors with the Analyze Configuration feature
With the Analyze Configuration feature, you can check if there are any configuration errors in your installation. Checkmk controls a number of possible security risks or potential performance restrictions and indicates if there are any problems.
Ep. 11: View creation and customization in Checkmk
In this video, Baris demonstrates how to customize headers, columns, and more in Views in Checkmk for yourself or other users. He also explains how to create custom views and add desired information to these views.
Ep. 12: Acknowledging problems in Checkmk
In this video, Baris explains how you can acknowledge problems in Checkmk. This function helps you to qualify the states of hosts and services. This allows you to keep track of messages in the main dashboard and, for example, you can add comments to problems.
Ep. 13: Scheduling downtimes in Checkmk
In the episode of our Getting started with Checkmk series, Baris explains how you can manage the maintenance times of your systems in Checkmk. Such scheduled downtimes prevent your monitoring from sending false alarms when a host or service goes to WARN or CRIT during maintenance work. You can also inform the users concerned about the maintenance via Checkmk.
Ep. 14: Distributed monitoring with Checkmk
In this video, Baris explains how you can connect several Checkmk instances to a monitoring system and then manage it.
Ep. 15: MKPs and Plugins in Checkmk
In the 15th episode of our Getting started with Checkmk tutorial series, Baris explains what are Checkmk Extension Packages (MKPs) and how easy it is to integrate them into your Checkmk monitoring environment. MKPs are the preferred format when you make your own extensions as it makes it easy to share with other users or deploy in distributed environments.
Ep. 16: Working with 'Bulk Actions' in Checkmk
In this episode of our Checkmk tutorials series, Baris explains how you can save a lot of time with bulk actions. With this feature you can perform various tasks such as deleting, renaming, service discovery etc. on a large number of hosts simultaneously.
Ep. 17: Working with network topologies in Checkmk
In this video of our gettign startted with Checkmk series, Baris explains how to map network topologies in Checkmk. This feature is quite helpful to manage your network and prevent any unnecessary notifications from the devices in your network.
Ep. 18: Creating and customizing dashboards in Checkmk
In this video of our Getting started with Checkmk series, Mathias explains how you can create and customize dashboards in Checkmk 2.0, so you can get insights into your monitoring according to your requirements. Find out more in this video.
Ep. 19: Monitoring websites and their certificates with Checkmk
In this episode, Bastian demonstrates how to monitor a website and its certificate with Checkmk. You can also monitor specific web pages with Checkmk by using the several options that will suit your use case. Learn more in this video.
Ep. 20: Configuring dashboard elements in Checkmk
Learn how to add data visualization elements of the various metrics into your Checkmk Dashboard. In this video, Mathias explains how you can configure these elements and create a dashboard as per your requirements.
Ep. 21: Setting up notifications in Checkmk
Learn how to set up notifications in Checkmk and assign relevant contacts and contact groups to be notified for various events. Later in this video, our presenter Bastian also demonstrates how you can set up rule-based notifications according to different conditions for hosts and services.
Ep. 22: Monitoring logfiles with Checkmk
Monitor your logfiles with Checkmk using its Logwatch plugin. It is very useful when you want to monitor your logfiles regardless of whether you are using a UNIX/Linux or a windows based system. Learn more in this video.
Ep. 24: 3 Rules for efficient network monitoring
In this video, Bastian demonstrates 3 rules that will help you to efficiently monitor your network interfaces. With Checkmk 2.0, with just three rules, you can set up an efficient network monitoring that will not only monitor all of your network interfaces but also simultaneously provide a detailed overview of all of your ports.
Ep. 25: New UX and security improvements in Checkmk 2.1
Checkmk 2.1 come with many UX improvements such as pre-built dashboards for Linux and Windows, faster core performance and much more. Security features such as two-factor authentication etc. were also added in this new version. Watch this video to learn how to use these new features and enhancements in Checkmk.
Ep. 28: Working with InfluxDB integration in Checkmk
Learn how to send data to InfluxDB from Checkmk. As InfluxDB introduced a new protocol to send data to it, a new connector was developed with Checkmk to talk natively with it. Learn more about it in this video.
Ep. 29: New agent architecture in Checkmk 2.1
With Checkmk 2.1, the agent architecture was modified to enable performance improvements and add new features such as TLS encryption, data compression, and the reversal of direction of communication from the agent. This will enable push mode and pull mode.
Ep. 30: Clustering the Checkmk appliance
In this video, Robin demonstrates how you can cluster your Checkmk appliance to make it resilient against hardware failures. If you are using the Checkmk hardware appliance, it may be helpful to cluster your appliance to maintain high availability.
Ep. 32: Working with the Agent bakery in Checkmk
In this video, Robin demonstrates how to roll out agent packages with the required configuration for different monitored systems using the agent bakery in Checkmk. The "Automatic agent update" is quite a helpful feature as it pulls the latest configurations for an agent automatically and you don't need to manually update all of your agents deployed on different systems.
Ep 33: Monitoring Docker containers with Checkmk
Learn how to monitor Docker containers with Checkmk.In this video, Robin demonstrates the process of setting up a rule to configure the docker plugin and bake an agent with the desired settings for the Docker host.
Ep 34: Introduction to Checkmk Ansible collection
Last year the Checkmk Ansible collection was created to interact with the Checkmk REST API. In this video, Robin demonstrates how you can use this Ansible collection to automate your monitoring with Checkmk.
Ep 35: Monitoring SQL databases with Checkmk
In this video, Robin demonstrates how you can configure your Checkmk site to monitor your SQL databases. As there are many flavours of SQL databases, the process is mostly the same.