5 SQL Server Management Packs 6.5.1.0 were released on 30 of June!

Detailed information & download links:

 1. Three brand new SQL Server Reporting Services Management Packs:

• SQL Server Reporting Services 2008 Management Pack
• SQL Server Reporting Services 2012 Management Pack
• SQL Server Reporting Services 2014 Management Pack

Features:

Deployment Summary dashboard

Deployment Summary dashboard has five widgets:

1.       SSRS Deployments – shows the list of discovered SQL Server 2014 Reporting Services Deployments with their overall states.

2.       Details – shows properties for the selected Deployment.

3.       Active Alerts – shows the list of active alerts triggered for the selected Deployment or related (contained) objects.

4.       SSRS Instances – shows the list of SSRS Instances contained in the selected Deployment and their overall states. Note: you may double click the name of an Instance in the “SSRS Instances” widget to drill down to “Instance Summary” dashboard.

5.       Monitoring – shows state and performance tiles for following rules and monitors

Instance Summary dashboard

Instance Summary dashboard has four widgets:

1.       Instances – shows the list of discovered SQL Server 2014 Reporting Services Instances with their overall states.

2.       Details – shows properties for the selected SSRS Instance.

3.       Active Alerts – shows the list of active alerts triggered for the selected SSRS Instance.

4.       Monitoring – shows state and performance tiles for following rules and monitors:

Discovery of SQL Server 2014 Reporting Services Instance

The Monitoring Pack for Microsoft SQL Server 2014 Reporting Services automatically discovers instances of SSRS 2014.

Discovery of SQL Server Reporting Services Deployment

The Monitoring Pack for Microsoft SQL Server 2014 Reporting Services automatically discovers Deployments of SQL Server 2014 Reporting Services. Deployment includes following components:

o   One or more instances of SQL Server 2014 Reporting Services.

o   SSRS Catalog SQL Server Databases

o   SSRS Temporary SQL Server Database.

Availability of components of SQL Server Reporting Services

This monitoring pack introduces following monitors a set of monitors which enable the monitoring of both SSRS Deployments and SSRS Instances. Monitors verify the availability of these components from following perspectives:

·         SSRS Deployment:

o   SSRS catalog database is accessible;

o   SSRS temporary database is accessible;

o   There are no broken references to shared data sources;

o   Number of failed report executions (expressed as percentage of total report executions) is below the threshold;

o   All instances within deployment are discovered.

·         SSRS Instance:

o   SSRS catalog database is accessible;

o   SSRS temporary database is accessible;

o   SSRS windows service is started;

o   SSRS web service is accessible;

o   SSRS report manager is accessible;

o   SSRS Instance is not using too much CPU resources;

o   SSRS Instance is not using too much memory resources;

o   There is no memory configuration conflict between SSRS Instance and SQL Server Database Engine (if both components are running on the same server);

o   Other processes allow enough memory resources for the SSRS Instance;

o   Number of failed report executions per minute is below the threshold for the given SSRS Instance;

Performance metrics:

·         SSRS Deployment:

o   Failed report executions per minute

o   Report executions per minute

o   Number of reports

o   Number of shared data sources

o   Number of subscriptions

o   On-demand execution failures per minute

o   On-demand executions per minute

o   Scheduled execution failures per minute

o   Scheduled executions per minute

·         SSRS Instance:

o   CPU utilization (%)

o   WorkingSetMaximum (GB)

o   WorkingSetMinimum (GB

o   Memory consumed by other processes (%)

o   Memory consumed by SSRS (GB)

o   Total memory on the Server (GB)

o   Total memory consumed on the server (GB)

o   Failed report executions per minute

o   Report executions per minute

2. SQL 2005, 2008, 2012 Management Packs Update

New Features:

·         New dashboards (instance level and database level) for both SQL 2008 and SQL 2012.

·         Integration with Microsoft SQL Server Presentation Management Pack, the folder and views structure has been updated.

·         Support of localized performance counters (CPU and Disk metrics) has been added.

·         Monitors have been updated to use consecutive samples instead of average sample value.

·         Removed SQL Default Action Run AS from Write Actions.

·         None-Default port is now supported

·         New property - Server Role Type

·         Performance collection rules have been  updated to use none-optimized performance collection to improve the accuracy of daily and hourly-aggregated data.

·         AllwaysOn Read-Intent error fixed, Read-Intent Monitoring is not supported.

·         Performance counter object name changed for a number of rules.

·         Discoveries have been disabled for Analysis Services and Reporting Services.
·         Icons updated for a number of classes.

   3. SQL 14 MP Update 1

·         DB discovery issue on Standard Edition

System Center Management Pack for SQL Server 2014 Released!

System Center Management Pack for SQL Server 2014 Released Today!

Download link

Accordingly to download details list of new features:

New features:

• Support of In-Memory OLTP Discovery and Monitoring
• Generic Presentation Management Pack has been introduced. This management pack defines version-independent group-based views and dashboard.
• Summary dashboard for SQL Server 2014 Instances with drill-down to SQL 2014 Database dashboard.
• Summary dashboard for SQL Server 2014 Databases.
• Space monitoring now supports databases hosted on Cluster Shared Volumes, SMB Shares and Azure BLOBs. Both drive letters and mount points are supported.
• Monitoring of SQL Server 2014 Managed Backup.
• New profile dedicated for tasks only: Microsoft SQL Server 2014 Task Run As Profile.

Some screenshots of new Dashboards from guide:

Instance Summary Dashboard:

Drill-down by double click:

Database Summary Dashboard:

SQL Server Management Pack 6.4.1.0 is released!

SQL Server Management Pack 6.4.1.0 is released after the month after release of SQL MP 6.4.0.0

Changes in October 2013 Update:
• Fixed CPU Utilization Monitor
• Fixed SQL Server seed discovery for WoW64 environments
• Alert severity of Average Wait Time Monitor was changed to Warning, added consecutive sampling to reduce noise, threshold was changed to 250
• Alert severity of SQL Re-Compilation monitor was changed to Warning, threshold was changed to 25. The monitor was disabled by default.
• Minor fixes

Download link

Manage Allow Agent to Act as a proxy option management pack

I want to share management pack which allows to manage "Allow Agent act as a proxy"  setting in simple and smarter way!

SCOM 2012 Tweaker

Usually SCOM administrators use some scheduler and script, which sets option for all agents. I do not recomend set this option for all agents because of security risk. Instead of this unsecure approach I suggest to use Groups and set option based on Agent's membership in a group.

There are two groups in this management pack:

• Allow Agent to Act as a Proxy
• Deny Agent to Act as a Proxy

All you need to do is to import the MP, and add agents into the corresponding group:

You could also use dynamic membership.

 "Manage Allow Agent to act as a proxy setting" rule checks Agent Group membership and apply corresponding setting. 

By default Rule interval is 30 minutes, but you can tune it in the rule's settings.

Pay Attention that Deny restriction has higher priority!

Rule does nothing to the Agents which doesn't belong to any group.

Script sources:

How to configure monitoring under the "Low Privilege" for SQL 2012 Cluster

Since last post I continue explore new SQL MP...
Monitoring  under the "Low Privilege" for SQL 2012 cluster it is one of the interesting features in the new SQL MP 6.4.0.0!
It is good to know that now it is possible to do SQL 2012 Cluster monitoring with not SA permissions, which means operations are unable to access to user's confidential information.

Usually Run As and monitoring under the "Low Privilege" configuration is not trivial, so I want to share with you this guide.

Meet with my sandbox:

• Active Directory server
• SCOM 2012 SP1 server on Windows 2012 server
• 2-nodes Windows Server 2012 cluster with SQL 2012 Cluster Instance
• iSCSI software target server - shared storage for my cluster

Ok let’s go!

1. AD configuration:

1.    In Active Directory, create three domain users that will be commonly used for low-privilege access to all target SQL Server instances:
a.    SQLDefaultAction
b.    SQLDiscovery
c.    SQLMonitor

2.    Create a domain group named SQLMPLowPriv and add the following domain users:
a.    SQLDiscovery
b.    SQLMonitor

 Just Open Active Directory Users and Computers and create users and Groups:

3.   Grant special permission: Read-only Domain Controllers - “Read Permission” to the SQLMPLowPriv

Open SQLMPlowPriv properties in Active Directory Users and Computers, go to Security tab and click Advanced:

On Advanced settings click add:

Type Read-only Domain Controllers, click ok:

Grant Read permission and save settings:

2. Cluster node configuration

NOTE: Whatever setting you made on first cluster node, the same must be done on a second node of a cluster.

1. On the agent machine, add the SQLDefaultAction and SQLMonitor domain users to the “Performance Monitor Users” local group.

2.    If the operating system of the agent machine is Windows Server 2008 or above, add the SQLDefaultAction and SQLMonitor domain users to “EventLogReaders” local group. 

 

3.    Add the SQLDefaultAction domain user and SQLMPLowPriv domain group as members to the local Users group.

 

4.    Configure the “Log On Locally” local security policy setting to allow the SQLDefaultAction domain user and SQLMPLowPriv domain group users to log on locally.

 

5.   Grant Read permission on HKLM:\Software\Microsoft\Microsoft SQL Server registry path for SQLDefaultAction and SQLMPLowPriv

6.   Grant “Execute Methods”, “Enable Account”, “Remote Enable”, “Read Security” permissions  for root, root\cimv2, root\default, root\Microsoft\SqlServer\ComputerManagement11 WMI namespaces to SQLDefaultAction and SQLMPLowPriv

Start WMImgmt.msc console from the command line, open properties

Open Root, click security

Add SQLDefaultAction and SQLMPLowPriv and grant permissions. Do the same for all needed WMI namespaces. Do not forget do the same on second node!

7.   Grant Read permission on HKLM:\Software\Microsoft\Microsoft SQL Server\[InstanceID]\MSSQLServer\Parameters registry path for SQLMPLowPriv for each monitored instance

This step is required because it does not inherits parameters from the top level, but MP need access to this registry key

Time for cluster-specific configuration:

1.   Grant “Remote Launch” and  “Remote Activation” DCOM permissions to the SQLMPLowPriv, SQLDefaultAction  using DCOMCNFG

Run from command prompt DCOMCNFG command to open Component Services management console, than open My  computer properties

Edit Defaults of Launch and Activation Permissions:

Note: On some configurations Defaults doesn't work, so need also set Limits.

Grant Permissions - do not remove Local Launch, just add Remote Launch and Activation:

2.   Allow Windows Remote Management through the Windows Firewall  

 

*In fact I just turned Firewall off, for simplicity, because otherwise I have to spent time to add exceptions for SCOM agent and so on.

3.   Grant “Read” and “Full Control” access for the cluster to the SQLMPLowPriv using Failover Cluster Manager

 In FC Manager open cluster properties:

On a Cluster Permissions tab grant Read and Full control permissions:

3. SQL Server configuration

1. In SQL Server Management Studio, create a login for “SQLMPLowPriv” on all SQL Server instances to be monitored on the agent machine, and grant the following permissions to each “SQLMPLowPriv” login:
a. VIEW ANY DEFINITION
b. VIEW SERVER STATE
c. VIEW ANY DATABASE
2. Create a SQLMPLowPriv user that maps to the SQLMPLowPriv login in each existing user database, master, msdb, and model. By putting user in the model database, it will automatically create a SQLMPLowPriv user in each future user-created database. See the code sample below. You will need to manually provision the user for attached and restored databases.
3. Add the SQLMPLowPriv user on msdb to the SQLAgentReaderRole database role.
4. Add the SQLMPLowPriv user on msdb to the PolicyAdministratorRole database role.

All steps above are easy with using sample scripts which inside the guide:

Results of second script will provision SQLMPLowPriv to all user databases.
I’ve also perform above steps for SQLDefaultAction

I’ll skip tasks configuration, lets move to Operations Manager configuration.

4. Operations Manager Configuration

1. Import the SQL Server Management Pack if it has not been imported.

I have absolutely clean environment, so I have to import MP first:

2. Create a SQLDefaultAction, SQLDiscovery and SQLMonitor Run As accounts with “Windows” account type.

In Operations Console go to Administrator, open Run As Configuration/Accounts, create new accounts

I recommend to use more secure Run AS accounts distribution, as in this case you explicitly map account to computer.

On absolutely clean environment I have to deploy agents on cluster nodes before next step

Do not forget set Allow Agent act as a proxy setting for both cluster nodes! Cluster will be not discovered in such case

3. On the System Center Operations Manager console, configure the Run As profiles for the SQL Server Management Pack as following:
a. Set the “SQL Server Default Action Account” Run As profile to use the SQLDefaultAction Run As account.

Create Group and include Cluster node Agents in this group - it allows to scope down Run As profiles to SQL Cluster in next steps

 Open Run As Configuration/Profiles, configure profiles - do not furget select group created on previous step as a target! Useing all target objects is not safe - if appropriate security is not configured on some machine or distribution is not set monitoring will stop work properly on thouse machines

Do not forget to set run as account distribution – add both nodes of cluster

Do the same for SQL Discovery and SQL Monitor
b. Set the “SQL Server Discovery Account” Run As profile to use the SQLDiscovery Run As account.
c. Set the “SQL Server Monitoring Account” Run As profile to use the SQLMonitor Run As account.

Next step is map user account with enough permissions to the Windows Cluster Action Account, I’ve used freshly created Cluster admin account, otherwise Windows Cluster may be not discovered:

Same as for other accounts do not forget to configure account distribution – map both nodes for Cluster admin account.

That’s all, configuration is ready!

Now let's wait while Windows Failover cluster will be discovered, than SQL discovery will be stared. 
It may take for a while… Of course there are several ways to push the discovery, but for reasons of clarity I will not touch my environment.

After about 10 minutes virtual nodes of a cluster are discovered:

One virtual node it is WFC, second it is SQL Cluster name.

Finally, after another 10 minutes SQL Server Cluster is discovered and monitored!

Databases are also discovered and monitored!

Let's do simple test - take user DB offline

After some time Alert appeared and DB is in critical State

Cheers!!!

Hot news! SQL Server Management Pack 6.4.0.0 is release and available for download!

Hello, dear friends!
Hot news - SQL Server Management Pack v. 6.4.0.0 released and available for download

List of new features:

• New Dashboard for SQL Server 2012 DB
• New Monitors and Rules – only for SQL 2008 and SQL 2012
• Collect DB Active Connections count
• Collect DB Active Requests count
• Collect DB Active Sessions count
• Collect DB Active Transactions count
• Collect DB Engine Thread count
• Thread Count monitor
• Transaction Log Free Space (%) monitor
• Transaction Log Free Space (%) collection
• Collect DB Engine CPU Utilization (%)
• CPU Utilization (%) monitor for DB engine
• Buffer Cache Hit Ratio monitor
• Collect DB Engine Page Life Expectancy (s)
• Page Life Expectancy monitor
• Collect DB Disk Read Latency (ms)
• Collect DB Disk Write Latency (ms)
• Disk Read Latency monitor
• Disk Write Latency monitor
• Collect DB Transactions per second count
• Collect DB Engine Average Wait Time (ms)
• Average Wait Time monitor
• Collect DB Engine Stolen Server Memory (MB)
• Stolen Server Memory monitor
• Collect DB Allocated Free Space (MB)
• Collect DB Used Space (MB)
• Collect DB Disk Free Space (MB)
• SQL Re-Compilation monitor
• Run As configuration changes to support Low privilege for SQL Server 2012 Cluster

I've deployed it and on my brand new sandbox.
Some screenshots of new dashboard web and regular console:

BTW To make tiles green I've have to enabled corresponding monitors.

First post - Welcome!

I'm Aleksandr Andrushchenko IT Management and System Center expert with 6 years experience.
I'll share with you my experience in IT Management and System Center, also news, tips and so on.