SCOM Active Directory Integration w/ Clustered RMS
Posted by Scott Horsfield - 12/01/09 at 04:01:50 pmMicrosoft has made available several good blog posts for configuring SCOM for Active Directory Integration. The short coming of this is that none of them explain enabling AD Integration on a clustered RMS. Recently while configuring SCOM AD Integration I ran into the following issue. On a clustered RMS I ran MOMADAdmin.exe as specified by Microsoft w/ the RMS Cluster Computer account as the account that will be granted permissions by MOMADAdmin.exe. No failure events were registered in the OperationsManager event log and no SCPs were created under the Operations Manager/Management Group container. After several frustrating hours on the phone with “Premier” support, I decided to give a few fixes a shot. What corrected this was adding each node’s computer name to my AD Integration group.
The following process should work for enabling AD Integration on a clustered RMS.
-
Create a group specifically for AD Integration.
-
Add this group to the Domain Administrator’s group.
-
I’m still not clear on why this is required, or if it actually is.
-
-
Add this group as a SCOM Administrator.
-
Add each node’s computer account to this group.
-
Run MOMADAdmin.exe w/ this group name and the RMS Cluster Computer Account. (MOMADAdmin.exe will add the RMS Cluster Account to the group)
-
Configure your management server’s LDAP queries.
-
Verify that the SCPs were created.
-
Check for the following events for more information;
-
14467, 14470, 11705, 11707, 11464
-
The following blogs will also help you understand AD Integration w/ SCOM:
http://blogs.msdn.com/steverac/archive/2008/03/20/opsmgr-ad-integration-how-it-works.aspx
No Comments yet »
RSS feed for comments on this post. TrackBack URI
Leave a comment
Powered by WordPress with [GimpStyle]
Entries and comments feeds.