Configuring Microsoft Active Directory monitoring
The Monitoring Agent for Microsoft Active Directory is automatically configured and started after installation.
Before you begin
Review the hardware and software prerequisites, see Software Product Compatibility Reports for Microsoft Active Directory agent
About this task
The directions here are for the most current release of this agent. For information about how to check the version of an agent in your environment, see Agent version command. For detailed information about the agent version list and what's new for each version, see Change history.
Running the Microsoft Active Directory agent as an administrator user
You must have administrative rights to run the Microsoft Active Directory agent.
About this task
All data sets are available to the users who are members of the Administrators group. In this task, you create a user, assign administrator rights to the user, and change the user account for the agent to this user.
Procedure
Configuring local environment variables
You must specify values for the environment variables to view the Sysvol replication data in the dashboard. Optionally, you can also update the cache interval value to enable or disable caching.
Procedure
What to do next
Configuration of GPO policies
The configuration of GPO policies is to view the details of the Last Logon Information widget only.
Procedure
- Go to Configuration > Policies > Administrative Templates > Windows Components > Windows Logon Options.
- In Windows Logon Options select the checkbook of Display information about previous logons during user logon.
- Open command prompt with administrative rights and run the command
gpupdate /force
for the changes to get reflected.
Configuration values
About this task
- Configuration parameters in k3zcma.ini
- LLI_LOG_ENABLE: This configuration parameter allows the user to keep the logs of last logon information. By default it is set as FALSE. To enable this parameter set this value to True.
- LLI_LOG_NAME: This configuration parameter allows the user to configure the filename. By default it is set as LastLogonInformation. User can change the filename by entering a value as lastlogon_info
- LLI_LOG_PATH: This configuration parameter allows the user to configure the path where the logs are to be stored. By default they will be stored in TMAITM6_x64\logs for 64 bit agent. These 8 IBM Tivoli Composite Applications for Microsoft Active Directory: Microsoft Active Directory Installation and Configuration Guide folders are under the candle home path where the agent is installed. User can change the file path to C:\IBM\APM\TMAITM6_x64\logs\LLI_logs.
- UWOP_NUMBER_OF_DAYS: This configuration parameter allows the user to configure number of days. By default it is set to 180 days.
- If the LLI_LOG_ENABLE is set to TRUE it is mandatory to set the LLI_LOG_PATH.
- If the LLI_LOG_ENABLE is set to TRUE the files will be stored at the configured LLI_LOG_PATH with the timestamp appended to it. For example, lastlogon_info_20_02_2020_14_24_58.
- Each time user modifies the k3zcma.ini file for these configuration parameters, the agent must be restarted.
- User has to manually delete of the logs that are stored at configured path whenever required.