Active Directory monitor

The Active Directory monitor in ipMonitor establishes a connection to the Active Directory service and sends a bind request, indicating an LDAP v2 request. Next, it sends a search request querying which LDAP versions the Active Directory service supports. When it receives an answer, it sends an unbind request for the Active Directory server to close the TCP connection. The Active Directory monitor supports LDAP2—the most commonly supported version.

Use the Active Directory Monitor to verify that:

  • An Active Directory client an open a connection with an Active Directory server.
  • The sever adheres to the Active Directory protocol by responding with the correct codes.
  • The server responds within a required number of seconds.

Active Directory is the directory service included with Microsoft® Windows® and Windows Server® operating systems. The service resolves domain object names to object records using Lightweight Directory Access Protocol (LDAP) search or modify requests. Additionally, it provides a centralized location to store information about networked devices, services, and users. It also provides a means to securely add, modify, delete, and locate data in the directory store.

Create an Active Directory monitor

  1. Click Devices in the toolbar.
  2. Locate and click the targeted device you want to monitor.
  3. In the toolbar, click Add > Add New Monitor.

  4. In the Select Monitor menu, click Active Directory.
  5. Under Identification, enter a name in the Monitor Name field using up to 64 characters.

    This name will appear in the Monitors List, Monitor Status, Logs pages, and your reports.

    You can change this name later, if necessary. ipMonitor does not use this field to internally identify this monitor.

  6. Select Enabled to enable the monitor.

    When enabled, the monitor tests the specified resource using the settings you enter under Test Parameters. You can disable the monitor later if required.

  7. (Optional) Select Store Monitor Statistics for Recent Activity and Historical Reports to enable this functionality.
  8. Under Test Parameters, enter the IP address or domain name of the Active Directory server.

  9. Enter the TCP Port of the Active Directory server. The default is TCP port 389.
  10. Under Timing, configure the fields for the monitor testing states.

    1. In the Maximum Test Duration field, enter the maximum test duration rate (in seconds) that the monitor times out before the test is considered a failure.
    2. In the remaining fields, enter the number of second between each test while the monitor is in an OK state (Up), a failed state while alerts are processed (Down), and a failed state and the maximum number of alerts have been processed (Lost).

      In the Lost state, no additional failure alerts are processed. However, a recovery notification is sent if the monitor recovers.

  11. enter the amount of time delay for each monitor testing state. For example, you may choose to intensify testing when a monitor enters a Warn state and reduce testing when the monitor enters a Lost state.
  12. Under Notification Control, complete the fields to determine how many test failures must occur before an alert is sent.

    1. Enter the number of test failures that occur for each alert before ipMonitor generates an alert for the monitor. The default option is 3.
    2. Enter the maximum number of alerts to send before the monitor enters a Lost state.

      The monitor must be assigned to a notification alert to generate an action.

  13. Under Recovery Parameters, complete the fields to indicate the corrective action used to automatically restore a resource using the External Process Recovery, Reboot Server Recovery, or Restart Service Recovery action.

    1. Enter the Fully Qualified Domain Name (FQDN), NetBIOS, or IP Address of the machine hosting the service that needs a restart or the machine that needs a restart. You can also click Browse to locate and select the machine.
    2. Select the set of credentials used by the recovery alert. You can select a specific credential to execute recovery alerts that require access to restricted resources, such as Reboot Server, Restart Service, or External Process.
    3. Select the list of services to restart on the target machine specified in the FQDN/NetBIOS/IP Address field. This field is only required for the Restart Service alert. If a service has dependencies, select all dependent services.
  14. Click OK.