Skip to content
adatum
  •  SCOM Web API
  • About adatum
Community

SCOM Community MP Catalog

  • 24/10/2017
  • by Martin Ehrnst

Another great SCOM community contribution from the guys over at SquaredUP  and Nathan Foreman – an open sourced community management pack catalog for SCOM. This basically lets you discover community management packs directly within the SCOM console, much like the built-in version and the announced partner catalog.

It will also show (or notify you) on any updates to the already installed MP’s you have installed and listed in the catalog.

As part of the moderator team, I encourage everyone to check it out or contribute on GitHub

Share this:

  • LinkedIn
  • Twitter
  • Email
Operations Manager

Hunting quick closing SCOM alerts

  • 12/10/201712/10/2017
  • by Martin Ehrnst

 

I had a feeling that we had alot of alerts that closed automatically, very quickly and without any interaction from automation. To get an overview I put together this SQL query to run against the Datawarehouse DB.

The query joins three views and extract the alert Guids, name, ManagedEntity (monitoring object) and alert name.


select Res.AlertGuid, Res.TimeFromRaisedSeconds, Alert.AlertName, Entity.ManagedEntityDefaultName, Entity.ManagedEntityGuid from Alert.vAlertResolutionState AS Res
INNER JOIN Alert.vAlert as Alert
on Res.AlertGuid = Alert.AlertGuid
INNER JOIN vManagedEntity AS Entity
on Alert.ManagedEntityRowId = Entity.ManagedEntityRowId
where Res.TimeFromRaisedSeconds < '30' AND Res.StateSetByUserId = 'System' AND ResolutionState = '255' AND Alert.RaisedDateTime >= DATEADD(day,-30, GETDATE())

 

With a little help from my DBA we ended up with this which also group alert name and count the # of alerts for each object

select
--Res.AlertGuid
--, Res.TimeFromRaisedSeconds
COUNT(*)
,Alert.AlertName
--, Entity.ManagedEntityDefaultName
, Entity.Path
, Entity.DisplayName
from Alert.vAlertResolutionState AS Res
INNER JOIN Alert.vAlert as Alert
on Res.AlertGuid = Alert.AlertGuid
INNER JOIN vManagedEntity AS Entity
on Alert.ManagedEntityRowId = Entity.ManagedEntityRowId
where Res.TimeFromRaisedSeconds < '49' AND Res.StateSetByUserId = 'System' AND ResolutionState = '255' AND Alert.RaisedDateTime >= DATEADD(day,-4, GETDATE())
GROUP BY AlertName, Path, DisplayName

For other useful SCOM SQL Queries, take a look at Kevin Holman’s blog

Share this:

  • LinkedIn
  • Twitter
  • Email

Top Posts & Pages

  • Creating Azure AD Application using Powershell
  • Using Azure pipelines to deploy ARM templates
  • Azure AD authentication in Azure Functions
  • Web API for System Center Operations Manager
  • Microsoft Ignite 2019 announcements and news
  • SCOM Alerts to Microsoft Teams and Mattermost
  • Update: SCOM web API
  • Script to add SCOM agent management group
  • Microsoft killed SCOM internally
  • HealthServiceStore.edb file growth

Tags

#Ignite #Serverless #Azure # speaking agent api authoring Automation Azure AzureAD AzureCloudShell AzureFunctions AzureMonitor AzureRM Community CSP database EventGrid ExpertsLive ExpertsLiveEU Integrations LogAnalytics management pack monitoring MSBuild2018 MSIgnite MSIgnite2017 MSOMS MSP nicconf OperationsManager OpsMgr Powershell ProjectHonolulu QUickPublish rest SCDPM SCOM SCOM2016 scu2016 SCVMM Serverless SquaredUP SysCtr system center Webasto WindowsAdminCenter

Follow Martin Ehrnst

  • Twitter
  • LinkedIn

RSS Feed RSS - Posts

RSS Feed RSS - Comments

Microsoft Azure MVP

Martin Ehrnst Microsoft Azure MVP
Adatum.no use cookies to ensure that we give you the best experience on our website. If you continue to use this site we will assume that you are happy with it. Cookie Policy
Theme by Colorlib Powered by WordPress
loading Cancel
Post was not sent - check your email addresses!
Email check failed, please try again
Sorry, your blog cannot share posts by email.