What’s Monitored
What Is Monitored By Argent Enterprise?
Depending on the roles within the network, nodes are monitored with different logic and monitoring intervals. The more important the node is, the more thoroughly it can be watched
Role and What’s Monitored:-
Control Center
1. TCP Ping: Check TCP connectivity
2. RemoteTOD: Check Windows basic connectivity
3. Registry Access
4. Event Log Access
5. WMI test: Check accessibility of WMI namespace \root\cimv2
6. Remote Registry Service: It should be running to allow registry access
7. Server Service: It should be running to allow file share access
8. Argent Enterprise Service
9. Free Disk Space of product installation drive
10. Used Disk Space of product logs: It alerts on running away loggings
11. Used SQL DB Space: It alerts on unmaintained SQL backend
12. Used SQL DB Log Space: It alerts on incorrectly configured SQL backup scheme.
13. Any custom monitoring logic using WMI and PowerShell scripts
Domain Observer
1. TCP Ping: Check TCP connectivity
2. ATB Round Trip Test Between Center and Domain Observer
3. RemoteTOD: Check Windows basic connectivity
4. Registry Access
5. Event Log Access
6. WMI test: Check accessibility of WMI namespace \root\cimv2
7. Remote Registry Service: It should be running to allow registry access
8. Server Service: It should be running to allow file share access
9. Argent Domain Observer Service
10. Free Disk Space of product installation drive
11. Used Disk Space of product logs: It alerts on running away loggings
12. Used SQL DB Space: It alerts on unmaintained SQL backend
13. Used SQL DB Log Space: It alerts on incorrectly configured SQL backup scheme.
14. Any custom monitoring logic using WMI and PowerShell scripts
Segment Inspector
If Segment Inspector is installed as Remote Segment Inspector (separated by Firewall), following two checks are done:
1. TCP Ping: Check TCP connectivity
2. ATB Round Trip Test Between Domain Observer and Segment Inspector
If Segment Inspector is installed on the same LAN as Domain Observer, additional checks are done:
3. RemoteTOD: Check Windows basic connectivity
4. Registry Access
5. Event Log Access
6. WMI test: Check accessibility of WMI namespace \root\cimv2
7. Remote Registry Service: It should be running to allow registry access
8. Server Service: It should be running to allow file share access
9. Argent Segment Inspector Service
10. Free Disk Space of product installation drive
11. Used Disk Space of product logs: It alerts on running away loggings
12. Any custom monitoring logic using WMI and PowerShell scripts
SNMP Switch
SNMP Switch is the part of Infrastructure backbone. It should be monitored closely.
1. TCP Ping: Check TCP connectivity
2. SNMP connectivity
3. Any custom monitoring logic using WMI and PowerShell scripts
AT Monitoring Engine
Any installed AT engine is monitored automatically.
1. TCP Ping: Check TCP connectivity
2. RemoteTOD: Check Windows basic connectivity
3. Registry Access
4. Event Log Access
5. WMI test: Check accessibility of WMI namespace \root\cimv2
6. Remote Registry Service: It should be running to allow registry access
7. Server Service: It should be running to allow file share access
8. Argent Enterprise Service
9. Free Disk Space of product installation drive
10. Used Disk Space of product logs: It alerts on running away loggings
11. Optional Windows performance monitoring: It is controlled by CHECK_AT.XML
12. Optional best practice monitoring: It monitors product monitoring settings controlled by CHECK_AT.XML
13. Any custom monitoring logic using WMI and PowerShell scripts
If the AT component uses SQL Server as backend, following two are monitored:
14. Used SQL DB Space: It alerts on unmaintained SQL backend
15. Used SQL DB Log Space: It alerts on incorrectly configured SQL backup scheme.
Windows
Ordinary Windows servers and workstations are monitored with reduced frequency and less complicated logic.
1. TCP Ping: Check TCP connectivity
2. RemoteTOD: Check Windows basic connectivity
3. Registry Access
4. Event Log Access
5. WMI test: Check accessibility of WMI namespace \root\cimv2
6. Remote Registry Service: It should be running to allow registry access
7. Server Service: It should be running to allow file share access
8. Any custom monitoring logic using WMI, PowerShell scripts
UNIX Server
Ordinary UNIX servers are monitored with reduced frequency and less complicated logic.
1. TCP Ping: Check TCP connectivity
2. Any custom monitoring logic using UNIX Shell scripts
IP Device
Ordinary IP devices are monitored by TCP Ping with reduced frequency