Scott Murray | Cybersecurity Consulting

scomurr.com

Hack Job, SC Operations Manager, SC Orchestrator, System Center

SCOM 2012 – SDK Service Failover

To ensure high availability for your SCOrch solutions that connect to SCOM, failover of the SDK service needs to be managed in the event the SCOM management server the SCOrch environment is connecting to becomes unavailable. The right way to…

scomurr
01/07/2013

Integration Packs, SC Operations Manager, SC Orchestrator, System Center

SCOM 2012 IP – Create Alert

From time to time, it may be found necessary to raise an alert directly into SCOM 2012 from Orchestrator. Contained within the SCOM 2012 IP is an activity named ‘Create Alert’. Per the documentation on TechNet (here), the ‘Create Alert’…

scomurr
12/21/2012

Automation, SC Operations Manager, SC Orchestrator, System Center

SCOM 2012 – Flagging Alerts for Processing using SCOrch 2012

When passing alerts from SCOM onto a downstream system for notification such as ticketing or email, there tends to be two approaches. Override and disable all alert traffic that isn’t immediately actionable, or Put a process/tool in place to automatically…

scomurr
12/19/2012

SC Operations Manager, SC Orchestrator, System Center

SCOM 2012 IP – How to Get an Alert Out of SCOM

When using a runbook to pull traffic out of SCOM 2012 to pass onto a different system or take some sort of automated action, the logical way to start one of those runbooks would be with the ‘Monitor Alert’ activity.…

scomurr
12/18/2012

SC Operations Manager, SC Orchestrator, System Center

SCOM 2012 – Filtering Alert Traffic with Subscriptions and Orchestrator

One possible way of dealing with shipping alert traffic from SCOM to a ticketing system or ECA would be to use subscriptions within SCOM to flag the alerts and then simply have Orchestrator pass all flagged alerts onto the next…

scomurr
12/17/2012