I've found two issues with the current (05.0.5000.0000) release of this management pack (MP). A case to Microsoft CSS has been opened.

The first problem occurs when the MP calls the Win32_LogicalMemoryConfiguration class. The alert “A management pack script was unable to complete successfully” is generated based on the MP script result of “The class returned no valid instances”.

The Win32_LogicalMemoryConfiguration topic on MSDN (http://msdn.microsoft.com/en-us/library/aa394181(VS.85).aspx) says:

The Win32_LogicalMemoryConfiguration WMI class represents the layout and availability of memory on a computer system running Windows. Beginning with Windows Vista, this class is no longer available in the operating system.

Windows XP and Windows Server 2003:  This class is no longer supported. Use the Win32_OperatingSystem class instead.

Windows 2000:  This class is available and supported.

This issue has been filed as a bug and CSS will be providing an alternate script that uses Win32_OperatingSystem instead of Win32_LogicalMemoryConfiguration. This will be a temporary workaround until the bug can be fixed in the MP.

Another problem concerning the Win32_ShadowCopy class has surfaced and is currently under review by CSS. The alert “A management pack script was unable to complete successfully” is generated based on the MP script result of “The class returned no valid instances”. This only happens on x64 Windows Server 2008 platforms.

Here is the replacement script that fixes the Win32_LogicalMemoryConfiguration error. Simply copy and paste the contents of the attached script over the script named Microsoft Windows Server 2008 Operating System Discovery.

I'll update this space with additional replacement MP scripts as the case progresses.

Purpose

BES Version 4.1.4 introduced a new type of BES, BlackBerry Enterprise Server for Applications. This provides a secure wireless gateway for BlackBerry devices without requiring the device owner to possess an email account. This custom Management Pack provides basic monitoring of BlackBerry Enterprise Server, version 4.x.

Features

The following product roles are monitored by this management pack:

1) BlackBerry Enterprise Server services

2) BlackBerry Enterprise Server application events

3) BlackBerry Enterprise Server performance counter thresholds.

Configuration

By default, alerts for Critical Errors and above are sent to the membership of the BlackBerry Enterprise Administrators notification group. All BlackBerry Enterprise Server performance threshold rules are disabled by default. If you enable any/all of these, you will need to provide Red/Yellow threshold alerting criteria for each. This Management Pack is bound the to members of the BlackBerry Enterprise Servers computer group. Membership in that group is limited to all managed agent computers who have Version 4.x of the product installed (added by computer attribute discovery).

*IMPORTANT* - When you import this Management Pack into your MOM instance don't forget to change any existing email addresses in the notification group that comes with the MP!

The MP can be downloaded by clicking here: MOM 2005 BES Management Pack

Here's a tip to help you avoid the pitfall of the AD MP scripts not working after agent deployment on Windows Server 2008 DC's. Turns out that you may need to use LocalSystem as the Agent Action account for all of this to work properly. I had been using a Domain Administrator account as my Agent Action account for years until Server 2008 came along. Until I switched my x64-based W2K8 DC's to a LocalSystem agent action account, the agents couldn't create their MOM Latency containers and most of the AD-based script tests would fail with "Access Denied" errors.

Here's some background on this account. It exists on every Windows computer -- whether it is a client workstation, domain controller or server and it has total control over the computer and cannot be locked out or denied any privilege.

The characteristics of this account include:

• Access to all processes, including system processes
• Full access to local resources
• Applications that may run in the context of the LocalSystem account
• Pre-defined account in Windows
• Use of the computer account's privileges to access network resources

On a domain controller, the LocalSystem account has full access to Active Directory because a replica exists on the local computer's file system and is, therefore, considered a local resource.

I haven't yet figured out what has changed in Server 2008 to require the use of this all too powerful account as an agent action account but when I do I'll post details here.

If you're planning on managing any Windows Server 2008 machines with MOM 2005, you'll no doubt want to apply the following new MOM 2005 SP1 hotfix:

The MOM service does not start and event 9014 is logged when you deploy a Microsoft Operations Manager 2005 agent to a domain controller that is running Windows Server 2008

http://support.microsoft.com/default.aspx/kb/919154

You'll note that the deployment of this hotfix on your MOM DAS server requires .NET 2.0 as a prerequisite! Not good. This is where the problem occurs because adding .NET 2.0 to a MOM 2005 DAS server causes MOM 2005 computer discovery to break.

Never fear, this was fixed earlier this year by a little known hotfix:

After you install version 2.0 of the .NET Framework on a server that is running Microsoft Operations Manager 2005 with SP1, you can no longer discover computers in Active Directory

http://support.microsoft.com/kb/913812/en-us

Those of you running HP Systems Insight Manager 5.1 against Windows Server 2008 should take a look at this recently-released hotfix to fix SNMP extension agent processing:

The SNMP Event Log Extension Agent does not initialize correctly on a computer that is running Windows Vista with Service Pack 1 or Windows Server 2008

SYMPTOMS

Here are some useful tools that you might want to check out when working with System Center Operations Manager 2007:

• Create URL Monitor; script to create url monitors, download
• Agent MM; a command line tool to place OpsMgr agents into Maintenance mode, download
• Creating overrides using the SDK, download
• DumpMpContents; dump the contents of a management pack, download
• GroupMM; takes a group and puts all the computers in the group, download
• MP2XMLDUMPER; export MP to XML, download
• MPTOXML; Converting a sealed management pack to readable XML, download
• MPViewer; show the contents of a management pack, for example rules, monitors, views, tasks, console tasks and reports, download
• OpsMgr 2007 Database and Data Warehouse Size Calculator, download
• Agent Proxy Configuration Tool, download
• ProxySettings; enabling proxying for agents, download
• Run As profile configuration helper; configure a RunAs profile for agents in bulk, download
• Counts and displays the number of security events generated every second, download
• How to specify which RunAs account to use for a particular RunAs profile on a particular agent, download
• View and configure the data warehouse data retention policies within your Operations Manager DW, download
• Utility to view Microsoft System Center Operations Manager 2007 Server/Agent Event logs on a remote computer, download
• MP Module Explorer; a tool to find a particular module and see its settings and configuration, download
• OpsMgr Lineage Explorer; a tool allows you to explore the lineage of OpsMgr MP elements, download

Here’s some information that I've recently discovered trying to get a MOM 2005 SP1 agent to read the Security logs on Vista/Windows Server 2008 clients: 

• The new Security log doesn’t allow Authenticated Users read access, so the MOM agent (running under Network Service) can’t, by default, access this log at all. To fix this, the Network Service account has to be granted Read access to the HKLM\System\CurrentControlSet\Services\Eventlog\Security key.

• Unfortunately the MOM agent security event provider cannot find the Security source to enable MOM to read the Security event Description fields.

I've opened a case with Microsoft CSS and I'll post updates as this issue unfolds.

*UPDATE*

It appears that Microsoft will be releasing at least one hotfix to address this and other issues that will allow MOM 2005 and System Center Operations Manager 2007 to manage and be hosted on Windows Server 2008. The support for this was scheduled to be announced the last week of June but has now been delayed until the end of July.

-Stuart

You can download the MP by clicking on the Icon below: