locked
Clustering Management Pack in a multiple-forest topology with a Low-Privilege Environment RRS feed

  • Question

  • We have a multiple forest topology where forest 1 has the Operations Manager RMS/MS/etc, forest 2 has Gateway servers, forest 3 has Gateway servers.

    We are monitoring clusters in each of these forests.

    From the clustering MP guide it states:

    "If the action account for the agent is using a low-privilege account, you will need to configure the Windows Cluster Action Account Run As profile with an account that has the administrative credentials to access the cluster."

    We are running as local system so this configuration matches our situation. The question here is what is the target which should be used in this type of a configuration? The first forest was easy as it defaulted to All targeted objects for the class of Entity but that's not working as we attempt to monitor clusters in different forests.

    Question: What is the correct class, group or object to use when targeting clusters in different forests with different Run As accounts?

    Cameron
    Tuesday, June 23, 2009 4:05 PM

Answers

  • The cluster virtual servers should be monitored by the agents on the physical servers of the cluster.  So you should be setting the RunAs accounts to work against the Windows computer objects that host the cluster virtual server in each forest. 
    • Marked as answer by StuartR Thursday, August 27, 2009 7:07 PM
    Thursday, June 25, 2009 6:15 PM