Active Directory Integration

Standard

When installing a System Center Operations Manager 2012 r2 environment Active Directory Integration is not direct part off the installation process. Active Directory integration enables agents to retrieve a the management server by queering Active Directory. You can use this options if you want to deploy your clients using a GPO or System Center Configuration Manager.

In this blog post I’m going to take you to de steps you need to take to deploy and configure Active Directory Integration:

  1. Connect the “System Center Operations Manager 2012 r2” installation media to your “Management Server
  2. Start an elevated “Powershell” console, and browse to “D:\Microsoft System Center 2012 R2\Operations Manager\Server
    Powershell
  3. At the prompt “D:\Microsoft System Center 2012 R2\Operations Manager\Server” type “momadmin.exe<ManagementGroupName> <OMAdminSecurityGroup> <RunAsAccount> <Domain>”. In my case would that be “momadmin.exe Opsmgr2012r2 “Opsmgr Administrators” dev\DevOpsmgrAction dev.ms-opsmgr.eu” and press “Enter
    Powershell When starting “Active Directory Users And Computers” the result should look something like this:
    Active Directory Users And Computers
  4. Start the “System Center Operations Manager Console
  5. In the “System Center Operations Manager Console” click “Administration” expand “Device Management” and click “Management Servers
    Management Server
  6. Right click on the management server that you want to configure and click “Properties
    Management Server Properties
  7. On the “Management Server Properties” screen in the “Auto Agent Assignment” section click “add
  8. In the “Agent Assignment and Failover Wizard” screen on the “Introduction” page click “Next
  9. In the “Agent Assignment and Failover Wizard” screen on the “Domain” page, Select the domain that you want to use. In my case “dev.ms-opsmgr.eu”. Click “Next
    Agent Assignment And Failover Wizard
  10. In the “Agent Assignment and Failover Wizard” screen, on the “Inclusion Criteria” page, click “Configure
  11. In the “Find Computers” wizard, Create a query that matches your needs. and click “Ok
    Find Computers
  12. In the “Agent Assignment and Failover Wizard” screen, on the “Inclusion Criteria” page, click “Next
  13. In the “Agent Assignment and Failover Wizard” screen, on the “Exclusion Criteria” page, click “Next
  14. In the “Agent Assignment and Failover Wizard” screen, on the “Agent Failover” page, select “Automatically manage failover” and click “Create

Now that we configured Active Directory Integration we have to configure the Microsoft Monitoring Agent to make use of the Active Directory integration. You can start the “Microsoft Monitoring Agent” using the “Control Panel”. `

Microsoft Monitoring Agent PropertiesSelect the manual assigned Management Server and click “Remove” and click “Apply”. The Microsoft Monitoring Agent Service is restarted. Now it’s time to wait for the Active Directory Integration service to pick up the configuration.

When the configuration us picked up by the client it should look something like this.

Microsoft Monitoring Agent Properties