Recent Discussions
Any way to get the Memory Graphs to properly show data in Gigabytes?
Hi, When I go to the Memory graphs, the numbers don't match exactly how I'd like them to. For example: I have a server in vCenter that has 128 Gigs of RAM. When I look at the Memory Graph, This server says 125.26G RAM but the graph is at around 135G of RAM. If I look at the Raw Data tab, the MemTotal is listed as 134497869824. This matches where the line on the graph is, but doesn't match what's in the pop up window or at the bottom of the graph. If I take 134497869824 and divide it by 1024 a few times, I do end up with the 125.26 number, but it's a bit confusing when the graph number doesn't match the actual number. If I go into the Graph definition and Turn Off the Scale by units of 1024 option, then the numbers underneath the graph change and will match what's on the graph, but then the numbers are inflated. We're going through a project right now to find VMs that have more memory than they need and determine what to reduce them to. I'd like to easily just look at the graph and see how much they're using so I'd like it that when I have a VM that I've assigned "128" Gigs of memory to, I'd like the graph to have the MemTotal line at 128. Is that possible? Does everyone else use the graphs with the slider on or off? Has anyone else been confused by this or is it just me? ;)Reporting back-end ignoring Time Range?
I've had a few people report that their scheduled reports, that have been working and untouched for ages, are delivering reports that completely ignoring the time range selector on reports now. Its for scheduled ones and ad-hoc. In the preview you'll see your filters and the fact that maybe you have 49 alerts, but as soon as you run it, the time window has been completely ignored by the back-end that serves up the report. So we are getting alerts limited by all our other filters on the reports, but the times are pulling all the way back to 2023 (full 2-year retention period). Anyone else experiencing this? I'm going to open a support ticket, but I'm just wondering if anyone else has seen the reports ignoring the time limits in the deliverable. (Preview looks correct until its run). Thanks!
Monitor a running .exe
We have a need to monitor if a particular .exe is running on a windows system. So if you were to go into task manager and just look for whether it was running or not (e.g. task.exe exists). Seems pretty simple but I'm not sure how to get alerted if the process no longer exists. Thanks in advance
Webhook Event Collection
Greetings. To facilitate real-time communications and alerting, we are actively developing a new capability to collect webhook event data from third party cloud platforms like Cisco Meraki, Catalyst Center, Intersight...Juniper Mist, HPE Aruba Central... If you're interested in providing feedback, beta testing, or being an early adopter, please DM me.
Collector Service Account Locked Out
We have 5 different AD domains that we want to monitor. We created dynamic groups for each domain and added the associated credentials for that domain. For some reason after we added more than one domain, the original collector account started getting locked out. We reset the password at every spot we can find and even changed it on the service on each collector, and still the account gets locked out. We put in a ticket but support says it must be set wrong somewhere, which we'd agree with but where? Our logs show it is getting locked on the collectors, sometimes the same one sometimes other. As soon as we unlock the account we can restart the services.Why is the support AI chatbot always broken?
It takes DAYS to be able to open a ticket because the AI chatbot is never working. When I'm finally able to get connected with support, I mention this and I'm told "yeah, we were busy". That's fine, but this is the ONLY way to open a ticket and it's not very helpful.PowerShell module auto-load
Hi all I'm struggling with something so thought I'd see if anyone else has experienced this... We have a customer running Azure Local which is essentially a Windows Server cluster running Hyper-V and Storage Spaces Direct. We've configured a least priv user for monitoring, this is working fine for WMI queries but none of the PowerShell based modules are working. I've done a load of troubleshooting and found that WinRM will allow connections, but we can't even run basic cmdlets like Write-Host because it doesn't find the commands. It works fine though if we explicitly load the required modules (e.g. Import-Module Microsoft.PowerShell.Utility). We can test and this works fine This proves that the modules we need are there and that there is nothing preventing us from using them (there is no "Just Enough Admin" setup to block it for example). I suppose I could work through all the modules in the platform, identify all the module dependencies and write in code to check and load them, but that would be quite an undertaking and I really can't justify running custom versions of all the LM modules to workaround an issue on a single customer environment. Has anyone run into this before and have a solution? A few things I've ruled out: The modules exist on the system (we're just trying to use built-in/standard modules at the moment) The environment vars have the right Modules path set (and we can import modules manually, so that is working) Ruled out execution policy (if we manually import a module, it works fine) Ruled out a Constrained Session.... at least, I believe so because $execution.context.sessionstate states LanguageMode=FullLanguage Rules out Just Enough Administration being in place... again, I believe so because $PSSenderInfo states ConfigurationName=Microsoft.PowerShell (I believe this would be different if we were operating under a different JEA enforced profile configuration). Also, there's nothing stopping us from manually importing and using modules. It looks to me like it's just module auto-load that is disabled but, as I understand it, this has to be explicitly disable and the customer hasn't done so. I understand from the customer that it works fine with an admin account, perhaps there is some hardening that Microsoft applies automatically as it's a customised Azure Local specific version of Windows Server. I did try and explicitly enable auto-load by creating a profile file for my non-admin user and setting the value $PSModuleAutoloadingPreference='All' but that seemed to have no effect. I'm not convinced it's even looking for a profile file to be honest. When I use WinRM to run "$PROFILE | Select-Object *" then nothing is returned. The customer has opened a ticket with Microsoft about this, although is getting fairly vague suggestions around JEA (which I don't believe is in place) and that Azure Local may have some hardening. So I thought I'd put it to the community :) I'll also raise it with LM support. DaveLayout of new docs site
I appreciate the work that's gone into making the docs site look a bit more modern, but I think it's actually taken a bit of a step back in usability. The content is now squeezed into a fairly narrow section in the middle of the page. I think it would be better to that the menu bar pinned to the left and allow the content to fill the rest of the of page. I'm not too fussed about having the table of contents bar that's appeared on the right, maybe it could be moved to the top of the doc to avoid it taking up page on the right hand side. Dave
Adding additional Root and Intermediate CA certificates to Linux collector.
Hello, I have some https website tests that are failing because the Root and Intermediate CA certificates are not in the collector trust store. I have added the certificates into /etc/ssl/certs and ran sudo update-ca-certificates. openssl s_client connection now verifies the certificate chain, however the website test still fails with the same error. does the collector use a different trust store to the standard package installed to the Ubuntu 22.04 OS? I'm assuming that as it's mostly Java based there is a particular module or something that uses a different trust store. I can't find any information about this elsewhere. The CA's in question are: SectigoRSADomainValidationSecureServerCA.crt SecureCertificateServices.crt /etc/ssl/certs/ lrwxrwxrwx 1 root root 19 Jul 21 17:19 75583d7f.0 -> SecureCertificateServices.pem lrwxrwxrwx 1 root root 44 Jul 21 17:19 65ff7287.0 -> SectigoRSADomainValidationSecureServerCA.pem you can see here the openssl verification of the chain: Start Time: 1753171962 Timeout : 7200 (sec) Verify return code: 0 (ok) Then the website check step failing: One other minor frustration is in the debug runner, !opssl is listed as a valid command, however when trying to run it, it says unknown debug command, really not all that useful so I can to connect to the customer environment and directly ssh to the collectors to even begin troubleshooting because there was no real useful information returned in the UI.
