Real-time Downtime Validation
| 0 Votes |
Description
This analysis provides the ability to track DC services, Shares, and Reboot status in a real-time report. Servers do not need to be a Domain controller to use this report but they will show false for all ADS services and shares.
Note: Currently the Relevance for this Analysis pulls all endpoints with any windows OS. if you are going to target just a subset of devices change the Relevance to Computer groups (manual or Dynamic), By Active Directory OU, etc. to filter to the devices you want.
Property Details
| 2998602 | |
| Production - Fully Tested and Ready for Production | |
| Real-time Downtime Validation | |
| BESC | |
| Patching, Downtime, Domain Controllers, Services, SEP, SCCM, LogRhythm, ADS, Reboot Pending, Uptime, Sysvol | |
| clarm060 on 2/3/2020 12:49:48 PM | |
| clarm060 on 2/3/2020 12:54:24 PM | |
| 2856 Views / 8 Downloads | |
 
* Average over 1 rating.
** Log In or Register to add your rating.
|
Properties
AD Web
Period
Every Report
| * Results in a true/false |
if not exists service "ADWS" then "Not Installed" else if exists service "ADWS" then if exists running service "ADWS" then "Running" else "Stopped" else "Pending"
AD Domain
Period
Every Report
| * Results in a true/false |
if not exists service "NTDS" then "Not Installed" else if exists service "NTDS" then if exists running service "NTDS" then "Running" else "Stopped" else "Pending"
Carbon Black
Period
Every Report
| * Results in a true/false |
if not exists service "Parity" then "Not Installed" else if exists service "Parity" then if exists running service "Parity" then "Running" else "Stopped" else "Pending"
CiscoAMP
Period
Every Report
| * Results in a true/false |
if not exists (service) whose (it as string as lowercase contains "CiscoAmp" as lowercase) then "Not Installed" else if exists (service) whose (it as string as lowercase contains "CiscoAmp" as lowercase) then if exists (running service) whose (it as string as lowercase contains "CiscoAmp" as lowercase) then "Running" else "Stopped" else "Pending"
LogRhythm
Period
Every Report
| * Results in a true/false |
if not exists service "SCSM" then "Not Installed" else if exists service "SCSM" then if exists running service "SCSM" then "Running" else "Stopped" else "Pending"
SCCM
Period
Every Report
| * Results in a true/false |
if not exists service "CCmExec" then "Not Installed" else if exists service "CCmExec" then if exists running service "CCmExec" then "Running" else "Stopped" else "Pending"
SEP
Period
Every Report
| * Results in a true/false |
if not exists service "SEPMasterService" then "Not Installed" else if exists service "SEPMasterService" then if exists running service "SEPMasterService" then "Running" else "Stopped" else "Pending"
Reboot Pending
Period
Every Report
| * Results in a true/false |
if (exists key "HKLM\Software\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\RebootRequired" of native registry) then "Updates" else if (exists key "HKLM\Software\Microsoft\Windows\CurrentVersion\Component Based Servicing\RebootPending" of native registry) then ("CBS") else if (exists value "UpdateExeVolatile" of keys "HKLM\Software\Microsoft\Updates" of native registry) then (" UpdateExeVolatile") else ("No")
SysVol
Period
Every Report
| * Results in a true/false |
Exists (folder("\\" & (computer name as string) & "\sysvol"))
Relevance
Sharing
| Social Media: |
