Introduction to the AD FS Management Pack

Applies To: Operations Manager 2007

The Active Directory Federation Services (AD FS) Management Pack provides both proactive and reactive monitoring of your AD FS deployment for both the federation server and the federation server proxy roles. The management pack monitors events that the AD FS Windows service records in the AD FS event logs, and it monitors the performance data that the AD FS performance counters collect. It also monitors the overall health of the AD FS system and the federation passive application, and it provides alerts for critical issues and warning issues.

This management pack includes monitoring of the following core components: token issuance, token acceptance, artifact service, Web sites, trust management, certificate rollover, and Windows Internal Database synchronization. For example, the AD FS Management Pack monitors the following:

  • Events that indicate service outages and operational errors or warnings

  • Alerts that indicate configuration issues and background tasks failures or warnings

  • Whether auditing is occurring successfully

  • Communication between the federation server and the federation server proxy

  • Notification of malformed access requests

  • Web site availability

  • The health of the Secure Sockets Layer (SSL) certificate of the federation passive Web site in Internet Information Services (IIS) (located at <ComputerName>\Sites\Default Web Site\adfs\ls).

Document Version

This guide was written based on the 6.1.7221.5 version of the AD FS 2.0 Management Pack.

Getting the Latest Management Pack and Documentation

You can find the AD FS Management Pack in the System Center Operations Manager 2007 Catalog (http://go.microsoft.com/fwlink/?LinkId=82105).