- 31 Jan 2024
- 1 Minute to read
- Print
- DarkLight
- PDF
Configuration Manager (Service Check)
- Updated on 31 Jan 2024
- 1 Minute to read
- Print
- DarkLight
- PDF
Service Check Category: Netreo Checks
Passive: Yes
Description: Although named "Configuration Manager Passive Check," this is technically an authentication failure service check. It is a passive check added to every device by the “Default” device template. This particular service check is updated only by the Config Manager, and is used to detect failures of a device's authentication credentials. Any failure by the config manager to retrieve a configuration file (scheduled, manual, or triggered) will set this check to a WARNING alarm state.
Please note, however, that this check is intrinsically tied to the config manager. If the three criteria required for device configuration management are not all met for the respective device (resulting in the device being ignored by the config manager), this check will always remain in an OK state for that given device (since it's passive). This means that even if the device does have bad credentials; if config manager is not managing the config settings for it, this check will never detect those bad credentials.
Although this check is directly tied to the config manager; the incident opened by an authentication failure alarm is completely separate and unrelated to the incident opened by the config manager due to a detected config change. These two events generally shouldn't happen together for a single device anyway, but the distinction is useful to make.
By default, this service check uses the “blackhole” action group as the only selected action group in its alarm configuration. This means that no alert notifications are sent when an authentication failure alarm causes an incident to be opened. However, the alarm is displayed in the "Services" column of the Tactical Overview dashboard widget and listed in the Config Manager dashboard widget (both of which are represented on the Consolidated Dashboard). Administrators may add or change the action groups used by this passive service check if they wish to also receive alert notifications about an authentication failure of the config manager.
Check-specific Fields:
(See the entry Service Check for details on basic configuration options.)
- DESCRIPTION
(Required) This field specifies a name for this check. The name entered must be unique among service check names on the host it is added to (the name may used again only on a different host). It is used to identify this specific check from among other service checks added to the same host.