cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Watcher nodes - external skype for business monitoring

Arūnas Malūkas
Iron Contributor

‎Dec 04 2017 05:03 AM

‎Dec 04 2017 05:03 AM

Watcher nodes - external skype for business monitoring

Hi everyone,

 

We are using SCOM and Watcher nodes to monitor our Skype for business environment. However we have this implemented only internally and while we have a lot of travelling users we would like to monitor Skype from outside as well.

The issue now is how to report to our SCOM management server? We have setup external PC, but to get inside we need some kinda of SCOM Gateway, which we do not have. To avoid to install too many servers I have come to an idea to use one of our Skype for business Edge servers and install SCOM gateway server role to it. This would allow us to reach SCOM management server inside and view the alerts. But however I am bit concerned about the impact on Edge server I could get.

 

Have any of you tried to run SCOM gateway server together with Skype for business Edge server role? Had you any issues or everything worked perfectly?

Looking forward to hear your ideas or alternative suggestions on how to get external SfB Watcher node to report to that is placed inside of our corporate network.

1,601 Views
0 Likes
2 Replies
Reply
2 Replies

‎Dec 04 2017 08:33 AM

‎Dec 04 2017 08:33 AM

Re: Watcher nodes - external skype for business monitoring

Hi Arunas,

 

To monitor your Edge server you do not need a gateway for it. You can add manually the server in SCOM , configure firewall if needed, install the agent and self created, rootca certificate on the Edge server. On the SCOM server you need to import the computer certificate of the Edge server. 

 

See this blog how to install untrusted servers: http://www.systemcenterautomation.com/2015/06/monitoring-add-untrusted-servers-to_23.html

 

Greetings,

 

Erdem

0 Likes
Reply
Arūnas Malūkas

‎Dec 05 2017 04:08 AM

‎Dec 05 2017 04:08 AM

Re: Watcher nodes - external skype for business monitoring

Yes, but as in my scenario where public PC is completely out of company network with public IP and DNS, I have no chance making step 3 in the article provided


3. Untrusted servers must be able to resolve SCOM Management Server(s) by name. 

 

I would need to open connection from outside (NAT) to our SCOM server and that's not going to be allowed by security guys.

So I have an idea to make a gateway that would be on edge of our perimeter and that gateway would be installed on the Skype for business edge server. This way I will be able to reach SCOM gateway and forward the alerts all the way down to management server.

 

Or there are any other options?

0 Likes
Reply