Default language.

Overview of monitor policies

Monitor policies are a set of rules that enable administrators to deploy configurations to PATROL Agents by using monitoring solutions. Monitor policies provide instructions and information about what information to monitor. For example, you can collect information about the CPU and memory utilization of your Windows environment.

A monitor policy is applied to the PATROL Agents based on conditions such as Agent name, Agent port, Agent version, Agent tag, and so on. PATROL Agents collect performance data and generate events for availability metrics. 

When PATROL Agents are deployed and monitor policies are configured, the Agents receive the appropriate configuration and begin monitoring. When an existing policy is modified, the changes are automatically applied to the Agents.

As a tenant administrator, you can create, edit, delete, copy, enable or disable, and filter monitor policies. You can also view an audit trail of all updates made to monitor policies. For more information, see Defining monitor policies.

Policy precedence

Policy precedence is the priority for policy execution. It ranges from 0 to 999. A lower number indicates a higher priority. Policy precedence controls the configuration applied to the PATROL Agents and servers when conflicting or overlapping configurations are defined between two or more monitor policies.

If two policies attempt to manage the same variable, such as /AgentSetup/historyRetentionPeriod, the PATROL Agent resolves the conflict by evaluating the precedence of the involved policies. Consider the following examples:

Example: with conflictExample: without conflict

Policy A:

Precedence number - 099

Includes configuration for the amount of history the Agent should retain.

/AgentSetup/historyRetentionPeriod - 7 (retention in days)

Policy A:

Precedence number - 699

Includes configuration for monitoring the following Microsoft Windows services:

  • Windows Update Service
  • Windows Time
  • Windows Firewall

Policy B:

Precedence number - 070

Includes configuration for the amount of history the Agent should retain.

/AgentSetup/historyRetentionPeriod - 1 (retention in days)

Policy B:

Precedence number - 499

Includes configuration for monitoring the following Microsoft Windows services:

  • Windows Event Logs
  • Windows Worldwide Publishing
When monitor policies A and B are applied to a PATROL Agent

The Agent resolves the conflict that is related to the /AgentSetup/historyRetentionPeriod variable by evaluating the precedence values of the policies.

Because Policy B (070) has a lower precedence value than Policy A (099), Policy B (070) is applied to the Agent. Therefore, the retention period is set to 1 day.

Remember the rule: Lower the number, higher the precedence.

The Agent is configured according to the union of policy A and policy B because there are no conflicts. All the Windows services configured in policy A and policy B are monitored.

BMC recommends that you define a precedence numbering system. This can help you group related monitor policies to the numeric ranges of the precedence numbers.

Important

BMC recommends that you do not use the same precedence values for different policies. In such a scenario, the policies behave in the following way:

  • If polices with the same precedence value have the same KM parameters with different threshold settings, and they apply to different platforms, the policy with the latest time stamp is applied.
  • If policies with the same precedence value have different KM parameters, and they apply to the same host, both policies are applied.

See the following table for some suggestions:.

Precedence rangeApplicable forAdditional information

001 – 049

Temporary policy overrides

Use for a short term for specific monitor policies until a complete policy is developed.

050 – 099

Monitor policies for low-level behavior management in Agents

Use for monitor policies that you always want to enforce. For example, Agent tuning, event propagation.

100 – 299

Monitor policies that are specific to a logical group of servers

Use for monitor policies such as vCenter monitoring, Exchange Servers, Oracle Servers, Location Related Servers or Services, Agent tuning overrides, and so on.

300 – 499

Specific platform variance monitor policies

Use for monitor policies such as Remote OS monitoring, Windows 2008 monitoring, Linux 6.7 monitoring, Specific Windows services, Specific UNIX processes, and so on.

500 – 699

Standard platform monitor policies

Apply as a standard to large groups of Agents. For example, All Windows, all Linux, and so on.

700 – 899

Other platform monitor policies

Use for examples such as Storage, Network, SNMP, PING, AWS, Azure, and so on.

950 – 999

Prepackaged monitor policies

Reserved for the BMC prepackaged monitor policies. You get these policies when you import the PATROL repository.

Tip

Assign precedence numbers starting with the highest number in the range and then continue in the descending order. By doing so, you can leave the lower numbers in the range for specific use cases.

Type your information message here.

File-based monitoring

When you configure a monitor policy, you can upload configuration files for Agents that support file-based monitoring, where configuration files store all the required information for monitoring, such as the remote host name. You do not have to upload the configuration files manually on each Agent that supports file-based monitoring. You can add a single or multiple configuration files for an Agent while creating the monitor policy.

Scenario

Sarah is an administrator at Apex Global. She uploads configuration files on PATROL Agents so that the knowledge modules (KMs) or monitoring solutions can collect data based on the inputs in the files. Sarah is looking for an alternative to manually uploading the files because of the following challenges:

  • Sarah needs to log in to each PATROL Agent while she uploads the file. She does not always have access to each PATROL Agent every time and needs to rely on other administrators to complete her work.
  • She needs to configure the monitoring separately for every file that she uploads.

Sarah can upload configuration files while she creates or edits a monitor policy in BMC Helix Operations Management. She can include multiple configuration files in the same policy.

On the Configuration > Monitor Policies page, the following monitor policies are available out-of-the-box:

  • Predefined policy for Linux
  • Predefined policy for Windows
  • Policy for rotated API key push

The Monitor Policies page

View all monitor policies on the Configuration > Monitor Policies page. 

monitor_policy_page.png

If a PATROL solution is added to the authorization profile that you are a part of, you can view the policies created for the solution. You cannot view the policies if the PATROL solution is removed from the authorization profile.

The following table describes the Monitor Policy page:

User interface snapshotDescription
top_buttons.png

Use the buttons as described below:

  • Refresh: Refresh the Monitor Policies page
  • Save Preferences: Save the filters that you have used on the Monitor Policies page. Every time that you log in to BMC Helix Operations Management, the Monitor Policies page displays the policies according to your saved filter.
    You can also save the sort criterion that you use on every row of the list of monitor policies.
  • Create: Click to open the Create Monitoring Policy page. 
mon_pol_filters.png

Use the following filters to view specific monitor policies:

  • Enabled: All enabled policies.
  • Disabled: All disabled policies.
  • Shared: Policies that are shared with other users in the associated user group.
  • Not Shared: Policies that are not shared with other users in the associated user group.
  • Internal: Policies that are internally created while applying filters to monitor attributes for limiting the amount of collected data. You cannot edit or delete these policies. For more information about limiting data collection, see  Restricting data collection for monitor attributes.
mon_pol_search.pngSearch for specific monitor policies. You can use a few characters from the monitor policy name to locate a specific policy. You can also use a user name to look for policies created by the user.
mon_pol_list.png

The list of monitor policies. By default, you can see 25 policies at once on the Monitor Policies page. Use the pagination at the bottom of the page to perform the following actions:

  • Change the number of policies that you can see at once to 50, 75, or 100.
  • View the next set of policies.

The following policies are available out of the box:

  • Predefined policy for Linux
    Policy for the basic monitoring of a Linux host.
  • Predefined policy for Windows
    Policy for the basic monitoring of a Windows host.

  • Policy for rotated API key push
    Policy for pushing the rotated API key to PATROL Agents. This read-only policy is created when you choose to rotate the API key in BMC Helix Portal and is displayed under the Internal policy filter. For subsequent rotations, this policy stores the rotated (updated) API key in the /SecureStore/mca/tenant/apiKey configuration variable. The system also generates an Information event to provide notification about the key rotation. The rotated API key is used for data ingestion from PATROL Agents.
    For instructions about creating an API key, see Using API keys for external integrations.

mon_pol_actions.png

Click the Actions menu actions_menu.png for any policy to view the following options:

  • Edit: Click to edit the policy
  • Disable: Click to disable a policy. If the policy is disabled, you can see the Enable option here. 
  • Share: Click to share the policy with other users in the associated user group. Only the policy owner can see this button.
  • Copy: Click to copy the policy
  • View: Click to view the policy details. You can also view policy details by clicking the policy name.
  • Unlock: Click to unlock the policy. A policy might be locked if another user is editing it. By unlocking the policy, changes made by the other user might be lost.
  • View applicable Agents: Click to view the PATROL Agents that are affected by the Agent criteria that you have configured in the policy.

If you select a policy on the Monitor Policies page, you can see the Action menu options at the top:

mon_pol_single_pol_options.png

If you select multiple policies, only the Enable and Disable options are available at the top:

mon_pol_multi_pol_options.png

You can only view internal policies. You cannot perform any action on them. Therefore, the selection check box for internal policies is disabled as shown in the following image:

mon_pol_internal.png

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*