One reason to add an additional management group is if you need to monitor more than the 5000 managed computers supported in a single management group. The type of servers monitored directly affects the 5000 managed computers limit; there is nothing magical or hard-coded about this number. For example, monitoring many Exchange backend servers has a far more dramatic impact on a management server’s performance than if you were monitoring the same number of Windows XP or Vista workstations.

If the load on the management servers is excessive (servers are reporting excessive OpsMgr queue errors or high CPU, memory, disk, or network utilization), consider adding another management group to split the load.

Another common reason for establishing multiple management groups is separating control of computer systems between multiple support teams. In MOM 2005, this was often the rationale used to split the security monitoring functionality from the application/operating system monitoring functionality. For most organizations, the new Audit Collection Services (ACS) functionality introduced in Chapter 2 should remove the need to split out security events into a separate management group.

However, let’s look at an example where the Application support team is responsible for all application servers, and the Web Technologies team is responsible for all web servers, and each group configures the management packs that apply to the servers it supports.

With a single Operations Manager 2007 management group, each group may be configuring the same management packs. In our scenario, the Application support team and Web Technologies team are both responsible for supporting Internet Information Services (IIS) web servers. If these servers are within the same management group, the rules in the management packs are applicable to each of the two support groups. If either team changes the rules within the IIS management pack, it may impact the functionality required by the other team.

Although there are ways to minimize this impact using techniques such as overrides, in some situations you will want to implement multiple management groups. This typically occurs when multiple support groups are supporting the same management packs. In a multiple management group solution, each set of servers has its own management group and can have the rules customized as required for the particular support organization.

Historically, multiple management groups were required due to limitations with the MOM security model. MOM 2005 provided very limited granularity in what level of security was available to users who had permission to work within the Administrator console. If a user had access to update rules in the Administrator console, she could not be restricted to specific rule groups or specific functions. OpsMgr 2007’s role-based user security removes the need to create multiple management groups to provide this level of security.

A role in Operations Manager 2007 consists of a profile and a scope. A profile, such as the Operations Manager Administrator or Operations Manager Operator, defines the actions one can perform; the scope defines the objects against which one can perform those actions. What this means is roles limit the access users have.

Although previous versions of Operations Manager often required multiple management groups to separate different groups from performing actions outside their area of responsibility, using roles limits who is able to monitor and respond to alerts generated by different management packs—and can eliminate the need to partition management groups for security purposes. (We discuss security in more detail in Chapter 11, “Securing Operations Manager 2007.”)

As an example, a MOM 2005 organization with one support group for operating systems and a second support group for applications would require multiple management groups for each group to maintain and customize its own rules and not affect the other support group. This is not necessary in OpsMgr 2007 because you can define different user roles for the personnel within each organization.

Although ACS does not require a separate management group to function, splitting this functionality into its own management group may be required to meet your company’s security requirements. Splitting into a separate management group may be required if your company mandate states that the ACS functionality be administered by a separate group of individuals. For more information on ACS, see Chapter 15, “Monitoring Audit Collection Services.”

We recommend creating a separate test environment for Operations Manager so you can test and tune management packs before deploying them into the production environment. This approach minimizes the changes on production systems and allows for a large amount of testing because it will not affect the functionality of your production systems.

Physical location is also a factor when considering multiple management groups. If many servers exist at a single location with localized management personnel, it may be practical to create a management group at that location. Let’s look at a situation where a company—Odyssey—based in Plano has 500 servers that will be monitored by Operations Manager; an additional location in Carrollton has 250 servers that also will be monitored. Each location has local IT personnel responsible for managing its own systems. In this situation, maintaining separate management groups at each location is a good approach.

( ) ^ ~ : ; . ! ? ", ' ` @ # %  / * + = $ | & [ ] <>{}

If you have a server location with either minimal bandwidth or an unstable network connection, consider adding a management group locally to reduce WAN traffic. The data transmitted between the agent and a management server (or gateway server) is both encrypted and compressed. The compression ratio ranges from 4:1 to 6:1, approximately. We have found that an average client will use 3Kbps of network traffic between itself and the management server. We typically recommend installing a management server at network sites that have between 30 and 100 local systems. Operations Manager can support approximately 30 agent-managed computers on a 128KB network connection (agent-managed systems use less bandwidth than agentless-managed systems).

Table 4.1 lists the minimum network connectivity speeds between the various OpsMgr components.

You must install each server in your management group providing Operations Manager components using the same language. As an example, you cannot install the RMS using the English version of Operations Manager 2007 and deploy the Operations console in a different language, such as Spanish or German. If these components must be available in different languages, you must deploy additional management groups to provide this functionality.

Implementing multiple management groups introduces two architectures for management groups:

For example, Eclipse (Odyssey’s sister company) has a single location based in Frisco. Eclipse also has multiple support teams organized by function. The Operating Systems management team is responsible for monitoring the health of all server operating systems within Eclipse, and the Application management team oversees the business critical applications. Each team has its own OpsMgr management group for monitoring servers. In this scenario, a single server running Windows 2003 and IIS is configured as “multihomed” and reports information to both the Operating Systems management group and the Application management group (see Figure 4.2 for details).

Figure 4.2. Multihomed architecture.

Another example of where multihoming architectures are useful is testing or prototyping Operations Manager management groups. Using multihomed architectures, you can continue to report to your production MOM management group while also reporting to a new or preproduction management group. This allows testing of the new management group without affecting your existing production monitoring.

The Root Management Server (RMS) Component is the first management server installed. This server provides specific functionality (such as communication with the gateway servers, connected management groups, and password key storage) that we discussed in Chapter 3. It also serves as a management server; as a reminder, management servers provide communication between the OpsMgr agents and the Operations database.

The RMS can run on a single server, or it can run on a cluster. Table 4.2 describes minimum hardware requirements for the RMS; Table 4.3 shows the recommended requirements for larger environments. We recommend clustering if your business requirements for OpsMgr include high-availability and redundancy capabilities. See Chapter 5 for details on supported redundancy options for each OpsMgr component.

Additional management servers (MS) within the management group can provide increased scalability and redundancy for the Operations Manager solution. The minimum hardware requirements and large-scale hardware recommendations match those of the RMS.

The number of management servers required depends on the business requirements identified during the Assessment stage:

Using a sample design of 1000 monitored computers for the purposes of our discussion, we would plan for multiple management servers to provide redundancy. Each management server needs to support one-half the load during normal operation and the full load during failover situations. Although the management server does not store any major amounts of data, it does rely on the processor, memory, and network throughput of the system to perform effectively.

When you design for redundancy, plan for each server to have the capacity to handle not only the agents it is responsible for but also the agents it will be responsible for in a failover situation. For example, with a two–management server configuration, if either management server fails, the second needs to have sufficient resources to handle the entire agent load.

The location of your management servers also depends on the business requirements identified during the Assessment stage:

Install gateway servers in untrusted domains or workgroups to provide a point of communication for servers in untrusted domains or workgroups. Gateway servers enable systems not in a trusted domain to communicate with a management server. The large-environment hardware recommendations (shown in Table 4.4) vary from those of management servers by the number of processors, required amount of memory, and operations system recommendations. Redundancy is available by deploying multiple gateway servers, which is the same approach used with management servers.

The Operations Database Component stores all the configuration data for the management group and all data generated by the systems in the management group. We previously discussed this server component and all other components in Chapter 3.

Place the Operations database on either a single server or a cluster; we recommend clustering if your business requirements for OpsMgr include high-availability and redundancy capabilities. Each management group must have an Operations database. The Operations database (by default named OperationsManager) is critical to the operation of your management group—if it is not running, the entire management group has very limited functionality. When the Operations database is down, agents are still monitoring issues, but the database cannot receive that information. In addition, consoles do not function and eventually the queues on the agent and the management server will completely fill.

As a rule of thumb, the more memory you give SQL Server, the better it performs. Using an Active/Passive clustering configuration provides redundancy for this server component; the Operations database does not currently support Active/Active clustering. See Chapter 10, “Complex Configurations,” for details on supported cluster configurations.

We recommend that you not install the Operations database with the RMS in anything but a single-server Operations Manager configuration. Although this server component can coexist with other database server components, this is not a recommended configuration because it may also cause contention for resources, resulting in a negative impact on your OpsMgr environment.

Disk configuration and file placement strongly affects database server performance. Configuring all the OpsMgr database server components with the fastest disks available will significantly improve the performance of your management group. We provide additional information on this topic, including recommended Redundant Arrays of Inexpensive Disks (RAID) configurations, in Chapter 10.

Tables 4.5 and 4.6 discuss database hardware requirements.

The Reporting Server Component uses SQL 2005 Reporting Services to provide web-based reports for Operations Manager. The Web Reporting Server Component typically runs on a single server. This server is running SQL 2005 with Reporting Services, so its hardware requirements match those discussed previously for the Operations Database Server Component. Redundancy is available for the Reporting servers by using web farms or Network Load Balancing (NLB), but there are issues associated with keeping the reports in sync. Chapter 5 includes information on redundant configurations.

The OpsMgr agent data goes through the management server and writes to the data warehouse, which provides long-term data storage for Operations Manager. This data provides daily performance information gathering and longer-term trending reports.

The Data Warehouse server hosts the Data Warehouse database (by default named OperationsManagerDW) that OpsMgr uses for reporting. The Data Warehouse Component typically runs on a single server but can run on a cluster if high availability and redundancy are required for reports.

For reasons similar to the requirements for the operational database, this server should not exist on the same system hosting RMS.

The hardware requirements for Data Warehouse database servers match those of Operations database servers, with the added requirement being additional storage for the database and log files on the server.

Audit Collection Services provides a method to collect records generated by an audit policy and to store them in a database. This centralizes the information, which you can filter and analyze using the reporting tools in Microsoft SQL Server 2005. The ACS Database Server Component provides the repository where the audit information is stored. The hardware requirements for ACS database servers match those of the Operations database servers, with a requirement of additional storage for the database and log files on the server.

The ACS Forwarder Component uses the Operations Manager Audit Forwarding service, which is not enabled by default. After the service is enabled, the ACS Collector Component captures all security events (which are also saved to the local Windows NT Security Event log). Because this component is included within the OpsMgr agent, the hardware requirements mirror those of the agent. Chapter 6, “Installing Operations Manager 2007,” discusses hardware requirements for OpsMgr.

The forwarders send information to the ACS Collector Component. The collector receives the events, processes them, and sends them to the ACS database. The hardware requirements for the collector mirror those of the RMS. Currently there are no options available to provide a high-availability solution for the ACS Collector Component.

As we discussed in Chapter 2, the Operations console provides a single user interface for Operations Manager. All management servers, including the RMS, should install this console. You can also install the console on desktop systems running Windows XP or Vista. Installing these consoles on another system removes some of the load from the management server. Desktop access to the consoles also simplifies day-to-day administration.

The number of consoles a management group supports is an important design specification. As the number of consoles active in a management group grows, the database load also grows. This load accelerates as the number of managed computers increases because consoles, either operator or web-based, increase the number of database queries on both the Operations Database Server and the Data Warehouse Server Components. From a performance perspective, it is best to run the Operations consoles from administrator workstations rather than from servers running the OpsMgr components. Running the Operations console on the RMS increases memory and processor utilization, which in turn will slow down OpsMgr.

The hardware requirements for this component match those of the Gateway Server Component.

The Web Console Server Component runs IIS and provides a web-based version of the Operations console. The hardware requirements for this server match those of the Gateway Server Component. You can configure redundancy for the Web Console Server Component by installing multiple Web Console Servers and leveraging Network Load Balancing (NLB) or other load-balancing solutions.

There are no Operations Manager–specific hardware requirements for systems running the OpsMgr agent. The hardware requirements are those of the minimum hardware requirements for the operating system itself.

Operating system requirements for the OpsMgr components vary somewhat because the various components have different operating system requirements. Table 4.7 through Table 4.10 list the various operating systems and their suitability for the Operations Manager server components. Tables 4.7, 4.8, and 4.9 show the supported operating systems for each of the different server components. Table 4.7 shows management server components, Table 4.8 shows database server components, 4.9 shows ACS–related server components, and 4.10 shows the console and agent components.

The edition of the operating system chosen for each of the server components should correspond with the hardware that will be available for that component. As an example, the Windows Server 2003 Standard Edition supports up to four processors and 4GB of memory. If you purchase hardware to scale beyond that, use Windows Server 2003 Enterprise Edition instead (or use the X64 version of Windows Server 2003 Standard Edition).

Part of your decision regarding server placement should include evaluating licensing options for Operations Manager 2007. Each device managed by the server software requires an Operations Management License (OML), whether you are monitoring it directly or indirectly. (An example of indirect monitoring would be a network device such as a switch or router.) There are two types of OMLs:

To determine licensing costs, it is important to understand that there are also two different levels of OMLs available:

If you plan to monitor servers that run on virtual server technology, an OML is only required for the physical server. This must be an enterprise OML.

Table 4.11 lists the products associated with the standard and enterprise OML levels. (This list is complete as of mid–2007.)

You need to acquire an OpsMgr 2007 license for each Operations Manager server (RMS, management servers, and gateway servers; OpsMgr 2007 licenses for the Operations database, Reporting database, or other components are not required) as well as OMLs for managed devices as discussed earlier in this section.

When placing the Database Server Component separate from the Management Server Component, consider the following licensing aspects:

There has been a lot of confusion concerning what licensing is required to use the AEM functionality of Operations Manager. Using AEM requires a client license for each system from which AEM will collect crash information. So if you want to use AEM in your environment and you have 2000 workstations that you want to use AEM on, 2000 client OMLs are required. The exceptions to this license model include the following:

As an example of how this would work, let’s look at how we would license Operations Manager 2007 for the Eclipse Company. Eclipse is a 1000-user corporation with one major office. The company has decided to deploy one management group with a single management server. Eclipse is interested in monitoring 100 servers, which includes 30 servers requiring monitoring with domain controller, Exchange, SharePoint, or SQL functionality.

From a licensing perspective, Eclipse will be purchasing the following:

To help estimate costs, Microsoft has provided a pricing guide for Operations Manager 2007, available at http://www.microsoft.com/systemcenter/opsmgr/howtobuy/default.mspx. This guide lists the following prices for the components we just discussed:

For our licensing example, our estimate would be

The total estimate for Operations Manager licensing in this configuration is $24,203. Note, however, that this figure is a ballpark estimate only. Your specific licensing costs may be higher or lower based on the license agreement your organization has as well as your specific server configuration.

For more details on Operations Manager 2007 licensing, see the Microsoft Volume Licensing Brief, which is available for download at http://go.microsoft.com/fwlink/?LinkId=87480. Updates to the list of basic workloads are available at http://www.microsoft.com/systemcenter/opsmgr/howtobuy/opsmgrstdoml.mspx.

Table 4.12 shows the additional software requirements for each of the different Operations Manager database–related components.

As part of the assessment phase, you should have collected a list of servers to monitor with Operations Manager. As part of the design, you have identified each server and, based on its location, determined the management server it will use. You can now use your management group design to match the servers and their applications with an appropriate management group and management server.

As we discussed in Chapter 2, distributed applications have taken on a much more important role within OpsMgr. Categorize the applications identified in the Assessment phase to determine whether you can model them as distributed applications. You should also compare this list with the available management packs on the System Center Pack Catalog website (http://go.microsoft.com/fwlink/?linkid=71124).

Your design should also include the management packs you plan to deploy, based on the applications and servers identified during the assessment phase. As you are identifying management packs for deployment, it is important to remember that certain management packs have logical dependencies on others. As an example, the Exchange management pack is logically dependent on the Active Directory management pack, which in turn is logically dependent on the DNS management pack. To monitor Exchange, you should plan to deploy each of those management packs.

You can import MOM 2005 management packs into Operations Manager 2007 after converting them to the new OpsMgr 2007 format. Converted management packs do not have the full functionality of management packs designed for Operations Manager 2007; they do not become model-based as part of the conversion process. Converted management packs also do not include reports because Microsoft rewrote the reporting structure in OpsMgr 2007.

Operations Manager 2007 utilizes multiple service accounts to help increase security by utilizing lower privileged security accounts. Chapter 11 discusses how to secure your OpsMgr environment. Identifying these accounts and their required permissions is necessary for an effective Operations Manager design. OpsMgr uses several accounts that are typically Domain User accounts:

Operations Manager’s functionality includes the ability to notify users or groups as issues arise within your environment. For design purposes, you should document who needs to receive notifications and what circumstances necessitate notification. OpsMgr can notify via email, instant messaging, Short Message Service (SMS), or command scripts. Notifications go to recipients, configured within Operations Manager. As an example, if your organization has a team that supports email, the team will most likely want notifications if issues occur within the Exchange environment. (In this particular instance because the team is supporting email, it would be advisable to provide multiple Exchange servers that can send the notification or use other available notification methods in the event that Exchange is down.)

Operations Manager 2007 includes a robust reporting solution. With the reporting components installed, OpsMgr directly writes relevant information from the management server to the Data Warehouse database. This is a significant change from MOM 2005, which uses a DTS package to move data from the OnePoint database and transfers that information into the SystemCenterReporting database. Writing data directly into the reporting database enables near real-time reporting. It also decreases the space required within the database because only specific information is written, versus shipping all information over a certain age into the Data Warehouse database.

Monitored systems will have agents deployed to them. Deployment can be manual, automatic from the Operations console, or through automated distribution methods such as Active Directory, Microsoft Systems Management Server, and the recently released System Center Configuration Manager. For small to mid-sized organizations, we recommend deploying agents from the Operations console because it is the quickest and most supportable approach. For larger organizations, we recommend Systems Management Server/Configuration Manager or Active Directory deployment. Manual agent deployment is most often required when the system is behind a firewall, when there is a need to limit bandwidth available on the connection to the management server, or if a highly secure server configuration is required. Chapter 9 provides more detail on this topic. For the purposes of the Design stage, it is important to identify the specific approach you plan for distributing the agent.

Because the Essentials components typically are on a single server, the design process is greatly simplified. Figure 4.4 shows an example of this configuration. System Center Essentials is always a single–management server implementation; the only supported alternative option for Essentials puts the SQL database component on a second server when managing between 250 and 531 computers (remember, only 30 of those can be running a server operating system!).

Figure 4.4. System Center Essentials single-server configuration.

A single-server configuration is the simplest Operations Manager design. Assuming an average level of activity, your server should be two dual-core processors or higher with 4GB of memory to achieve optimal results (shown in Table 4.13). The goal is to avoid taxing your processor by having a sustained CPU utilization rate of more than 75%. Consequently, a configuration of less than 30 managed nodes using the proper hardware should not exceed this threshold. Ensure that the tests you perform include any management packs you might add to Essentials because management packs can easily add 25% to your server CPU utilization.

To provide sufficient server storage, we recommend approximately 250GB of disk storage available on the Essentials Server. Table 4.14 lists various methods for configuring drive space.

We recommend always placing the database on a disk array separate from the operating system; combining them can cause I/O saturation. Essentials also works best on a 100Mb (or 1Gb) network and connected to a switch (preferably on the backbone with other production servers).

In the single-server configuration, the server runs all components of the typical Essentials installation, including the management and database components.

As with many other technical systems, using the simplest configuration meeting your needs works the best and causes the fewest problems. This is also true of OpsMgr; many smaller-sized organizations can design a solution composed of a single Operations Manager server that encompasses all required components. Certain conditions must exist in your infrastructure to make optimal use of a single-server OpsMgr installation. If the following conditions are present, this type of design scenario may be right for your organization:

Generally, a single Operations Manager server configuration works for smaller to medium-sized organizations and particularly those who prefer to deploy Operations Manager to smaller, phased groups of servers. Another advantage of Operations Manager’s architecture is its flexibility concerning changes in design scope. You can add more component servers to a configuration later without the worry of major reconfiguration.

Figure 4.5 shows the single-server configuration with all the components on one server.

Figure 4.5. Ops Mgr single-server configuration.

In the single-server configuration, the server runs components of a typical Operations Manager installation, including the management and database components.

Figure 4.6 shows the two-server configuration with the OpsMgr components split between two servers (one to provide management server functionality, one to provide database functionality).

Figure 4.6. OpsMgr two-server configuration.

Using the SCCP to design the Operations Manager solution (using 200 servers to be monitored), we can identify the recommended hardware for the environment, as shown in Figure 4.7, which illustrates a two-server configuration splitting the OpsMgr components.

Figure 4.7. Operations Manager SCCP two-server configuration.

Assuming an average level of activity, your servers should be two dual-core processors or higher with 4GB of memory to achieve optimal results (as shown in Table 4.15). The goal is to avoid taxing your processor by having a sustained CPU utilization rate of more than 75%. Consequently, a configuration of fewer than 100 managed nodes should not exceed this threshold if you use the proper hardware. Remember to test with any management packs that you might add to OpsMgr because management packs can easily add 25% to your server CPU utilization.

Now let’s apply some numbers to this. We will use a standard growth rate of 5MB per managed computer per day for the Operational database (discussed in the “Operations Database Sizing” section), and 3MB per managed computer per day on the Data Warehouse database (see the “Data Warehouse Sizing” section of this chapter). The total space for the year of stored data is 100 agents * 3MB/day * 365 days, which equals 109,500MB, or approximately 100GB. The Operational database stores data for 7 days by default, which translates to 100 agents * 5MB/day * 7 days, which equals 3500MB, or approximately 4GB. The Operational database no longer has the 30GB sizing restriction that existed with MOM 2005, but it is still prudent to allocate adequate space for it to grow to that size or greater. Approximating once again, we arrive at 250GB total space required. Table 4.16 lists a variety of drive sizes, the RAID configuration, and the usable space. This table assumes that the number of drives includes the parity drive in the RAID, but not an online hot spare.

You should always place the database on a disk array separate from the operating system because combining them can cause I/O saturation. OpsMgr also works best on a 100Mb (or 1Gb) network, connected to a switch (preferably on the backbone with other production servers).

In the two-server configuration, the two servers split the components of the typical Operations Manager installation, based on function. The first server provides management server functionality, and the second provides all database functionality. See Chapter 6 for the specific steps for installing a two-server configuration.

It is generally a good practice to include high levels of redundancy with any mission-critical server, such as the RMS, Operations consoles, and database servers. We recommend you include as many redundant components as feasible into your server hardware design and choose enterprise-level servers whenever possible.

Disk space for the Operations database server is always a consideration. As with any database, it can consume vast quantities of drive space if left unchecked. Although Microsoft has removed the historical limit of 30GB on the Operations database, we still recommend that you limit the size of the Operations database to maximize performance and to minimize backup timeframes. The disk drive storing the Operations database should have at least slightly more than double the total size of the database in free space to support operations such as backups and restores, as well as in case of emergency growth of the Operations database. In addition, backups of the entire database on a regular basis are a must. We discuss backups in detail in Chapter 12, “Backup and Recovery.”

You can configure the Data Warehouse server in a manner similar to the Operations database server, but the Data Warehouse database requires a much larger storage capacity. Whereas the Operations database typically stores data for a period of days, the Data Warehouse database typically stores the data for a year. This data can grow rapidly; we discuss this in the “Designing OpsMgr Sizing and Capacity” section later in this chapter.

For optimal performance, place management servers close to their database servers or to the agents they manage. However, several key factors can play a role in determining where the servers will reside:

In most cases, you can centralize the management servers in close proximity with the Operations database and allow the agents to communicate with the management servers over any slow links that might exist.

As a rule, for multiple-server OpsMgr configurations, you should have at least two management servers for redundancy.

As defined in Chapter 3, Operations Manager management groups are composed of a single SQL Server operational database, a unique name, the RMS, and optional components such as additional management servers. Each management group uses its own Operations database and maintains its own separate configuration. As an example, two management groups can have the same management pack (MP) installed but different overrides configured within the MP. OpsMgr 2007 allows multiple management groups to write to a single Data Warehouse database (unlike MOM 2005, where the reporting environment could only have one management group report directly to the Reporting database).

It is important to note that you can configure agents to report to multiple management groups and connect management groups to each other. This increases the flexibility of the system and allows for the creation of multiple management groups based on your organization’s needs. There are five major reasons for dividing your organization into separate management groups:

Let’s illustrate this point using the bandwidth-limited criteria. If your organization is composed of multiple locations separated by slow WAN links, it is best to separate each location not connected by a high-speed link into a separate management group and set up connected management groups.

Another example of using multiple management groups is when IT support operations functionally is divided into multiple support groups. Let’s take an example where there is a platform group (managing the Windows operating system) and a messaging group (managing the Exchange application). In this instance, two management groups might be deployed (a platform management group and a messaging management group). The separate management groups would allow both the platform group and the messaging group to have complete administrative control over their own management infrastructures. The two groups would jointly operate the agent on the monitored computers.

Keeping in mind that each management group has a separate database, you should note that, as opposed to management servers, a management group has only one Operations database. Consequently, keep the following factors in mind when placing and configuring each SQL Server installation:

With MOM 2005, the Operations database server transferred data to the reporting database on a daily basis using a DTS package. In OpsMgr 2007, writes occur directly from the management server to the Data Warehouse database rather than using a daily scheduled DTS package. In OpsMgr 2007, solid network connectivity should exist between the Operations database server and the Data Warehouse database server.

Data flow in OpsMgr 2007 is an important design consideration. A typical Operations Manager environment has a large quantity of data flowing from a relatively small percentage of sources within the IT environment. The data flows are latency sensitive, due to needing alerts and notifications in a short timeframe (measured in seconds).

We have found that agent traffic varies depending on the management packs you deploy, ranging from about 1.2Kbps to 3Kbps travelling from the agent to the management server. For our calculations, we use the following formula:

The data flowing from each agent is not that great when considered individually. However, when looked at in aggregate for a large number of servers, the load can be significant, as illustrated in Table 4.17, which shows the estimated minimum bandwidth for just the Windows operating system base management pack. Using Table 4.17, you can see that the need for multiple 100Mbps or Gigabit network cards becomes important above the 500-agent mark.

You can adjust the data flow in two ways:

When considering how to adjust the setting for low-bandwidth agents, you can tune the heartbeat and data upload times. However, this will not reduce the overall volume of information. You will be uploading more information at less frequent intervals, but it will be the same quantity of data. To reduce the data volume, you need to adjust the rules to collect less data. As an example, adjusting the sample interval of a performance counter from 15 minutes to 30 minutes will reduce the volume of data by half.

Management servers, management groups, and collections of management groups have some inherent limitations. In some cases, these are hard limits that cannot be technically broken; others are supportability limits that should not be broken. Microsoft tests and supports its products but sets limits on the scale of the systems that reflect the limits of the testing and support. Table 4.18 summarizes the capacity limitations for OpsMgr components. Although OpsMgr includes implicit design components that allow it to scale to large groups of managed nodes, there are some maximum levels that could limit the size of management groups.

We have grouped Table 4.18 by the type of limitation. Even though there is a stated limit, in a given environment the limit might not be practical. As an example, the maximum number of agents supported by a management server is 2000. However, a single management server is unlikely to be capable of supporting 2000 Exchange servers due to the particularly heavy load these agents place on it.

Many of these capacity limitations are actually supportability limitations rather than hard technical limitations. For example, monitoring the 5001st agent will not generate an error or alert. Exceeding the limitations does not immediately cause the system to fail but rather starts to affect the performance, latency, and throughput of the OpsMgr infrastructure. For this reason, Microsoft imposes these limitations from a supportability perspective; the Operations Manager 2007 product may not function properly if you exceed those limits.

Because each management group can support up to a maximum of 5000 agents and there is no restriction on the number of connected management groups, this effectively means that there are no documented scalability limits on OpsMgr 2007. This is an excellent functional increase from MOM 2005, where you could support a maximum of 44,000 managed computers in a single cohesive MOM 2005 infrastructure.

In the next two sections, we will evaluate database sizing, which has also changed significantly since MOM 2005.

Sizing the Operations Manager 2007 database can be a complex endeavor. You have to take several factors into account and use a complex formula to calculate database size. We suggest purchasing a large quantity of disk space for your OpsMgr database so that the database can increase in size over time if it is required. If space limitations are an issue, you can reduce the size of the database through decreasing the data retention period on the database. By doing some simple math, we can estimate the size of the OpsMgr database.

From reviewing the Operations database, we determined that a fresh installation of OpsMgr 2007 with a 1500MB database size used a total of 510MB of the total database and log size. We reviewed all the tables in the Operations database and tracked what tables increase over time. Through this trending, we determined that the tables related to alerts, alert history, events, state changes, and performance counters increased over time and were related to the number of agents and the retention period for the database. We found that data increases in the Operations database at an average rate of 5MB/day per agent. From this exercise, we determined the following formula to estimate the size of the Operations database:

As an example, at 5MB/day for 10 agents with a default retention period of 7 days, the database should have approximately 860MB of space used in the database.

With a growth rate of 5MB/day per agent, the size of the database is determined by the number of days the data is in the Operations database—that is, the grooming interval. Table 4.19 highlights in bold the default grooming interval of 7 days.

As you can see from Table 4.19, using the default grooming interval of 7 days, the Operations database will use approximately 35GB of space for 1000 agents.

Figure 4.8 charts the growth of the Operations database for ease of reference. The series lines for each of the agent counts plot the projected size of the Operations database for grooming intervals, varying from 1 to 10 days. You can see the projected growth of the Operations database as the grooming interval is increased and as the number of agents increases.

Figure 4.8. Operations database size chart.

It is important to note there is a third factor we are unable to build into this type of an estimate: management packs. Although a correlation exists between an increased number of management packs and a larger Operations database, the database size depends on not only the actual number of rules in the management pack, but also what those rules do. A single rule could gather the entire Application Event log and record it in the database, in contrast with another rule that only writes to the database when a specific error condition occurred. To consider this factor in the database sizing, we gathered metrics from varying environments with a variety of management packs to identify a growth range covering the majority of deployments. To trend your environment effectively, it is important to conduct appropriate testing and monitor the growth rates of your own installation over time; your growth rate may vary from the estimates we have developed.

Figure 4.9 gives a clear view of how the Operations database is using the data. If you need to limit the growth of your Operations database, remember that performance measurements contain the bulk of the data within this database. Tuning the frequency with which performance measurements are gathered is a good target for reducing database growth.

Figure 4.9. Operations database data distribution chart.

The Data Warehouse database is the long-term data repository for Operations Manager 2007. In MOM 2005, the size of the Reporting database was closely tied to the size of the Operations database—a DTS package tied the two databases together by transferring data from one database to the other. With OpsMgr 2007, this approach has changed.

Management pack objects write data directly to the Data Warehouse database. OpsMgr aggregates rule and performance data for reporting, rather than storing and reporting on raw data. This approach has the potential to provide much longer-term reports for a larger number of agents and to use a smaller Data Warehouse database.

This has interesting results in providing effective sizing estimates for the data warehouse. To determine this, we took the same approach as we did with the Operations database and applied it to the Data Warehouse database.

In reviewing the Data Warehouse database, we found that a fresh installation of Reporting for OpsMgr 2007 with a 1500MB database used a total of 570MB of the total database and log size. We reviewed all the tables in the Data Warehouse database and tracked which ones increase over time.

As with the Operations database, we found that the same data was growing over time: alerts, alert history, events, state changes, and performance counters. The number of agents and the retention period also affect the amount of the increase. We found that data increases in this database at an average rate of 3MB/day per agent. From our exercise, we have determined the following formula to estimate the size of the Data Warehouse database:

As an example, at 3MB/day for 10 agents with a retention period of 30 days, the database should have approximately 1470MB of space used. The Data Warehouse database is set to autogrow, so it will automatically increase in size to accommodate the additional data.

Table 4.20 shows the Data Warehouse database size for various grooming intervals and agent counts.

As you can see from Table 4.20, with large numbers of agents and a long retention period, this database can quickly go beyond the 1TB or 2TB level; therefore, it is good news that no documented size limits exist on the Data Warehouse database! Figure 4.10 displays a graph showing the impact to the size of the Data Warehouse database depending on the number of agents and how long the data is retained.

Figure 4.10. Reporting database size chart.

When estimating the size of the data warehouse, it is important to consider the amount of data collected daily and how long you intend to keep that data in the data warehouse, because this will directly affect your storage requirements. Your proof of concept (POC) should provide good figures for projecting the size of your Data Warehouse database.

If limiting the amount of data collected is not an option, there are several potential solutions for managing this volume of data:

You can implement these potential workarounds to the problem of database volume individually or together. For example, you might create quarterly archive snapshots to review the historical data up to 1 year old and use archived monthly reports to view historical data up to 5 years old.

As your OpsMgr environment increases to large amounts of managed nodes, Operations Manager responds with the capability to scale to those groups. By using multiple management groups, multiple management servers, and event forwarding, you can make almost any project a real possibility.

If you plan to monitor over 100 nodes, consider adding multiple management servers in your management group (as shown in Figure 4.11). After the first two management servers, we recommend adding an additional management server for every increase of 250 to 500 nodes.

Figure 4.11. Multiple management servers in a management group.

Expanding your implementation to use multiple management groups, as previously defined, can take place at the designer’s discretion, although implementing multiple management groups generally takes place to segregate different geographic areas with slow WAN links from each other. If the link speeds to remote managed nodes are under 256Kbps, we recommend either creating a new management group or greatly throttling the amount of information collected from remote agents. Determining whether to create a new management group or simply to throttle the events sent will depend on the amount of remote servers. It does not make sense to create a new management group if you have only two small sites with four servers each to monitor.

If, however, you have distributed your remote servers around various offices and they have better connections to each other than to your primary management group, it may be wise to create a new management group. This would typically be the case if you were to create management groups based on continent, for example. Figure 4.12 shows a worldwide OpsMgr 2007 infrastructure with regional management groups (North America, Europe, and Asia-Pacific). The global management group connects to each of the regional management groups to review their alerts.

Figure 4.12. Management groups by geographic region.

In this configuration, each region can operate the management groups semi-autonomously, yet still allow a global view of the environment worldwide using a global console.

Through creating and manipulating management groups and management servers, your OpsMgr environment can scale from a handful of monitored servers to large numbers of nodes worldwide. This scalability helps establish Operations Manager as an enterprise monitoring solution.