AD FS 構æˆãƒ‡ãƒ¼ã‚¿ãƒ™ãƒ¼ã‚¹ã§è˜åˆ¥ã•ã‚ŒãŸè¨¼æ˜Žæ›¸ãŒä¸€æ„ã§ãªã„ãŸã‚ã€AD FS Windows サービスを開始ã§ãã¾ã›ã‚“ã§ã—ãŸã€‚
AD FS Windows サービスãŒæ£å¸¸ã«é–‹å§‹ã™ã‚‹å ´åˆã€ãƒ¢ãƒ‹ã‚¿ãƒ¼ã¯ç·‘色ã®çŠ¶æ…‹ã«æˆ»ã‚Šã€å…ƒã®é‡è¦ãªã‚¢ãƒ©ãƒ¼ãƒˆã¯è‡ªå‹•çš„ã«è§£æ±ºã•ã‚Œã¾ã™ã€‚
ã“ã®çŠ¶æ…‹ã¯ã€æŒ‡å®šã—ãŸã‚¹ãƒˆã‚¢ã§è¨¼æ˜Žæ›¸ãŒè¦‹ã¤ã‹ã£ãŸãŒã€findValue ã«ä¸€è‡´ã™ã‚‹è¨¼æ˜Žæ›¸ãŒè¤‡æ•°ã‚ã‚‹å ´åˆã«ç™ºç”Ÿã™ã‚‹å¯èƒ½æ€§ãŒã‚ã‚Šã¾ã™ã€‚
証明書ãŒåå‰ã§è˜åˆ¥ã•ã‚ŒãŸãŒã€åŒã˜åå‰ã®è¨¼æ˜Žæ›¸ãŒè¤‡æ•°å˜åœ¨ã™ã‚‹å ´åˆã¯ã€è¨¼æ˜Žæ›¸ã®æ‹‡å°ã‚’使用ã—ã¦è¨¼æ˜Žæ›¸ã‚’構æˆã—ã¦ãã ã•ã„。 ã“ã®ã‚¤ãƒ™ãƒ³ãƒˆã§æŒ‡å®šã•ã‚Œã¦ã„ã‚‹è¦ç´ を探ã—ã¦ã€ä»£ã‚ã‚Šã«è¨¼æ˜Žæ›¸ã®æ‹‡å°ã‚’使用ã™ã‚‹ã‚ˆã†ã«ãã®è¦ç´ ã® findValue ã‚’ä¿®æ£ã—ã¾ã™ã€‚
Target | Microsoft.ActiveDirectoryFederationServices.2016.FederationServer | ||
Parent Monitor | System.Health.AvailabilityState | ||
Category | AvailabilityHealth | ||
Enabled | True | ||
Alert Generate | True | ||
Alert Severity | Error | ||
Alert Priority | Normal | ||
Alert Auto Resolve | True | ||
Monitor Type | Microsoft.Windows.2SingleEventLog2StateMonitorType | ||
Remotable | True | ||
Accessibility | Public | ||
Alert Message |
| ||
RunAs | Default |
<UnitMonitor ID="Microsoft.ActiveDirectoryFederationServices.2016.FederationServerBadConfigurationMultipleCertificatesMatchMonitor" Accessibility="Public" Enabled="true" Target="Microsoft.ActiveDirectoryFederationServices.2016.FederationServer" ParentMonitorID="Health!System.Health.AvailabilityState" Remotable="true" Priority="Normal" TypeID="Windows!Microsoft.Windows.2SingleEventLog2StateMonitorType" ConfirmDelivery="true">
<Category>AvailabilityHealth</Category>
<AlertSettings AlertMessage="Microsoft.ActiveDirectoryFederationServices.2016.FederationServerBadConfigurationMultipleCertificatesMatchMonitor_AlertMessageResourceID">
<AlertOnState>Error</AlertOnState>
<AutoResolve>true</AutoResolve>
<AlertPriority>Normal</AlertPriority>
<AlertSeverity>Error</AlertSeverity>
<AlertParameters>
<AlertParameter1>$Data/Context/Params/Param[2]$</AlertParameter1>
</AlertParameters>
</AlertSettings>
<OperationalStates>
<OperationalState ID="FirstEventRaised" MonitorTypeStateID="FirstEventRaised" HealthState="Error"/>
<OperationalState ID="SecondEventRaised" MonitorTypeStateID="SecondEventRaised" HealthState="Success"/>
</OperationalStates>
<Configuration>
<FirstComputerName>$Target/Host/Host/Property[Type="Windows!Microsoft.Windows.Computer"]/NetworkName$</FirstComputerName>
<FirstLogName>$Target/Property[Type="Microsoft.ActiveDirectoryFederationServices.2016.FederationServer"]/ADFSEventLog$</FirstLogName>
<FirstExpression>
<And>
<Expression>
<SimpleExpression>
<ValueExpression>
<XPathQuery Type="UnsignedInteger">EventDisplayNumber</XPathQuery>
</ValueExpression>
<Operator>Equal</Operator>
<ValueExpression>
<Value Type="UnsignedInteger">135</Value>
</ValueExpression>
</SimpleExpression>
</Expression>
<Expression>
<RegExExpression>
<ValueExpression>
<XPathQuery Type="String">PublisherName</XPathQuery>
</ValueExpression>
<Operator>MatchesMOM2005RegularExpression</Operator>
<Pattern>(^AD FS$)</Pattern>
</RegExExpression>
</Expression>
</And>
</FirstExpression>
<SecondComputerName>$Target/Host/Host/Property[Type="Windows!Microsoft.Windows.Computer"]/NetworkName$</SecondComputerName>
<SecondLogName>$Target/Property[Type="Microsoft.ActiveDirectoryFederationServices.2016.FederationServer"]/ADFSEventLog$</SecondLogName>
<SecondExpression>
<And>
<Expression>
<SimpleExpression>
<ValueExpression>
<XPathQuery Type="UnsignedInteger">EventDisplayNumber</XPathQuery>
</ValueExpression>
<Operator>Equal</Operator>
<ValueExpression>
<Value Type="UnsignedInteger">100</Value>
</ValueExpression>
</SimpleExpression>
</Expression>
<Expression>
<RegExExpression>
<ValueExpression>
<XPathQuery Type="String">PublisherName</XPathQuery>
</ValueExpression>
<Operator>MatchesMOM2005RegularExpression</Operator>
<Pattern>(^AD FS$)</Pattern>
</RegExExpression>
</Expression>
</And>
</SecondExpression>
</Configuration>
</UnitMonitor>