Home
  •  

VPN Agent Availability Health Monitor (MDM Mobile VPN Policy Engine Log)

Microsoft.SystemCenter.MobileDeviceManager.2008.1_0.VPNAgent.VPNAgentAvailability.MDMMobileVPNPolicyEngine.NewDiagnoser.EventBased.UnitMonitor (UnitMonitor)

Knowledge Base article:

VPN Agent Availability (Aspect)

The MDM Mobile VPN agent is an ASP.NET HTTP handler associated with the Gateway Management Web site. This Web handler receives messages from GCM that contain VPN server configuration and blocked-device list settings. The Mobile VPN agent authorizes the message from GCM and performs validation on the message. It then pushes the configuration to the VPN service runtime. Therefore, if the Mobile VPN agent is not available, then the VPN runtime will not have the latest configuration as stored in the MDM database, or it may not have any working policy at all.

This aspect contains the VPN Agent Availability objects that you can monitor in the MDM Mobile VPN agent. These health monitors include the following detectors.

Green Health State

Red Health State

New Diagnoser (Diagnoser)

The MDM Mobile VPN agent may not be available for one of the following reasons:

To check if the World Wide Web Publishing Service is started, follow these steps:

  1. On MDM Gateway Server, open the Services MMC snap-in console.
  2. In Services, scroll down to World Wide Web Publishing Service.
  3. Make sure that Started appears in the Status column.

To check if the Gateway Management Web site is running, follow these steps:

  1. In Internet Information Services (IIS) Manager, expand the local computer, expand Web Sites, and then select Gateway Management Web Site.
  2. If the Web site is not started, right-click Gateway Management Web Site, and then select Start.
  3. In IIS Manager, expand local computer, expand Application Pools, and then select GatewayAppPool.
  4. Make sure that this application pool is started. If it is not, then right-click GatewayAppPool, and then select Start.

If it is experiencing a heavy workload, MDM Gateway Server may run out of memory, which prevents the Mobile VPN agent from initializing properly. In this case, you should restart MDM Gateway Server.

VPN Agent is not available (Resolution)

To resolve this issue, use the resolution that corresponds to the cause you identified in the Diagnoser section. After performing the resolution, see the Verifier section to confirm that the feature is operating properly.

VPN Agent Initialization failed (Resolution)

To resolve this issue, use the resolution that corresponds to the cause you identified in the Diagnoser section. After performing the resolution, see the Verifier section to confirm that the feature is operating properly.

Element properties:

TargetMicrosoft.SystemCenter.MobileDeviceManager.2008.1_0.VPNAgent.ClassType
Parent MonitorSystem.Health.AvailabilityState
CategoryStateCollection
EnabledTrue
Alert GenerateTrue
Alert SeverityMatchMonitorHealth
Alert PriorityNormal
Alert Auto ResolveTrue
Monitor TypeMicrosoft.Windows.2SingleEventLog2StateMonitorType
RemotableTrue
AccessibilityPublic
Alert Message
VPN Agent Availability Alert
{0}
RunAsDefault

Source Code:

<UnitMonitor ID="Microsoft.SystemCenter.MobileDeviceManager.2008.1_0.VPNAgent.VPNAgentAvailability.MDMMobileVPNPolicyEngine.NewDiagnoser.EventBased.UnitMonitor" Accessibility="Public" Enabled="onEssentialMonitoring" Target="Microsoft.SystemCenter.MobileDeviceManager.2008.1_0.VPNAgent.ClassType" ParentMonitorID="SystemHealth!System.Health.AvailabilityState" Remotable="true" Priority="Normal" TypeID="Windows!Microsoft.Windows.2SingleEventLog2StateMonitorType" ConfirmDelivery="true">

  <Category>StateCollection</Category>

  <AlertSettings AlertMessage="Microsoft.SystemCenter.MobileDeviceManager.2008.1_0.VPNAgent.VPNAgentAvailability.MDMMobileVPNPolicyEngine.NewDiagnoser.EventBased.UnitMonitor.AlertMessage">

    <AlertOnState>Error</AlertOnState>

    <AutoResolve>true</AutoResolve>

    <AlertPriority>Normal</AlertPriority>

    <AlertSeverity>MatchMonitorHealth</AlertSeverity>

    <AlertParameters>

      <AlertParameter1>$Data/Context/EventDescription$</AlertParameter1>

    </AlertParameters>

  </AlertSettings>

  <OperationalStates>

    <OperationalState ID="Success" MonitorTypeStateID="FirstEventRaised" HealthState="Success"/>

    <OperationalState ID="Negative" MonitorTypeStateID="SecondEventRaised" HealthState="Error"/>

  </OperationalStates>

  <Configuration>

    <FirstComputerName>$Target/Host/Host/Host/Property[Type="Windows!Microsoft.Windows.Computer"]/NetworkName$</FirstComputerName>

    <FirstLogName>MDM Mobile VPN Policy Engine</FirstLogName>

    <FirstExpression>

      <And>

        <Expression>

          <SimpleExpression>

            <ValueExpression>

              <XPathQuery>PublisherName</XPathQuery>

            </ValueExpression>

            <Operator>Equal</Operator>

            <ValueExpression>

              <Value>Gateway</Value>

            </ValueExpression>

          </SimpleExpression>

        </Expression>

        <Expression>

          <SimpleExpression>

            <ValueExpression>

              <XPathQuery>EventDisplayNumber</XPathQuery>

            </ValueExpression>

            <Operator>Equal</Operator>

            <ValueExpression>

              <Value>12100</Value>

            </ValueExpression>

          </SimpleExpression>

        </Expression>

      </And>

    </FirstExpression>

    <SecondComputerName>$Target/Host/Host/Host/Property[Type="Windows!Microsoft.Windows.Computer"]/NetworkName$</SecondComputerName>

    <SecondLogName>MDM Mobile VPN Policy Engine</SecondLogName>

    <SecondExpression>

      <And>

        <Expression>

          <SimpleExpression>

            <ValueExpression>

              <XPathQuery>PublisherName</XPathQuery>

            </ValueExpression>

            <Operator>Equal</Operator>

            <ValueExpression>

              <Value>Gateway</Value>

            </ValueExpression>

          </SimpleExpression>

        </Expression>

        <Expression>

          <SimpleExpression>

            <ValueExpression>

              <XPathQuery>EventDisplayNumber</XPathQuery>

            </ValueExpression>

            <Operator>Equal</Operator>

            <ValueExpression>

              <Value>12101</Value>

            </ValueExpression>

          </SimpleExpression>

        </Expression>

      </And>

    </SecondExpression>

  </Configuration>

</UnitMonitor>