Key Distribution Service Replicated Store Availabilty

Microsoft.Windows.GuardedFabric.10.0.KDS.ReplicatedStore.Availability (UnitMonitor)

Checks the event logs for store read errors from the Key Distribution Service.

Knowledge Base article:

Element properties:

Source Code:

<UnitMonitor ID="Microsoft.Windows.GuardedFabric.10.0.KDS.ReplicatedStore.Availability" Accessibility="Public" Enabled="true" Target="HGSDL!Microsoft.Windows.GuardedFabric.10.0.ComputerRole.HgsServer" ParentMonitorID="Health!System.Health.AvailabilityState" Remotable="true" Priority="Normal" TypeID="Windows!Microsoft.Windows.2SingleEventLog2StateMonitorType" ConfirmDelivery="false">

  <Category>AvailabilityHealth</Category>

  <AlertSettings AlertMessage="Microsoft.Windows.GuardedFabric.10.0.KDS.ReplicatedStore.Availability.AlertMessage">

    <AlertOnState>Error</AlertOnState>

    <AutoResolve>true</AutoResolve>

    <AlertPriority>Normal</AlertPriority>

    <AlertSeverity>MatchMonitorHealth</AlertSeverity>

  </AlertSettings>

  <OperationalStates>

    <OperationalState ID="FirstEventRaised" MonitorTypeStateID="FirstEventRaised" HealthState="Error"/>

    <OperationalState ID="SecondEventRaised" MonitorTypeStateID="SecondEventRaised" HealthState="Success"/>

  </OperationalStates>

  <Configuration>

    <FirstComputerName>$Target/Host/Host/Property[Type="Windows!Microsoft.Windows.Computer"]/PrincipalName$</FirstComputerName>

    <FirstLogName>Microsoft-Windows-HostGuardianService-KeyProtection/Admin</FirstLogName>

    <FirstExpression>

      <Or>

        <Expression>

          <SimpleExpression>

            <ValueExpression>

              <XPathQuery Type="UnsignedInteger">EventDisplayNumber</XPathQuery>

            </ValueExpression>

            <Operator>Equal</Operator>

            <ValueExpression>

              <Value Type="UnsignedInteger">3250</Value>

            </ValueExpression>

          </SimpleExpression>

        </Expression>

        <Expression>

          <SimpleExpression>

            <ValueExpression>

              <XPathQuery Type="UnsignedInteger">EventDisplayNumber</XPathQuery>

            </ValueExpression>

            <Operator>Equal</Operator>

            <ValueExpression>

              <Value Type="UnsignedInteger">4010</Value>

            </ValueExpression>

          </SimpleExpression>

        </Expression>

        <Expression>

          <SimpleExpression>

            <ValueExpression>

              <XPathQuery Type="UnsignedInteger">EventDisplayNumber</XPathQuery>

            </ValueExpression>

            <Operator>Equal</Operator>

            <ValueExpression>

              <Value Type="UnsignedInteger">4100</Value>

            </ValueExpression>

          </SimpleExpression>

        </Expression>

      </Or>

    </FirstExpression>

    <SecondComputerName>$Target/Host/Host/Property[Type="Windows!Microsoft.Windows.Computer"]/PrincipalName$</SecondComputerName>

    <SecondLogName>Microsoft-Windows-HostGuardianService-KeyProtection/Operational</SecondLogName>

    <SecondExpression>

      <SimpleExpression>

        <ValueExpression>

          <XPathQuery Type="UnsignedInteger">EventDisplayNumber</XPathQuery>

        </ValueExpression>

        <Operator>Equal</Operator>

        <ValueExpression>

          <Value Type="UnsignedInteger">2101</Value>

        </ValueExpression>

      </SimpleExpression>

    </SecondExpression>

  </Configuration>

</UnitMonitor>