Menu Close

Windows Server Remote Access (RRAS) Management Pack for VPN and Direct Access

image

At the time of this writing, the last Windows Server Remote Access Management pack released by Microsoft was for Windows Server 2012R2.  Customers need to monitor their VPN solutions deployed using the Windows Server Remote Access role on Windows Server 2016 and 2019.  This MP will discover and monitor all your RRAS servers on Windows Server 2012 and later.

Quick Download:  https://github.com/thekevinholman/RemoteAccessMP

I basically started with the WS 2012R2 MP, but made a LOT of changes.  It was not a good MP, I soon found:

  • Changed the discovery to be OS version agnostic
  • Disabled all the event collection rules (what a terrible thing to do originally!)
  • Removed the massive number of classes.  They served absolutely no purpose and just bloated the MP.  A very common issue with a lot of Microsoft MP’s.
  • Rewrote the Distributed Application to contain Remote Access Servers instead of sites, so it populates now.
  • Removed On-Demand detection from the Heuristic monitortype, and set “ConfirmDelivery=false” on all Heuristic monitors, which was breaking cookdown.
  • Added a RunAs profile, which will be used by the discovery script and the Heuristics script monitor, if needed.
  • Cleaned up the ID of the MP, and some class names
  • Cleaned up the views
  • Cleaned up the discovery and monitoring PowerShell scripts

 

image

 

image

 

Quick Download:  https://github.com/thekevinholman/RemoteAccessMP

5 Comments

  1. Martin

    Hi!

    Good work Kevin. 🙂

    Maybe good to know is that we had (AP.Remote.Access v19.5.5) installed, see more info –> https://c22mort.github.io/RemoteAccess.html.
    I had to remove AP.Remote.Access v19.5.5 before Microsoft Windows Server Remote Access Management Pack 10.0.0.0 could be installed. Otherwise it will be a naming conflict in the database and the installation will be canceled.

    • Kevin Holman

      WOW. I had no idea that existed.

      I have done some additional work on this one recently to the one I posted and I believe it fixes a lot of the issues in the original MP.

  2. Dave L

    Hi Kevin

    Can your updated MP monitor AlwaysON VPN as well as Direct Access? It looks like this will cover the RAS server components, but how about the NPS role?

    Thanks

Leave a Reply

Your email address will not be published. Required fields are marked *