Connect SCCM 1606 (Preview) to OMS Log Analytics

You can connect System Center Configuration Manager to Log Analytics in OMS to sync device collection data. This makes data from your Configuration Manager deployment available in OMS.

There are a number of steps needed to connect Configuration Manager to OMS, so here’s a quick rundown of the overall process:

  1. In the Azure Management Portal, register Configuration Manager as a Web Application and/or Web API app, and ensure that you have the client ID and client secret key from the registration from Azure Active Directory. See Use portal to create Active Directory application and service principal that can access resources for detailed information about how accomplish this step.
  2. In the Azure Management Portal, provide Configuration Manager (the registered web app) with permission to access OMS.
  3. In Configuration Manager, add a connection using the Add OMS Connection Wizard.
  4. In Configuration Manager, you can update the connection properties if the password or client secret key ever expires or is lost.
  5. With information from the OMS portal, download and install the Microsoft Monitoring Agent on the computer running the Configuration Manager service connection point site system role. The agent sends Configuration Manager data to OMS.
  6. In OMS, import collections from Configuration Manager as computer groups.
  7. In OMS, view data from Configuration Manager as computer groups.

You can read more about connecting Configuration Manager to OMS at Sync data from Configuration Manager to the Microsoft Operations Management Suite.

Provide Configuration Manager with permissions to OMS

The following procedure provides the Azure Management Portal with permissions to access OMS. Specifically, you must grant the Contributor role to users in the resource group. In turn, that allows the Azure Management Portal to connect Configuration Manager to OMS.

Note:

You must specify permissions to OMS for Configuration Manager. Otherwise, you’ll receive an error message when you use the configuration wizard in Configuration Manager.

  1. Open the Azure portal and click Browse > Log Analytics (OMS) to open the Log Analytics (OMS) blade.
  2. On the Log Analytics (OMS) blade, click Add to open the OMS Workspace blade.
    OMS blade
  3. On the OMS Workspace blade, provide the following information and then click OK.
    • OMS Workspace
    • Subscription
    • Resource group
    • Location
    • Pricing tier
      OMS blade
    Note:

    The example above creates a new resource group. The resource group is only used to provide Configuration Manager with permissions to the OMS workspace in this example.

  4. Click Browse > Resource groups to open the Resource groups blade.
  5. In the Resource groups blade, click the resource group that you created above to open the <resource group name> settings blade.
    resource group settings blade
  6. In the <resource group name> settings blade, click Access control (IAM) to open the <resource group name> Users blade.
    resource group Users blade
  7. In the <resource group name> Users blade, click Add to open the Add access blade.
  8. In the Add access blade, click Select a role, and then select the Contributor role.
    select a role
  9. Click Add users, select the Configuration Manager user, click Select, and then click OK.
    add users

Add an OMS connection to Configuration Manager

In order to add an OMS connection, your Configuration Manager environment must have a service connection point configured for online mode.

  1. In the Administration workspace of Configuration Manager, select OMS Connector. This opens the Add OMS Connection Wizard. Select Next.
  2. On the General screen, confirm that you have done the following actions and that you have details for each item, then select Next.
    1. In the Azure Management Portal, you’ve registered Configuration Manager as a Web Application and/or Web API app, and that you have the client ID from the registration.
    2. In the Azure Management Portal, you’ve created an app secret key for the registered app in Azure Active Directory.
    3. In the Azure Management Portal, you’ve provided the registered web app with permission to access OMS.
      Connection to OMS Wizard General page
  3. On the Azure Active Directory screen, configure your connection settings to OMS by providing your Tenant , Client ID , and Client Secret Key , then select Next.
    Connection to OMS Wizard Azure Active Directory page
  4. If you accomplished all the other procedures successfully, then the information on the OMS Connection Configuration screen will automatically appear on this page. Information for the connection settings should appear for your Azure subscription , Azure resource group , and Operations Management Suite Workspace.
    Connection to OMS Wizard OMS Connection page
  5. The wizard connects to the OMS service using the information you’ve input. Select the device collections that you want to sync with OMS and then click Add.
    Select Collections
  6. Verify your connection settings on the Summary screen, then select Next. The Progress screen shows the connection status, then should Complete.
Note:

You must connect OMS to the top-tier site in your hierarchy. If you connect OMS to a standalone primary site and then add a central administration site to your environment, you’ll have to delete and recreate the OMS connection within the new hierarchy.

After you have linked Configuration Manager to OMS, you can add or remove collections, and view the properties of the OMS connection.

Update OMS connection properties

If a password or client secret key ever expires or is lost, you’ll need to manually update the OMS connection properties.

  1. In Configuration Manager, navigate to Cloud Services , then select OMS Connector to open the OMS Connection Properties page.
  2. On this page, click the Azure Active Directory tab to view your Tenant, Client ID, Client secret key expiration. Verify your Client secret key if it has expired.

Download and install the agent

  1. In the OMS portal, Download the agent setup file from OMS.
  2. Use one of the following methods to install and configure the agent on the computer running the Configuration Manager service connection point site system role:

Import collections

After you’ve added an OMS connection to Configuration Manager and installed the agent on the computer running the Configuration Manager service connection point site system role, the next step is to import collections from Configuration Manager in OMS as computer groups.

After importation is enabled, the collection membership information is retrieved every 3 hours to keep the collection memberships current. You can choose to disable importation at any time.

  1. In the OMS portal, click Settings.
  2. Click the Computer Groups tab and then click the SCCM tab.
  3. Select Import Configuration Manager collection memberships and then click Save.
    Computer Groups - SCCM tab

View data from Configuration Manager

After you’ve added an OMS connection to Configuration Manager and installed the agent on the computer running the Configuration Manager service connection point site system role, data from the agent is sent to OMS. In OMS, your Configuration Manager collections appear as computer groups. You can view the groups from the Configuration Manager page under Computer Groups in Settings.

After the collections are imported, you can see how many computers with collection memberships have been detected. You can also see the number of collections that have been imported.

Computer Groups - SCCM tab

When you click either one, Search opens, displaying either all of the imported groups or all computers that belong to each group. Using Log Search, you can start in-depth analysis for Configuration Manager data.

,

Post navigation

Leave a Reply

Your email address will not be published. Required fields are marked *