Authoring groups – from simple to complex

<!--[if lt IE 9]>


Comments (3)

  1. Anonymous says:

    I have written several posts over the years dealing with authoring groups. See many examples here: http

  2. Kyle says:

    Hi Kevin,

    Great post. I am having issues with what seems like it should be a very common and basic task. I am trying to create a group that lists all servers that are members of a specific group AND running a specific service. I have created the query, yet every time I save it it changes the “AND” operator to an “OR” operator. Are there limitations of creating certain queries using AND operators or is this some type of bug in SCOM? Any help on this would be much appreciated, thank you!

  3. Gray_man says:

    Separating Application and Server+OS alerts on same servers to go to different App Support and Server Support Teams

    1.) I have created an Application Management Pack APP.MP and included the following Groups – I used MP Author and included the following Groups by importing MP fragments (courtesy of Kevin Holman) – works great:
    • Classinstances Group for targeting application alerts only to the Application Support Team
    • Windowscomputers Group to let Support Teams see alerts about everything on their servers
    • WindowsComputersAndHealthServicesWatchers Group to allow Application Owners to see and receive alerts for heartbeat failure and server down

    The App.MP creates all these groups above when it is installed and is populated by the servers dynamically with the discovery in the APP.MP checking for existence of the Application. I have targeted these to the Application Support Team and they only see alerts contained in the App.MP for the Application -> monitors & rules, discovery, perf collection, process & service monitors, event and ASCII log-file monitors etc.

    Exactly what I needed to provide for the Application Support team/owners. I scoped the Advanced Operator Role created for the Application Support team only to the groups created by the APP.MP.

    2.) Now, I have then created a Group in the Console manually (Authoring -> Groups -> right click etc.) and populated this group with the same servers (created a Dynamic rule), so the Server Support team can receive alerts for server hardware and OS issues only.

    ** The only problem is, the Server Support team are also seeing the alerts for the Application from the APP.MP. I have scoped the Advanced Operator Role for the Server Support team only to the Group I created in the Console, and have also included in the Group properties “Excluded Members” by adding all the Class computers and all the above groups created by the APP.MP in the excludes, but the application Alerts still show up in the Server Support teams views?

    I don’t really want the teams to have to create filters or Overrides in the first instance, but rather they are presented with exactly the components they support; we have many Support Teams that require Application alerts to go to the various Application Support Teams, and the Server + OS alerts to go to the various Server Support teams.

    Any suggestions?

    Thanks in advance for any enlightenment of what I can do.

Skip to main content