check_ad - Nagios NRPE plugin for Active Directory health check
check_ad [--dc] [--member] [--noeventlog] [--nokerberos][--help]
check_ad works as a Nagios NRPE plugin for Active Directory health check.
Checks domain controller functionality by using dcdiag tool from Windows Support Tools. Following dcdiag tests are performed :
services, replications, advertising, fsmocheck, ridmanager, machineaccount, kccevent, frssysvol (post-Windows 2000 only), frsevent (post-Windows 2000 only),
Checks domain member functionality by using netdiag tool from Windows Support Tools. Following netdiag tests are performed :
member, netbt, dns, dsgetdc, ldap, kerberos
Don't run the dc tests kccevent and frsevent, since their 24-hour scope may not be too relevant for Nagios.
Don't run the member test kerberos due to netdiag bug (See Microsoft KB870692)
Produces help message.
0 OK 1 WARNING 2 CRITICAL 3 UNKNOWN
Tevfik Karagulle http://www.itefix.no
This program is distributed under the Artistic License. http://www.opensource.org/licenses/artistic-license.php
Version 1.4, January 2009
- Windows 2008 support (checks are done in lowercase only) - Dropped member test 'trust' as it requires domain admin privileges thus introducing a security weakness. - Introducing option 'nokerberos' due to netdiag bug (see Microsoft KB870692)
- Add command line option 'noeventlog'.
- Support for Windows 2000 domains - Use CRITICAL instead of ERROR
- remove sysevent test as it can be many other event producers than active directory.