Learn about the Active Directory Integration.

Active Directory Integration

Active Directory (AD) is a Windows OS directory service. This integration installs and configures Telegraf to send Active Directory metrics into Wavefront. Telegraf is a light-weight server process capable of collecting, processing, aggregating, and sending metrics to a Wavefront proxy.

In addition to setting up the metrics flow, this integration also installs a dashboard. Here’s a section of a dashboard displaying Active Directory metrics:

images/active-directory-ldap.png

Active Directory Setup

This integration uses Windows performance counters specific to the Active Directory Telegraf input plugin.

**Note:**  This integration is supported only on Windows.

Step 1: Set up a Wavefront Proxy

If you do not have a Wavefront proxy installed on your network, install a proxy.

Step 2: Install the Telegraf Agent

  1. Download wavefront-telegraf-64-setup.exe. Only 64-bit Windows is supported.
  2. Double click the wavefront-telegraf-64-setup.exe file and follow the instructions in the setup dialog to install Telegraf.

    Note: Steps 3-5 are only required if the Wavefront proxy is installed on a different host.

  3. Edit the telegraf.conf file located in Program Files\Telegraf.

    Warning: Do not use notepad to modify the file. Use an editor that supports Unix style line endings, such as Notepad++ or EditPlus.

  4. Configure the outputs section to communicate with your Wavefront proxy:
    [[outputs.wavefront]]
       host = "WAVEFRONT_PROXY_HOSTNAME"
       port = 2878
    

    Note: In the default telegraf.conf, the host property is set to localhost.

  5. Restart the Telegraf service using the Windows Services Management Console or from the command prompt:
    net stop telegraf
    net start telegraf
    
  6. Check Program Files\Telegraf\telegraf.log to verify the installation.

Step 3: Configure the Active Directory Input Plugin

Edit the telegraf.conf file located in Program Files\Telegraf\ and enter the following snippet:

[[inputs.win_perf_counters.object]]
  ObjectName = "DirectoryServices"
  Counters = ["LDAP Active Threads","LDAP Client Sessions","LDAP Writes/sec","LDAP Searches/sec","LDAP Successful Binds/sec","LDAP New Connections/sec","LDAP Closed Connections/sec","LDAP UDP operations/sec","DS Threads in Use","DS Directory Writes/sec","DS Directory Reads/sec","DS Directory Searches/sec","DS Client Binds/sec","DS Server Binds/sec","DRA Pending Replication Synchronizations","DRA Sync Requests Made","DRA Sync Requests Successful","DRA Pending Replication Operations"]
  Instances = ["NTDS"]
  Measurement = "ad.active.directory"
 
  
[[inputs.win_perf_counters.object]]
  ObjectName = "Security System-Wide Statistics"
  Counters = ["NTLM Authentications","Kerberos Authentications","KDC AS Requests","KDC TGS Requests"]
  Instances = ["------"]
  Measurement = "ad.security.statistics"   

Step 4: Restart the Telegraf service

Restart the Telegraf service from the Windows Services Management Console or execute the following commands from the command prompt:

   net stop telegraf
   net start telegraf