Domain Controller Health Check and Monitoring

Get proactive notifications of service outages or performance issues with your domain controllers

Download Free Trial Email Link to Trial

Fully functional for 30 days

Learn More

Gain Visibility

Monitor authentication

Manage directory files

Check Health

Diagnose and Troubleshoot

Gain visibility into domain controller health and performance

Replication is an important process for keeping your domain controllers healthy and up to date. Consider monitoring replication to see if there is a failure on a replication link, a domain controller issue, or network issues leading to slow replication rates between sites and apps. Closely watch key metrics, such as checking domain controller status, replication syncs, and updates.

Download Free Trial Email Link to Trial

Fully functional for 30 days

Learn More

Monitor for user authentication issues

Domain Controller Monitoring - Health Check & Status Tool Use case type 1 1 Features Array Item - features item image

Authentication is a key role where a domain controller facilitates users when they attempt to log in to a domain. Windows does not provide authentication-related performance stats. An automated server and application health monitoring software provides a detailed view of users' accounts and activities. See details of the following areas of your domain controller monitoring for continuous performance:

User account creation, deletion, and disablement
Attempts to change or reset passwords
Changes to the user account, user account lockouts, etc.

Download Free Trial Email Link to Trial

Fully functional for 30 days

Learn More

Manage directory service files

Domain Controller Monitoring - Health Check & Status Tool Use case type 1 2 Features Array Item - features item image

Monitoring New Technology Directory Services (NTDS) object counter will indicate the number of clients connected to an LDAP session. When end-users are unable to connect to a session using LDAP queries, there could be an issue with the domain controller. You need visibility into domain controller performance monitoring data, such as speed and response times of particular sessions.

Download Free Trial Email Link to Trial

Fully functional for 30 days

Learn More

View and check domain controller health across the IT layers

Remote Server Monitoring - Remote Server Management Use case type 1 3 Features Array Item - features item image

Understand relationships and dependencies of the application management stack. With the application stack dashboard, start automatically mapping relationships between the application and its underlying infrastructure, such as database, servers, virtual, and storage layers to identify the root cause of application issues.

Download Free Trial Email Link to Trial

Fully functional for 30 days

Learn More

Perform domain controller diagnostics and troubleshooting

Performance Monitoring and Reporting System Use case type 1 3 Features Array Item - features item image

Easily detecting changes in domain controller diagnostics is critical to effective troubleshooting, which is why SAM is built to help you monitor server running authentication systems. SAM can enable you to check domain controller health through a constant overview of machine functionality, performance loss, and more. With domain controller monitoring and preset alerts, SAM allows you to easily pinpoint problematic activity and then rapidly troubleshoot domain controller diagnostics problems or bottlenecks.

Download Free Trial Email Link to Trial

Fully functional for 30 days

Learn More

Get More on Checking Domain Controller Health

Do you find yourself asking…

What is a domain controller?
Why is domain controller monitoring important?
How does domain controller monitoring work in SAM?

A domain controller is a server designed to respond to security authentication requests within a network and verify users on their devices. When a user logs in to the network, system, or service—for example, Windows Active Directory (AD)—the domain controller is built to instantly authenticate and validate their credentials. This is traditionally in the form of a username, password, or an IP location. Then, the domain controller either denies or allows access depending on the validity of the user and their device.

Domain controllers are made to organize and secure all data necessary to determine and validate users, device names, and group policies. Usually, a domain controller will use a hierarchical organization system to arrange the information found within it, using a tree-like system to group users and protect them in similar ways. This helps keep groups of network elements safe from bad actors.

The domain controller for a given IT system lives on a single piece of hardware dedicated to performing authentication tasks across network machines, devices, and end users. These elements can also be known as clients. Using a single piece of hardware for your domain controller helps simplify the process of validating each individual user, especially in large networks composed of hundreds of client devices.

Domain control monitoring works in SolarWinds Server & Application Monitor (SAM) by using an application monitor template, which consists of a group of component monitors. SAM component monitors are designed to let you check domain controller health, check domain replication health, verify AD replication, and troubleshoot domain controller problems. This can help you understand your domain controller’s current performance and optimize functionality.

Instead of creating individual component monitors one by one, SAM can enable you to assign a prebuilt template to your domain controller. SAM enables you to customize and assign templates yourself, or you can enable SAM to assign templates to groups within your domain controller automatically.

As soon as you assign a SAM template to a domain controller, you can begin to troubleshoot domain controller issues. SAM component monitors can also help you check domain replication status and ensure the functionality of other operations. SAM is designed to offer a wide array of specified component monitors, including:

Number of currently disabled or locked out users (requires you to set a custom threshold value)
User account events: Creation and deletion of new user accounts and changes made to security-related properties like password sets, resets, and changes
Logon failures: Failed attempts, unknown credentials, logon type not allowed, disabled or expired account, automatic account lock outs, and any attempts to log on through a replay attack
System events: Shutdowns, number of cleared security logs, changed audit or domain security policy settings, and number of attempts to change domain controller policy settings

Along with using a template, SAM can enable you to add the AppInsight™ feature to monitor domain controller events and functionality. After adding AppInsight to your domain controller, SAM can enable you to customize the settings for each individual component monitor. In large environments, some of these settings could directly impact domain controller diagnostics and performance.

SAM can also enable you to limit the data AppInsight polls on domain controllers during monitoring. Through this, SAM can help reduce redundant data collection and improve performance, especially in bigger environments. SAM is built to support the monitoring of up to 200 domain controllers, making this tool an excellent domain controller monitor for large and small systems.

A domain controller is a server designed to respond to security authentication requests within a network and verify users on their devices. When a user logs in to the network, system, or service—for example, Windows Active Directory (AD)—the domain controller is built to instantly authenticate and validate their credentials. This is traditionally in the form of a username, password, or an IP location. Then, the domain controller either denies or allows access depending on the validity of the user and their device.
Domain controllers are made to organize and secure all data necessary to determine and validate users, device names, and group policies. Usually, a domain controller will use a hierarchical organization system to arrange the information found within it, using a tree-like system to group users and protect them in similar ways. This helps keep groups of network elements safe from bad actors.
The domain controller for a given IT system lives on a single piece of hardware dedicated to performing authentication tasks across network machines, devices, and end users. These elements can also be known as clients. Using a single piece of hardware for your domain controller helps simplify the process of validating each individual user, especially in large networks composed of hundreds of client devices.
Domain control monitoring works in SolarWinds Server & Application Monitor (SAM) by using an application monitor template, which consists of a group of component monitors. SAM component monitors are designed to let you check domain controller health, check domain replication health, verify AD replication, and troubleshoot domain controller problems. This can help you understand your domain controller’s current performance and optimize functionality.
Instead of creating individual component monitors one by one, SAM can enable you to assign a prebuilt template to your domain controller. SAM enables you to customize and assign templates yourself, or you can enable SAM to assign templates to groups within your domain controller automatically.
As soon as you assign a SAM template to a domain controller, you can begin to troubleshoot domain controller issues. SAM component monitors can also help you check domain replication status and ensure the functionality of other operations. SAM is designed to offer a wide array of specified component monitors, including:
Number of currently disabled or locked out users (requires you to set a custom threshold value)
User account events: Creation and deletion of new user accounts and changes made to security-related properties like password sets, resets, and changes
Logon failures: Failed attempts, unknown credentials, logon type not allowed, disabled or expired account, automatic account lock outs, and any attempts to log on through a replay attack
System events: Shutdowns, number of cleared security logs, changed audit or domain security policy settings, and number of attempts to change domain controller policy settings
Along with using a template, SAM can enable you to add the AppInsight™ feature to monitor domain controller events and functionality. After adding AppInsight to your domain controller, SAM can enable you to customize the settings for each individual component monitor. In large environments, some of these settings could directly impact domain controller diagnostics and performance.
SAM can also enable you to limit the data AppInsight polls on domain controllers during monitoring. Through this, SAM can help reduce redundant data collection and improve performance, especially in bigger environments. SAM is built to support the monitoring of up to 200 domain controllers, making this tool an excellent domain controller monitor for large and small systems.

"I’ve used a lot of server monitoring software, and I’ve seen how awful they are and SolarWinds is one of the easier ones to use. It definitely works for us."

Cole Lavallee

Systems Administrator

Waters Corporation

Find and fix domain controllers and directory services

Server & Application Monitor

Automatic application discovery and server monitoring.
Quickly monitor the performance and availability of Microsoft Azure and Amazon AWS services.
Built-in templates provide best practices.

Starts at

SAM, an Orion module, is built on the SolarWinds Platform

Download Free Trial Email Link to Trial

Fully functional for 30 days

Learn More

Let's talk it over.

Contact our team. Anytime.