Windows Server Monitoring

gradient network wave

IT Monitoring for Microsoft Windows Systems

Sightline Enterprise Data Management (EDM) is a powerful IT infrastructure monitoring and real-time analytics solution that provides maximum control over any IT environment. The Sightline™ Power Agent™ for Microsoft® Windows® Systems collects and reports performance data from all of the key components of the operating system, including process information. EDM enables IT teams to continuously monitor windows server in real time in order to proactively predict performance issues and prevent unplanned downtime and data loss. Its highly interactive, visual tools are used to achieve results in minutes, accelerating discovery and investigation within any IT infrastructure.



Microsoft Windows Performance Metrics

Sightline EDM collects these specific IT performance metrics on Microsoft® Windows® systems:

CPU Statistics

Sightline reports both global and individual statistics for the system’s processors. For each CPU, %CPU, %User, %Privileged, and %Interrupt times give information on how busy the processor is in the different modes. Deferred Procedure Call (DPC) and Asynchronous Procedure Call (APC) statistics are reported. At the system level, the queue length of the processor and the context switches per second enable you to monitor processor congestion.

Memory Statistics

One of the most common causes of serious performance problems is lack of memory. Sightline reports available physical memory and paging activity, which are two useful metrics for evaluating memory constraints. Page Faulting activity, Cache Fault information, and Paged and NonPaged Pool resources are tracked to give detailed information about the memory usage on the system. Sightline also monitors cache statistics. When pages can be retrieved from the cache instead of the disk, system performance is significantly improved. Metrics such as the Data Map Hit and Copy Read Hit percentages monitor cache efficiency. Data Map Pinned and MDL (Memory Descriptor List) statistics provide valuable information to evaluate cache performance.

Disk Statistics

Disk activity is a key aspect of performance. Disk activity can be reported either as physical disk or logical disk statistics. Sightline reports disk queue length, the percentage of time the disk is busy servicing I/O requests, the disk throughput in KB and in number of transfers, and the average time per transfer. I/O requests may also be broken into Read and Write requests, providing more detailed knowledge of disk activity.

Network Statistics

The Windows Server is a Network Operating System (NOS) that can also work as an application server. Reporting comprehensive network statistics is therefore crucial for performance monitoring. Sightline reports detailed information about any network software installed in the system, including Browser, Network Protocols, and Server, among others. WINS Server and MacFile Server statistics are also reported.

Network Protocols

Sightline reports detailed statistics for a wide variety of network protocols including IP, ICMP, NetBEUI, NWLink IPX & SPX, NWLink NetBIOS, TCP, and UDP. The number of metrics in the network category is large and protocol-specific. Generally, network throughput rates in KB and in packets, frames, or fragments are reported. Errored or Failed connection statistics help to keep track of network glitches that can point to hardware problems. Sightline also helps keep track of Remote Access Services (RAS) by reporting metrics for the RAS Total and RAS Port objects.

Process Statistics

Process Statistics — One flexible feature of Sightline is the ability to group processes under user-defined “Workloads.” Once a Workload is defined, all the process information is available for it to use. In particular, you can monitor the %CPU utilization, working set size and priority of the process or groups of processes, and the number of threads generated. You can monitor any application running on the server directly during the process statistics if its process name(s) can be identified.

Browser Statistics

A Browser service runs on any machine that has elected to have a browse list. Browser statistics allow you to monitor server and domain announcements and errored components like Missed Server List Requests or other specific types of requests.

Server Statistic

The Server is the process that serves as an interface between the local computer and the network services. Monitoring server activity usually gives a good idea of how busy the network is. Network throughput and accurate error logs provide the means to track the network. In addition to reporting these metrics, Sightline reports process statistics for the server, including memory used in the Paged and NonPaged Pools.



Process Level Data

Event data is used to monitor process-level utilization; for example:

    • Pid# – The Process Identification Number
    • Userid – The name of the User that owns this process
    • Taskname – The name of the process
    • Arguments – The arguments used when initiating the process
    • Usr% (User CPU utilization) – The amount of User CPU this process used during the sample interval. On a multi-processor machine this is the value of CPU usage for this process on all CPU’s
    • Sys% (System CPU utilization) – The amount of System CPU this process used during the sample interval. On a multi-processor machine this is the value of CPU usage for this process on all CPU’s
    • Cuser% (Child user CPU utilization) and Csys% (Child system CPU utilization) – The amount of User CPU and System CPU that children of this process used. You will only see values when a child of this process completes during the interval
    • Size K (Process size) – The amount of memory that this process is using in Kilobytes
    • Pri (Priority Level) – Level of Priority of the process
    • BRead and BWrite – The number of Block Reads and Writes done by this process during the interval
    • PgFlt – The number of Page Faults for this process during the interval