Configure the Collectors in AD Bridge

You can configure performance and security settings on the BTCollector. This section shows you how using the management console.

For more information on how to use the shell prompt, please see Configure the Collectors Using the Shell Prompt.

On the BTReaper service, you must set up the service so that it can send events to the SQL Server database.

Configure Performance Settings on the Collector Service

For detailed descriptions on the performance parameters, please see Configure the Collector Service Using the Shell Prompt.

To change the parameters on the Collector service:

  1. In the console tree, expand Enterprise Database Management.
  2. An image of the Set collector parameters menu option in Enterprise Database Management.

  3. Right-click Collector Status, and then select Set collector parameters.
  4. Alternatively, in the list of collectors, right-click the collector that you want to modify, and then select Set collector parameters.

  1. Set the following parameters (or use the default values):
    • Period (seconds): 15
    • Maximum events per period: 5000

    Endpoint Parameters

    • Period (seconds): 10
    • Maximum events per period: 1000
    • Events per batch: 250

Configure Security Settings on the Collector Service

You can configure the access control list (ACL) for the remote procedure calls that take place between the collector and its endpoints.

  1. In the console tree, expand Enterprise Database Management.
  2. Right-click Collector Status, and then select Set collector parameters.
  3. Alternatively, in the list of collectors, right-click the name of the collector, and then select Set collector parameters.

    An image of the Set Permissions option on the Collector Parameters screen.

  4. Click Set Permissions:
  5. Set the following permissions.
    • ADB_DB_Administrators: Full Control
    • Required to change the Collector database using the btcollector-cli.exe command.

    • Domain Computers: Write Events
    • Required for agents to write events to the Collector database. When using the Collector server cross-domain it is also necessary to add Write Events access to computer accounts from remote domains.

    • Reaper Service Account: Full Control
    • Required for the Reaper to remove events from the Collector database after committed to the SQL Server database. Use the account that you create in Configure the Reaper Service.

    • Collector Server Computer Account: Full Control
    • Required for the system to have full access to the Collector database.

  6. Restart the Collector service.

Configure the Reaper Service

The BTEventDBReaper service needs to write events to the SQL Server database. To do this, the service must be modified to run using a service account that is a member in the ADB_Collectors group. The ADB_Collectors group was created earlier during the database planning and setup.

For more information, please see Plan SQL Server Database Security.

  1. Create an account to run the BTEventDBReaper service under.
  2. Add this account to the ADB_Collectors group (to grant database access).
  3. Grant the account Read and Write access to the following registry keys on the local Collector box:
    • HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BTEventDBReaper
    • HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BTCollector

    An image of the Log On configuration on the BTEventDBRepear Properties screen.

  4. Modify the BTEventDBReaper service to Log on as this account.
  5. Restart BTCollector (which will also restart BTEventDBReaper).
  6. Review the Application Log on the local Collector server to ensure the services started without error.