Troubleshooting instructions for Windows server monitor being reported down after Windows BSOD (CrowdStrike)
Issue
The server monitor is down on the devices affected by the recent Windows-CrowdStrike BSOD issue.
Cause
After the BSOD, the affected devices are unable to start the Site24x7 Windows Agent service. When the customer tries to start the agent, it fails with error code 1608.
Upon analyzing the root cause of this issue, we found that all the groups and users that were previously associated with the agent install directory have been cleared after the BSOD.
Resolution
Add SYSTEM and Administrators to the groups and usernames for the agent install directory and grant full control permission.
To perform this fix easily, we have created a script. When this script is executed as an administrator, all the required users and groups with permissions will be added to the directory.
Related Articles
No data for service and process in Windows server monitor
If you see "No Data" for process and service metrics (such as CPU or memory usage of monitored services) in the Site24x7 Windows server monitor user interface, follow the troubleshooting steps below. Run PowerShell Commands Open PowerShell as ...Troubleshooting steps when no data is received from the SQL server
As we use "Perfmon" to fetch data for Microsoft SQL monitoring, please check if the counters related to SQL are present in the user's perfmon. Please follow the steps below: Open the server machine in which the issue is occurring. Start -> Run and ...Executables and scripts to allow for Windows server monitoring
One of the reasons you could not enable Site24x7 server monitoring could be your organization's group policy denying access to the executables, scripts, and batch files associated with Site24x7 server monitoring. Mark the following executables, ...Monitor and validate DNS IP changes using regex
DNS administrators often monitor their DNS servers to detect changes in domain resolution and ensure IP mappings remain secure and accurate. Problem When your organization adds or modifies an IP address for your domain name, it’s critical to: Be ...Troubleshooting false positive alerts in monitoring
Problem False positive alerts are being generated. Possible cause The monitoring system is down in some locations. The Website monitor might be configured for one location, such as Seattle, but may appear down when accessed from another location, ...