This article has been archived. It is offered "as is" and will no longer be updated.
This article discusses support for Microsoft Operations Manager (MOM) 2005 Service Pack 1 (SP1). This article also discusses hotfixes that may be required and known issues that affect support of MOM 2005 SP1 on a Windows Server 2008-based computer.
The MOM 2005 SP1 Agent role is supported in Windows Server 2008. Other MOM 2005 roles are not supported in Windows Server 2008.
Windows Server 2008 R2 and Windows 7 are not supported for any MOM 2005 SP1 role.
Additionally, the following MOM 2005 SP1 hotfix is required to deploy MOM 2005 agents to Windows Server 2008-based domain controllers. For more information, click the following article number to view the article in the Microsoft Knowledge Base:
919154 The MOM service does not start and event 9014 is logged when you deploy a Microsoft Operations Manager 2005 agent to a domain controller that is running Windows Server 2008
Issue Event log descriptions for collected Windows Server 2008 Security logs (Source=Microsoft-Windows-Security-Auditing) are for rules that use the Security log provider. The Security log provider logs the following error message in the Security log:
Unable to find Security source Microsoft-Windows-Security-Auditing message [nnnn]
Workaround A hotfix is now available for Windows Server 2008 and Windows Vista. For more information, click the following article number to view the article in the Microsoft Knowledge Base:
961099 An application that uses Windows NT security event log APIs cannot read the description of an event log message from a computer that is running Windows Vista or Windows Server 2008
Issue An action account that has few privileges cannot monitor Windows Server 2008-based event logs. For more information about action account requirements, see the MOM 2005 Security Guide. To download this guide, visit the following Microsoft Web site:
Resolution In addition to the action account requirements that are specified in the MOM 2005 Security Guide, the following additional requirements must be met:
The action account must be a member of the Event Log Readers local group in Windows Server 2008.
When an action account other than LocalSystem is used, the MOM service runs under the Network Service account. For the MOM service to correctly read the Security log, the MOM service account must be changed to LocalSystem. This change must be manually configured on each affected MOM agent. The affected MOM agent that is running under Windows Server 2008 requires access to the Security log.
Issue The Internet Information Server (IIS) log collection does not work on Windows Server 2008-based computers that are running IIS. This issue occurs if IIS is using the IIS Web server log MOM provider.
Workaround None. By default, W3C logs in IIS 7.0 are in UNICODE format, and the log names start with " u_." The MOM Web server log provider cannot read these logs.
For more information about MOM 2005 SP1 configurations that are supported, visit the following Microsoft Web site:
For more information about Operations Manager 2007 SP1 and Operations Manager 2007 R2 support for Windows Server 2008 R2 and for Windows 7, click the following article number to view the article in the Microsoft Knowledge Base:
974722 Support for Windows Server 2008 R2 and Windows 7 in System Center Operations Manager 2007