This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
FAQ
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

How does oneagent detects OS processes?

Go to solution
hmor3
Inactive

‎29 Jun 2018 04:27 PM

Hi Guys,

what is the mechanism used by oneagent to detect processes in windows/Unix ?

Does it use tasklist for windows and ps interface for unix?

Thanks

Himanshu Mor

Labels:
0 Kudos
Reply
12 REPLIES 12

Go to solution
Joe_Hoffman
Inactive

‎29 Jun 2018 09:42 PM

it hooks itself into the process creation event so as to see processes being created. But what use case requires this level of understanding? Perhaps there's something we can help with.

0 Kudos
Reply

Go to solution
hmor3
Inactive
In response to Joe_Hoffman

‎02 Jul 2018 08:43 AM

Hello @Joseph M. H. , the use case is to Monitor OS level processes.

we need to understand what all types of process OneAgent will detect?

As part of schedules jobs , some processes run at specified times & duration of the day and we are not sure if all the processes are detected .

Also a simple test was performed by opening notepad.exe on a windows machine but it was not detected by the oneagent.

Details around system calls used/method of process detection will help

Thanks

Himanshu Mor

0 Kudos
Reply

Go to solution
Joe_Hoffman
Inactive

‎02 Jul 2018 04:44 PM

All processes are detected, however not all processes are displayed. Only processes which consume a sufficient amount of resources are displayed. This helps keep the list of processes from being clogged with irrelevant processes. If you do a bunch of work in that Notepad process, I'll bet it will show up in a few minutes. But an idle notepad.exe is certainly not resource relevent.

Reply

Go to solution
hmor3
Inactive
In response to Joe_Hoffman

‎03 Jul 2018 07:40 AM

Thanks Joseph ! this helps and answers my concern.

Can we have this documented as part of Dynatrace documentation something like below topic ::

"How does dynatrace detects and displays processes"

0 Kudos
Reply

Go to solution
hmor3
Inactive
In response to Joe_Hoffman

‎09 Jul 2018 08:14 AM

For everyone's reference , as mentioned by @Yos N. , below link explains the criteria that oneagent uses to detect and display processes :

https://www.dynatrace.com/support/help/shortlink/process-tracking#which-are-the-most-important-proce...

Thanks

Himanshu Mor


0 Kudos
Reply

Go to solution
Julius_Loman
DynaMight Legend
DynaMight Legend

‎03 Jul 2018 08:12 AM

As far as I know, the built-in rules check for processes listening on a network socket. So If you need to monitor processes not listening on a network socket, you will need to setup the "Custom process group detection rules" and specify the executable name and path.

Certified Dynatrace Master | Alanata a.s., Slovakia, Dynatrace Master Partner
0 Kudos
Reply

Go to solution
gilgi
DynaMight Champion
DynaMight Champion
In response to Julius_Loman

‎06 Jul 2018 09:57 AM

So this means that if there is a bacground process that may consume cpu from time to time and create spikes, but doesn't do any networking activity, it will not automatically be detected ?

0 Kudos
Reply

Go to solution
Joe_Hoffman
Inactive
In response to gilgi

‎06 Jul 2018 06:15 PM

Gil, I ran a test using JDiskReport, which is a standalone desktop app, no network activity, but plenty of CPU and Disk activity. Dynatrace reported this process successfully, including the CPU consumption as it was significant.

So I think you should be fine. No network activity appears to be required as long as they're some significant resource consumption.


0 Kudos
Reply

Go to solution
Yosi_Neuman
DynaMight Guru
DynaMight Guru
In response to gilgi

‎06 Jul 2018 06:35 PM

Hi,

here it is from: https://www.dynatrace.com/support/help/shortlink/process-tracking#which-are-the-most-important-processes


dynatrace certificated professional - dynatrace master partner - Matrix Soft Ware Division - Israel
Reply

Go to solution
hmor3
Inactive
In response to Yosi_Neuman

‎09 Jul 2018 08:11 AM

Hello @Yos N. ,

Many thanks for your reply here as this is the required documentation link i was looking for and it mentions all criteria that dynatrace uses to detect the process at OS level.

Thanks

Himanshu Mor


Reply

Go to solution
gilgi
DynaMight Champion
DynaMight Champion

‎10 Jul 2018 07:17 AM

Hi All,

as we now understand how processes are displayed, look at this screen shot:

CPU is at 100%, but no process is showing a major contribution to this spike. We know that the guilty process has not been marked to be monitored as it does not run any code, so the automatic settings play here. the thing is that this process spikes its CPU but not enough to match this rule probably.

What's the play here to identify the guilty process in such as a case ?

Gil.


0 Kudos
Reply

Go to solution
Joe_Hoffman
Inactive

‎10 Jul 2018 04:14 PM

Gil, I have seen your symptoms previously, where the host CPU is very busy, but no processes show any relevant CPU activity level. The reason for this was due to a condition where processes were quickly being created/run/destroyed. So each process that was contributing to the overall CPU consumption was itself not significant.

I believe the workaround to this was to create a Process Group and then it showed up. But I'm not positive on that solution.

Does this possibly match your situation?


0 Kudos
Reply
Ask a question

Featured Posts