Use this Knowledge Script to monitor the number of system processes with an effective user ID (euid) of root. You can specify one or more processes to exclude from the list, if needed. If the number of processes running under root is over the threshold you set, AppManager raises an event.
UNIX CPU folder
The default interval for this script is Every hour.
Set the following parameters as needed:
|
Description |
How to Set It |
|---|---|
|
Event if over the threshold? (y/n) |
Set to y to raise an event if the number of processes running under the root user exceeds the threshold. The default is y. |
|
Collect data? (y/n) |
Set to y to collect data for charts and reports. If set to y, the Knowledge Script reports the number of processes owned by the root user at each interval. The default is n. |
|
Maximum number of processes owned by root threshold |
Enter a threshold for the maximum number of processes owned by the root user. The default is 30 processes. |
|
Processes to exclude separated by commas |
Enter the processes you want to exclude from the list of processes owned by root. Use a comma with no spaces to separate process names. |
|
Event severity level |
Set the event severity level, from 1 to 40, to indicate the importance of the event. The default is 8. |
|
Event severity for internal failure |
Set the event severity level, from 1 to 40, to indicate the importance of an event in which this job experienced an internal error. The default is 5. |
|
Enable debugging? (y/n) |
Set to y to enable debugging. The default is n. |