Blog

A new hire’s journey into the world of user experience monitoring. Hi, my name is Dominik Britz. I’m from Cologne, Germany and the latest team member of vast limits, the uberAgent company. I’d like to introduce myself, tell you why I’m here and what I’m going to do. I started my career as a consultant…

One of our customers wanted to identify users who launch a specific executable more often than n times in a given time range. That is easy to accomplish, given that uberAgent monitors process starts. This article describes multiple ways to query for that information.

uberAgent is often used in conjunction with Universal Forwarder, Splunk’s generic agent that monitors logs and collects the output from custom scripts. The combination of the two agents is a powerful one, as it allows customers to add any metric they require to uberAgent’s already rich dataset. However, running two agents side by side has…

I recently noticed a console window pop up for a fraction of a second on my desktop. About an hour later, it happened again. Random windows appearing out of nowhere is not something I like to see on my machines. Read on to learn how I investigated the issue.

One of the many things you come to love once you have used uberAgent for a little while is the fact that it is very application-centric. Applications are what really matters, not the individual processes they are comprised of. I will give you a example of that in this post.

Process whitelisting is an effective remedy against many types of malware. By allowing only known-good processes to run, you ensure that potentially malicious applications are blocked no matter where they came from. The difficulty with this approach lies with the creation of the whitelist. If you miss legitimate processes, applications break. Here is how uberAgent…

Citrix XenApp and other multi-user systems based on Remote Desktop Services host dozens or even hundreds of user sessions concurrently. Being able to reliably identify individual sessions and the processes running in them is a necessity for a variety of security, monitoring and capacity planning use cases. That is, however, much more difficult than it…

Agentless monitoring sounds great, but isn’t. Learn why a small footprint agent is superior. The Agentless Myths Agentless monitoring is the term often used for an architecture where the monitoring software does not require a component on the monitored endpoint. Instead, a centralized monitoring server queries the endpoints over the network. Myth #1: Agentless Exists…

One of the many cool things about uberAgent and Splunk is the ease with which you can extend the product and create your own reports. Splunk’s powerful search and report language is up to almost any conceivable task. Session Count per Data Center Many companies distribute their Citrix XenApp servers across two data centers. During…

uberAgent can tell you a lot about applications: performance, resource utilization and where and by whom they have been used. uberAgent’s dashboards show on how many different computers an applications was running, the number of instances per app version and the number of distinct users per app. But even with this wealth of built-in visualizations…

This post is part of a series of articles that highlight and explain specific aspects of uberAgent’s functionality. What is uberAgent? uberAgent is a Splunk agent for Windows end-user computing analytics focused on user experience and application performance. It provides deep insights into the user logon process, helps identify bottlenecks caused by slow backend systems…

This is the second in a series of articles that highlight and explain specific aspects of uberAgent’s functionality. What is uberAgent? uberAgent is a Splunk agent for Windows end-user computing analytics focused on user experience and application performance. It provides deep insights into the user logon process, helps identify bottlenecks caused by slow backend systems…

This is the first in a series of articles that highlight and explain specific aspects of uberAgent’s functionality. uberAgent’s focus is on user experience. Our goal is to provide high-quality metrics that enable you to determine exactly what is going on: how many users are logged on, how long the logon takes, what happens during…

Application startup duration is an essential component of user experience. If you want to make sure that UX on your Windows machines is acceptable you need to monitor the time it takes for applications to start up. That, however, is not exactly easy

Considering the importance of fast logons for a good user experience there is surprisingly little information on the subject. Windows does not even record the total logon time, let alone where it is spent. Administrators wishing to analyze their users’ logons are left in the dark. But that can be changed.

You have been there: end users are complaining and your boss demands an explanation why “Citrix is slow” – again. You, the XenApp/XenDesktop admin, desperately look at Task Manager and Perfmon, but you cannot find a thing. Your servers are humming along quite nicely, but still: applications are slow, the system feels sluggish and logons…

uberAgent for Splunk monitors Windows machines. It does not try to display as much data as possible but focuses on visualizing what is actually going on instead. Today we are going to talk about machines, processes and applications.

Today it is still as common as it was in the 90s to go for a coffee after switching on the PC in the morning, only to find it still booting when coming back several minutes later. SSDs have not arrived in the average office yet, and even they can only cure some of the…

uberAgent has been pretty good at monitoring applications for some time. It is capable of auto-grouping processes to applications and showing IOPS and other stats per application in addition to per process. All this gets even better with application usage metering.

The days are long gone when a browser was just another application. Modern websites are applications of their own, and the browser is their operating system. That has consequences for monitoring. It is no longer sufficient to gather performance data for the browser as a whole. When, for example, Internet Explorer’s CPU usage is high,…

Do you know the maximum number of users each of your terminal servers can host with acceptable performance? You may have found out the hard way how many are too many – but how many are just right? Farm sizing and server capacity planning are typical tasks for consultants who often have a hard time…