How To Eliminate Windows Alerts Regarding Traps Watchdog
0
Created On 07/14/19 13:43 PM - Last Modified 07/19/22 23:14 PM
Objective
When using Traps agent on Windows Server machines, the behavior of the Traps Watchdog service creates a system event in Event Viewer. As a result, we see an alert in the Server Manager Dashboard:
Although being aware of the service behavior is part of the Traps agent design, some of our customers are quite bothered with these kind of false-positive alerts and would like to have this feature removed.
Procedure
To eliminate the alert in the services details view only from the Server Manager Dashboard, the less intrusive way would be the following:
- Open the Services Detail View
- In the "Alert Criteria" section, select which services will be viewed/alerted
- Click on the 'Services" drop down for the option to uncheck the Watchdog service. By doing so, no further alerts will be displayed for that service under Server Manager.
To clear the alert completely for all users, follow the steps below:
Since the alert originates from an entry in the system logs on the Windows Event Viewer, the alert can be eliminated by excluding the "service stopped" event for the Watchdog service from being written to the Event Viewer.
You can achieve the mentioned by editing the registry:
NOTE: Before making any changes to the machine's registry, make sure to have a backup of the registry at its current state.
- First, double click on the "The Traps Watchdog Service entered the stopped state" in Event Viewer, and click on the Details tab. Then, write down the event's GUID (click the + sign next to System in order to view it).
- Open up regedit and go to [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\WMI\Autologger\EventLog-System\{The_Event_Guid}
- On the right, where the registry entries are, look for "Enabled" which will be set to 1. Change that to 0.
- Restart the machine for changes to apply.