28 Things You Should be Monitoring With Your RMM

As an MSP, monitoring and alerting are central to the services you provide. Good monitoring practices enable you to proactively identify issues, resolve them faster, and be more effective. Better monitoring can also play a key role in generating additional revenue and keeping your clients more satisfied.

The challenge is knowing what to monitor for, what requires an alert, which issues can be automatically resolved, and which need a personal touch. That knowledge can take years to develop, and even then the best teams can still struggle with reducing alert fatigue and ticket noise across client devices.

To help those just getting started condense that ramp-up time and narrow their focus, we’ve put together this list of ideas for 25+ conditions to monitor. These recommendations are based on suggestions from our partners and from NinjaRMM’s experience helping MSPs build effective, actionable monitoring.

How to Use the Checklists Below

For each condition we describe what is being monitored, how to set up the monitor in NinjaRMM, and what actions should be taken if the condition is triggered. Some monitoring suggestions are concrete while others may require a small amount of customization to fit them to your use case.

Note: While we've written this checklist with NinjaRMM and our customers in mind, these monitoring ideas should be easily adaptable to any RMM.

This list is also obviously not exhaustive, and may not apply to every situation or circumstance.

Once you’ve gotten started building out your monitoring around these suggestions, you’ll need to develop a more customized and robust monitoring strategy specific to your clients and their needs. We'll close out this post with additional recommendations to help with that effort and make monitoring, alerting, and ticketing a competitive advantage for your MSP.

Device Health Monitoring Checklist

Monitor for continuous critical events

Identify when a device is unintentionally rebooted

Identify devices in need of a reboot

Monitor for offline endpoints

Monitor for hardware changes

Drive Monitoring Checklist

Monitor for potential disk failure

Identify when disk space is approaching capacity

Monitor for potential RAID failures

Monitor for prolonged high disk usage

Monitor for high disk activity rate

Monitor for high memory usage

Application Monitoring Checklist

Identify if required applications exist on an endpoint

Monitor whether critical applications are running (particularly for servers)

Monitor resource usage for applications known to cause performance issues

Monitor for application crashes

Network Monitoring Checklist

Monitor for unexpected bandwidth usage

Ensure network devices are up

Monitor which ports are open

Monitor client website availability

Basic Security Monitoring Checklist

Identify if Windows Firewall has been turned off

Identify if antivirus and security tools are installed and/or running on an endpoint

Monitor for unintegrated AV / EDR threats detected

Monitor for failed user logon attempts

Monitor for the creation, elevation, or removal of users on an endpoint

Identify if the drives on an endpoint are encrypted/unencrypted

Monitor backup failures (Ninja Data Protection)

Monitor backup failures (other backup vendors)

4 Keys to Leveling-up Your Monitoring

Ticketing & Alerting Best Practices

Looking for More Monitoring Ideas?

See Kelvin Tegelaar's excellent series on remote monitoring using PowerShell. He covers how to monitor everything from network traffic to Active Directory health to Office 365 failed logins, Shodan results, and more. Best of all, he shares PowerShell scripts that are designed to be RMM agnostic.

We regularly feature his blog posts along with plenty of additional tools and resources in our weekly MSP Bento newsletter. Subscribe now to get the latest edition along with a special list of the most popular tools and resources we've shared.

Author Peter Bretton is product marketing manager at NinjaRMM. Read more guest blogs from NinjaRMM here.