Skip to main content
Operating System Monitoring Windows Monitoring

Monitor Windows servers and endpoints with Domotz

Agentless monitoring over WinRM. No software install on the Windows hosts you watch — the Domotz Collector handles it for the whole network.

Start free trial Talk to a Domotz expert

No credit card required · Deploy in ~15 minutes

Domotz monitors Microsoft Windows servers, workstations, and endpoints over WinRM and SSH — no software install required on the Windows hosts themselves. Use built-in PowerShell scripts to track Windows Update Agent status, services, CPU and memory, Active Directory privileged users, group policies, and audit events. The Domotz Collector runs once per network and reaches every Windows machine you choose to monitor, across 40K+ networks in 190 countries.

Domotz by the numbers

  • $1.50

    per device / month — flat, published, no per-feature tiers

  • 40K+

    networks monitored on Domotz

  • 190

    countries

  • 16

    ways to deploy — Domotz Box, VM, Windows, Linux, NAS, and more

Capabilities

What Domotz monitors on Windows

Pull operational, security, and patching data from any Windows system on the network without installing software on each host. The integration ships with pre-built PowerShell scripts you can use as-is or customize.

  • System health and performance

    CPU usage and saturation (per-core and overall). Memory utilization and pressure. Currently logged-in user sessions. Service status — start, stop, or monitor any Windows service. General OS info: edition, build, uptime, hardware inventory.

  • Patching and updates

    Windows Update Agent (WUA) status. Missing updates broken out by category (security vs. generic) and severity. Patch compliance reporting across the estate. Remote-triggered system reboot when a critical update requires it.

  • Active Directory and identity

    Privileged user counts by AD group. Membership tracking for sensitive groups (Domain Admins, Enterprise Admins, Schema Admins). Alerts on additions or removals. Group Policy Object (GPO) monitoring — track changes and applied policies per system.

  • Security and audit

    Windows Audit Settings status. Security event log monitoring through PowerShell. Endpoint reachable-host validation (for example, VPN tunnel checks from a Windows endpoint). File and configuration drift detection through custom scripts.

  • Remediation from one console

    Issue a reboot command to a Windows system remotely. Trigger Windows update installation. Start, stop, or restart services. Push custom PowerShell commands without RDP or jump hosts.

Agentless architecture

How it works

Windows monitoring with Domotz is agentless from the perspective of the hosts you’re watching. The Domotz Collector — installed once per network on Windows, Linux, NAS, Raspberry Pi, Docker, or 11 other supported platforms — connects to each Windows machine over WinRM (default) or SSH using credentials you provide. PowerShell scripts execute remotely and return structured data to your Domotz dashboard. No software install on the monitored Windows servers or workstations themselves.

All scripts are open and customizable. The Domotz library includes ready-to-use scripts for the capabilities above (and 30+ others), tested against Windows 10, Windows 11, and Windows Server 2016, 2019, 2022, and 2025. You can fork any script, adjust the PowerShell, and deploy your customized version across all monitored hosts in minutes.

Who it’s for

Built for cross-functional teams

  • For internal IT teams

    Track patching, AD privileged group membership, and service health across every Windows server in your environment. Cut helpdesk tickets by spotting service crashes and update failures before users do.

  • For MSPs

    Monitor Windows infrastructure across all client sites from one console. Pre-built scripts cover the most-requested compliance and reporting use cases — WUA status for patching evidence, AD privileged group reports, service uptime per machine.

  • For commercial integrators

    Combine Windows endpoint monitoring with the network-wide visibility you already get from Domotz topology, port status, and device discovery.

Use cases

Use cases

Illustrative scenarios — not attributed customer claims.

  • Verify patch compliance across an MSP’s client base

    An MSP managing 50 client sites runs the WUA monitoring script on every Windows server. Critical missing-update counts are visible in a single dashboard column — sortable, alertable, and exportable for compliance reporting. When Patch Tuesday introduces a critical advisory, the MSP knows within minutes which sites are out of compliance.

  • Catch unauthorized changes to AD privileged groups

    An IT director sets up the AD Privileged Users script to track membership in Domain Admins and Enterprise Admins. When membership changes — additions, removals, or unexpected accounts — Domotz alerts within the next polling cycle. The change is logged and ticketable through ServiceNow, Jira Service Management, Microsoft Teams, or any of the other ITSM integrations Domotz supports.

  • Remote reboot a frozen server without an RDP session

    A help desk technician sees a Windows server stuck after an update. Rather than scheduling a maintenance window for RDP, they trigger the Domotz reboot script from the dashboard. The server reboots, comes back online, and the script reports the state change — no remote desktop session needed.

  • Validate VPN tunnel health from an endpoint

    A remote employee reports the VPN feels unreliable. The IT team uses the Reachable Hosts script on the employee’s Windows laptop to check whether internal hosts are reachable over the tunnel. The script runs every 5 minutes and alerts when reachability drops, giving the team early warning before the user even notices.

Why Domotz

Why Domotz for Windows monitoring

  • Agentless on the monitored hosts.

    No software install on each Windows server or workstation. The Collector lives once per network and uses WinRM to reach every monitored host. Onboarding a new Windows system is a credentials-plus-IP step, not an install rollout.

  • Custom scripts welcomed, not gated.

    Every monitoring script is open PowerShell. Fork it, modify it, push your version. No proprietary scripting language to learn and no vendor approval needed.

  • One platform for monitoring and remediation.

    See the missing update or stuck service — and fix it from the same console. Reboot remotely, install updates, restart services, push PowerShell commands.

  • Trust signals you can take to procurement.

    G2 4.8 across 300+ reviews. SOC 2 Type II and ISO 27001 certified. 3,600+ customers across 190 countries. $1.50 per monitored device per month — flat pricing, no per-feature line items.

FAQ

Frequently asked questions

Common questions about monitoring Windows with Domotz.

  • What protocol does Domotz use to monitor Windows?
    WinRM is the default protocol for PowerShell-based monitoring scripts. SSH is supported for specific scenarios such as reachable-host checks. SNMP is also available for Windows servers configured with the SNMP service, but WinRM is the more capable path for most use cases.
  • Do I need to install software on every Windows host I want to monitor?
    No. The Domotz Collector runs once per network — on Windows, Linux, NAS, Raspberry Pi, Docker, or another supported platform — and reaches every monitored Windows machine over WinRM. The hosts being monitored do not have Domotz software installed on them.
  • Which Windows versions are supported?
    Built-in scripts are tested against Windows 10, Windows 11, and Windows Server 2016, 2019, 2022, and 2025. PowerShell 5.1 or later is recommended. Most scripts also work on older supported versions with minor adjustments.
  • Can Domotz install Windows updates, or only monitor them?
    Both. The Windows Update Agent integration tracks missing updates by category and severity, and Domotz can trigger the install remotely. The integration also supports remote reboot when a critical update requires it.
  • Can I write custom PowerShell scripts beyond the built-in library?
    Yes. Every script in the Domotz library is open and customizable. You can also write your own from scratch — Domotz executes any PowerShell script you point it at and returns structured output to your dashboard.
  • Does Domotz monitor Active Directory?
    Yes — specifically, AD privileged users, group membership changes (Domain Admins, Enterprise Admins, and similar sensitive groups), and Group Policy Objects. The integration is geared toward monitoring sensitive AD state rather than directory replication health.
  • What is the difference between this page and the Domotz Windows Agent page?
    The Windows Agent page covers installing Domotz on a Windows host so that host acts as the Collector for an entire network. This page covers what Domotz can monitor about Windows servers, workstations, and endpoints across the network — once a Collector (running on any supported platform) is in place.

Start monitoring Windows in minutes

Start a free 14-day trial — no credit card required. Most networks are discovered and mapped in 15 minutes. Or schedule 30 minutes with a Domotz expert to walk through Windows monitoring for your specific environment.

Start free trial Talk to a Domotz expert

Ask AI about Domotz Windows Monitoring

Get an unbiased summary from any AI

ChatGPT (opens in new tab) Claude (opens in new tab) Perplexity (opens in new tab) Gemini (opens in new tab)

Ready to operate your network the modern way?

$1.50 per device. 14-day free trial. Under 15 minutes to deploy.

Start Free Trial Talk to Sales