Real-time analytics on data with Azure Service Bus and Azure Data Explorer

This article describes how to use Azure Data Explorer and Azure Service Bus to enhance an existing message broker architecture with near real-time analytics. It's intended for IT administrators, cloud architects, and operations and monitoring teams.

Architecture

Download a Visio file of this architecture.

The Grafana logo is a trademark of Raintank, Inc., dba Grafana Labs. No endorsement is implied by the use of this mark.

The diagram shows two data paths. The main path, which is represented by solid lines and boxes 1 through 5, is the ingestion of data from various sources into a service bus, where it's processed by a stream analytics job and stored in a SQL database. The second path, which is represented by dotted lines and boxes, shows the data flowing from the service bus to an Azure Data Explorer cluster, where it can be queried and analyzed via Kusto Query Language (KQL).

Service Bus is used to implement a Queue-Based Load Leveling pattern for a transactional application.

Azure Data Explorer is used to run analytics in near real-time and expose data via either APIs or direct queries to, for example, Power BI, Azure Managed Grafana, or Azure Data Explorer dashboards.

Dataflow

The data source in the architecture is an existing Online Transaction Processing (OLTP) application. Service Bus is used to asynchronously scale out the application.

1. The OLTP application (the data source), hosted in Azure App Service, sends data to Service Bus.

2. Data flows from Service Bus in two directions:

   1. In the existing OLTP application flow, it triggers a function app to store data in Azure SQL Database, Azure Cosmos DB, or a similar operational database.

   2. In the near real-time analytics flow, it triggers an orchestration flow.

3. The orchestration flow sends data to Azure Data Explorer for near real-time analytics. The flow can use either:

   • A function app that uses SDKs to send data in micro batches or that uses managed streaming ingestion support provided by Azure Data Explorer when it's configured for streaming ingestion.
   • A polling service, like an application that's hosted on Azure Kubernetes Service (AKS) or an Azure VM, that sends data to Azure Data Explorer in micro batches. This option doesn't require configuring Azure Data Explorer streaming ingestion.

4. Azure Data Explorer processes the data, by using schema mapping and update policies, and makes it available through an API, SDK, or connector for interactive analytics or reporting. Optionally, Azure Data Explorer can also ingest or reference data from other data sources, like SQL Database or Azure Data Lake Storage.

5. Applications, custom services, or reporting services like Azure Data Explorer dashboards, Power BI, and Azure Managed Grafana can query the data in Azure Data Explorer in near real-time.

Components

• App Service enables you to build and host web apps, mobile back ends, and RESTful APIs in the programming language of your choice without managing infrastructure.
• Service Bus provides reliable cloud messaging as a service.
• SQL Database is a fully managed SQL database that's built for the cloud. It provides automatic updates, provisioning, scaling, and backups.
• Azure Cosmos DB is a globally distributed, multimodel database for applications of any scale.
• Azure Functions is an event-driven serverless compute platform. With Functions, you can deploy and operate at scale in the cloud and use triggers and bindings to integrate services.
• AKS is a highly available, highly secure, and fully managed Kubernetes service for application and microservices workloads.
• Azure Data Explorer is a fast, fully managed, and highly scalable data analytics service for real-time analysis of large volumes of data that streams from applications, websites, IoT devices, and more.
• Data Lake Storage, built on Azure Blob Storage, provides massively scalable data lake functionality.
• Power BI can help you turn your data into coherent, visually immersive, interactive insights.
• Azure Managed Grafana is a fully managed service that enables you to deploy Grafana without spending time on configuration.

Scenario details

Real-time analytics is the process of analyzing data as soon as it's generated to get insights into the current state of the system. Organizations are increasingly adopting real-time analytics to gain a competitive edge. Near real-time analytics is a variant of real-time analytics that provides insights within seconds or minutes of data generation.

These processes enable organizations to gain insights faster, make better decisions, and respond to changing conditions more effectively. Near real-time analytics can be applied to various domains, like e-commerce, healthcare, manufacturing, and finance. For example, an e-commerce company can use near real-time analytics to monitor customer behavior, optimize pricing, and personalize recommendations.

Many organizations implement near real-time analytics in existing solutions. This solution idea demonstrates how to add near real-time analytics to an existing architecture that's based on a message broker and that's part of an operational OLTP application.

OLTP stands for Online Transaction Processing. It's a type of data processing that manages transaction-oriented applications, typically for data entry and retrieval transactions in a real-time environment. OLTP systems are designed to process small, fast transactions that are frequently financial in nature, like bank transactions or credit card purchases.

Potential use cases

Here are some use cases that illustrate the benefits of near real-time analytics:

• Healthcare providers can track patient outcomes, detect anomalies, and improve quality of care.
• Manufacturing companies can optimize production, reduce waste, and prevent downtime.
• Financial institutions can monitor transactions, detect fraud, manage risk, and ensure compliance with regulations.
• Commerce companies can monitor campaigns and gain insights to support promotion.
• Companies can monitor, optimize, analyze, and forecast supply chains.

Contributors

This article is maintained by Microsoft. It was originally written by the following contributors.

Principal author:

• Shlomo Sagir | Senior Content Developer

Other contributor:

• Mick Alberts | Technical Writer

To see non-public LinkedIn profiles, sign in to LinkedIn.

Next steps

• Azure Service Bus samples
• Azure Data Explorer data ingestion samples

Related resources

• Near real-time lakehouse data processing
• Real-time analytics on big data architecture
• Create personalized marketing solutions in near real time