This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(227.2, 9%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMQ%3C/text%3E%3C/svg%3E)
I am creating Log analystics workspace, resource group, Azure arc, Data Collection rules and creating alerts.
I have installed latest version of Az modules on my PC, I am successfully able to create Workspace, resource group , On-board Azure ARC on windows machine and Data collection rules but I am unable to create Alerts. I have investigated and found that when Az.Monitor with version other than 1.4.1 installed on machine then the alerts are not creating giving error : Failed to create rule source with exception: The term 'New-AzScheduledQueryRuleSource' is not recognized as the name of a cmdlet, function, script file, or operable program. Check the spelling of the name, or if a path was included, verify that the path is correct and try again.
After that I uninstalled Az.Monitor version 4.2.1 and install the version 1.4.1 then I am able to create the Alerts but unable to create Data collection rules. can you please help me out that which version of Az.Monitor allow both the Data collection rules and alert creation.
Giving below error while creating Alert:
Alert query: Event | where EventLog == "Security" and Source == "Microsoft-Windows-Eventlog" and EventID == "1102"
Failed to create rule source with exception: The term 'New-AzScheduledQueryRuleSource' is not recognized as the name of
a cmdlet, function, script file, or operable program. Check the spelling of the name, or if a path was included, verify
that the path is correct and try again.
+ CategoryInfo : NotSpecified: (:) [Write-Error], WriteErrorException
+ FullyQualifiedErrorId : Microsoft.PowerShell.Commands.WriteErrorException
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(86.4, 24%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETS%3C/text%3E%3C/svg%3E)
This command no longer exists on Az.Monitor You'll need to change your command to use the updated commands, currently these are listed: https://learn.microsoft.com/en-gb/powershell/module/az.monitor/new-azscheduledqueryrule?view=azps-11.3.0