Azure Monitor
An Azure service that is used to collect, analyze, and act on telemetry data from Azure and on-premises environments.
3,517 questions
0 answers
How do I get windows firewall logs my workspace?
I have a W11 endpoint, not a VM btw. I deployed AMA through Intune. AMA is running fine. My workspace is only showing Heartbeat logs for the endpoint. I need FW logs. I made sure public, private & domain profiles are enabled on my endpoint. I made…
asked 2025-03-11T19:02:46.3033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(38.4, 78%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFS%3C/text%3E%3C/svg%3E)
F S
0
Reputation points
edited a comment 2025-03-20T23:57:56.1+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(38.4, 72%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENP%3C/text%3E%3C/svg%3E)
Naveena Patlolla
1,130
Reputation points Microsoft External Staff
1 answer
What's the purpose of 'istroubleshootingallowed' in the schema of an Azure Log Analytics table?
Using Bicep to update the tables in Azure Log Analytics also changes the value of a property called istroubleshootingallowed in the schema of the table. Namely, it changes to false and can't be changed to anything else, as shown in this GitHub issue.…
asked 2025-03-14T14:05:40.0366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(275.2, 91%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EL%3C/text%3E%3C/svg%3E)
lmp
5
Reputation points
commented 2025-03-20T21:53:52.3633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(140.8, 77%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESR%3C/text%3E%3C/svg%3E)
Srinivasa Reddy Jaggavarapu
15
Reputation points Microsoft External Staff
1 answer
Enabling log ingest and log query via Private Endpoint
Hi there, We are trying to enable private log ingestion and log query for log analytics workspace. When we enable private only mode or security perimeter mode with private access pointing to Azure Monitor Private Link Scopes, we see that logs(ex. Azure…
asked 2025-03-12T05:42:54.25+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(140.8, 25%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMA%3C/text%3E%3C/svg%3E)
M, Akhil
20
Reputation points
edited an answer 2025-03-20T16:34:24.6466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(297.6, 79%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMJ%3C/text%3E%3C/svg%3E)
Madugula Jahnavi
170
Reputation points Microsoft External Staff
1 answer
Why is the Microsoft Security Alerts history not visible in Azure Portal?
I received a security alert in my email, but when accessing the Azure Portal three hours later, the alert is not visible. I understand that resolved alerts clear in one hour, but I'm looking for the history to show previous alerts. Is there a way to view…
asked 2025-03-18T19:00:19.89+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(76.8, 15%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGJ%3C/text%3E%3C/svg%3E)
Glenn Johnson
0
Reputation points
commented 2025-03-20T16:06:07.7133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 20%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPR%3C/text%3E%3C/svg%3E)
Pranay Reddy Madireddy
2,565
Reputation points Microsoft External Staff
0 answers
Migrate from Application Insights instrumentation keys to connection strings
Even after having developer support plan we are unable to create a support request. This is frustrating. ISSUE: We received an email to Migrate from Application Insights instrumentation keys to connection strings. We need help on this to migrate our…
asked 2025-03-20T14:02:48.4366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(224.00000000000003, 88%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPN%3C/text%3E%3C/svg%3E)
Pranab Nath
0
Reputation points
commented 2025-03-20T15:16:28.98+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 63%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAG%3C/text%3E%3C/svg%3E)
Ashok Gandhi Kotnana
4,550
Reputation points Microsoft External Staff
1 answer
Can we change or rename Log analytics workspace name
Can we change or rename log analytics workspace name
asked 2023-08-03T10:31:55.0333333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 50%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMB%3C/text%3E%3C/svg%3E)
Manisha Balid
20
Reputation points
commented 2025-03-20T15:07:43.4033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(230.39999999999998, 76%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EEP%3C/text%3E%3C/svg%3E)
Ethan Phelps
5
Reputation points
2 answers
Custom Text Log DCR not Ingesting
Hi, I am struggling to determine why my Custom text DCR is not ingesting from a Linux box. I have tried just about every guide and troubleshooting site and still am not able to determine why this is not working. When ingesting the desired log file from a…
asked 2025-03-12T14:23:04.82+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 71%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECF%3C/text%3E%3C/svg%3E)
Conradie, Francois F
0
Reputation points
commented 2025-03-20T12:15:21.2633333+00:00
Madugula Jahnavi
170
Reputation points Microsoft External Staff
3 answers
CPU Spikes and Web App Shutdown Issues
Twice a day, during peak times, the CPU spikes, causing the web app to shut down and restart. Additionally, Application Insights is enabled, but it does not display any data regarding this issue.
asked 2025-03-13T01:16:58.9333333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(166.4, 44%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENS%3C/text%3E%3C/svg%3E)
Nilay Shah
0
Reputation points
answered 2025-03-20T10:47:50.2833333+00:00
Nilay Shah
0
Reputation points
1 answer
Receiving a bad request - The application could not be found error when creating a Monitor Scheduled Query Rule via Terraform
Hi All, I am using Terraform to deploy my Azure resources. I have recently started receiving an error when deploying resources using azurerm_monitor_scheduled_query_rules_alert_v2. I am getting the following error: Error: creating or updating Monitor…
asked 2025-03-09T20:00:25.5066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(112.00000000000001, 27%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGH%3C/text%3E%3C/svg%3E)
Garrick Hensberg
5
Reputation points
commented 2025-03-20T07:57:49.98+00:00
Garrick Hensberg
5
Reputation points
1 answer
how the Azre monitor alerts scope changes affects the environment
hello, i have 2 alerts which scoped to synapse analytics (no vnet integration setup). we have changed to new synapse analytics with vnet integration enabled.i want to change the scope for the alerts to new synapse analytics. is it affect the environment?…
asked 2025-03-12T15:29:10.83+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(3.2, 98%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAG%3C/text%3E%3C/svg%3E)
ANKIT GHENGE
110
Reputation points
commented 2025-03-20T06:06:50.25+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(284.8, 31%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVP%3C/text%3E%3C/svg%3E)
Vinod Pittala
975
Reputation points Microsoft External Staff
0 answers
Migrate to Azure Storage lifecycle management from diagnostic settings storage retention
I have two subscriptions having about 40 resource groups altogether, with some diagnostic settings enabled and some disabled, which I want to migrate from diagnostic settings storage retention to Azure Storage lifecycle management. I have read the…
asked 2025-03-17T14:36:29.75+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(198.4, 85%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAO%3C/text%3E%3C/svg%3E)
Adewuni Olufunso
20
Reputation points
edited the question 2025-03-20T05:35:24.8266667+00:00
Vinod Pittala
975
Reputation points Microsoft External Staff
0 answers
Azure monitor agent's AMACOREAGENT consumes too much memory
We have bunch of Rocky 8 VMs where AMA is installed. We noticed in some of our servers amacoreagent and agentlauncher daemons allocates/eats up too much VIRT memory when checked using top -p command. Staggering 22TB !! Thats very alarming. Is it…
asked 2025-03-20T04:14:25.5533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(60.8, 55.00000000000001%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
Mohammed Thahif BK
346
Reputation points Microsoft Employee
asked 2025-03-20T04:14:25.5533333+00:00
Mohammed Thahif BK
346
Reputation points Microsoft Employee
1 answer
Azure Internet connection.
I'm deploying Azure SCOM MI instance. while creating SCOM MI at the validation check it gives error below even through we have outbound internet connection working. Internet connectivity Failed Internet connectivity test failed. Required endpoints…
asked 2025-03-06T08:09:10.65+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 17%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
AzurePro
40
Reputation points
edited an answer 2025-03-19T18:34:48.1933333+00:00
Srinivasa Reddy Jaggavarapu
15
Reputation points Microsoft External Staff
1 answer
One of the answers was accepted by the question author.
The eventGridEventProperties_data_ObjectName_s property from Azure Key Vault is not appearing in the AzureDiagnostics log analytics query.
The eventGridEventProperties_data_ObjectName_s property in KQL for Log Analytics is not appearing. The diagnostics settings for Key Vault are configured as shown below, but only a few properties related to Key Vault operations are being reflected in Log…
asked 2024-12-19T13:12:13.6133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 26%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMY%3C/text%3E%3C/svg%3E)
Murarisetty Yamuna
140
Reputation points
commented 2025-03-19T17:17:22.69+00:00
Murarisetty Yamuna
140
Reputation points
2 answers
Can't delete Data Collection Endpoint
I had an Azure Monitor Private Link Scope and Data Collection Endpoint associated with it. They were in the same group. I was deleting this resource group. So AMPLS was deleted but for some reason the endpoint not. The association with AMPLS still exists…
asked 2025-03-05T15:04:26.96+00:00
Aleh Kamisarau
10
Reputation points
commented 2025-03-19T16:28:59.6066667+00:00
Madugula Jahnavi
170
Reputation points Microsoft External Staff
1 answer
application insights suddenly stopped recording/showing collected data
Since around 22 UTC on March 18, 2025, my application insights stopped displaying and/or recording data from my cloud service without me making any changes to either applications insights or the cloud service. The cloud service is working properly and…
asked 2025-03-19T00:39:02.6266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(96, 95%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJL%3C/text%3E%3C/svg%3E)
Janosch Lenzi
0
Reputation points
commented 2025-03-19T10:02:35.6266667+00:00
Janosch Lenzi
0
Reputation points
1 answer
OMS to AMA Migration – Redirecting Syslog Data to a Custom Table with DCR
We are in the process of migrating from OMS to Azure Monitor Agent (AMA) and have encountered challenges in redirecting Syslog data to a custom table using Data Collection Rules (DCR).Current Setup: Logs are currently being ingested into the default…
asked 2025-03-12T17:07:34.0166667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(19.2, 96%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EH%3C/text%3E%3C/svg%3E)
heena
0
Reputation points
commented 2025-03-18T18:25:15.57+00:00
Pranay Reddy Madireddy
2,565
Reputation points Microsoft External Staff
1 answer
One of the answers was accepted by the question author.
SQL Monitoring
Hi Experts, Pls guide if Azure Monitor can monitor SQL MI SQL Database SQL on Azure VM SQL on VM using ARC If yes , please share some reference articles , documents
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(192, 60%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EV%3C/text%3E%3C/svg%3E)
1 answer
Unable to fetch data from VMComputer table in Log Analytics Workspace - Azure Monitor Agent
Unable to fetch data from VMComputer table in Log Analytics Workspace - Azure Monitor Agent I am unable to fetch data from the VMComputer table in our Log Analytics Workspace, even though the table is already added and visible. Data Collection Rules…
asked 2025-03-18T11:43:48.94+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(240, 69%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESR%3C/text%3E%3C/svg%3E)
Sajun R P Desi
0
Reputation points
answered 2025-03-18T12:59:52.95+00:00
Stanislav Zhelyazkov
26,936
Reputation points MVP
1 answer
Windows AzureMonitorAgent not sending heartbeat or any logs or any metrics.
Many of our Windows Machines are not reporting their logs (to log analytics workspace) or metrics (to Azure monitor) after they were configured to use Azure Monitor agent for Windows. We can see that the process “amaexthealthmonitor.exe” running but it…
asked 2025-03-06T00:26:54.5233333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 28.999999999999996%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBT%3C/text%3E%3C/svg%3E)
Binoy Thomas
5
Reputation points
commented 2025-03-18T12:50:13.99+00:00
Ashok Gandhi Kotnana
4,550
Reputation points Microsoft External Staff