Events
Mar 17, 9 PM - Mar 21, 10 AM
Join the meetup series to build scalable AI solutions based on real-world use cases with fellow developers and experts.
Register nowDSMAzureBlobStorageLogs
Azure Blob Storage resource logs enriched with data sensitivity context provided by Azure Purview.
| Attribute | Value |
|---|---|
| Resource types | - |
| Categories | - |
| Solutions | LogManagement |
| Basic log | No |
| Ingestion-time transformation | No |
| Sample Queries | - |
| Column | Type | Description |
|---|---|---|
| AccountName | string | The name of the storage account. |
| AggregationCount | long | Number of events that were aggregated into a single entry. |
| AggregationLastEventTime | datetime | The time (UTC) when the last request was received by storage. |
| AuthenticationHash | string | The hash of authentication token. |
| AuthenticationType | string | The type of authentication that was used to make the request. E.g. OAuth, SAS, etc. |
| _BilledSize | real | The record size in bytes |
| CallerIpAddress | string | The IP address of the requester. |
| Category | string | The category of requested operation. |
| CorrelationId | string | The ID that is used to correlate resource logs with data sensitivity logs. |
| _IsBillable | string | Specifies whether ingesting the data is billable. When _IsBillable is false ingestion isn't billed to your Azure account |
| Location | string | The location of storage account. |
| OperationName | string | The type of REST operation that was performed. For example: GetBlob, DeleteBlob. |
| RequesterAppId | string | The Open Authorization (OAuth) application ID that is used as the requester. |
| RequesterObjectId | string | The Open Authorization (OAuth) object ID that is used as the requester. |
| RequesterTenantId | string | The Open Authorization (OAuth) tenant ID that is used as the requester. |
| RequesterUpn | string | The user principal names (UPN) of requestor. |
| ResourceGroup | string | The Resource Group name of the storage account that was accessed. |
| ResourceSubscriptionId | string | The subscription ID (GUID) of the storage account being accessed. |
| SourceSystem | string | The type of agent the event was collected by. For example, OpsManager for Windows agent, either direct connect or Operations Manager, Linux for all Linux agents, or Azure for Azure Diagnostics |
| StatusCode | string | The HTTP status code for the request. If the request is interrupted, this value might be set to Unknown. |
| SumResponseBodySize | long | The sum of packets in responses written by the storage service, in bytes. If request(s) are unsuccessful, this value may be empty. |
| TenantId | string | The Log Analytics workspace ID |
| TimeGenerated | datetime | The time (UTC) when the first request was received by storage. |
| Type | string | The name of the table |
| Uri | string | Uniform resource identifier that is requested. |
| UserAgentHeader | string | The user-agent header value. |
Additional resources
Training
Module
Explore Azure Storage for non-relational data - Training
This content is a part of Explore Azure Storage for non-relational data.