az monitor log-analytics workspace table search-job
Manage tables for log analytics workspace search results table.
Commands
| Name | Description | Type | Status |
|---|---|---|---|
| az monitor log-analytics workspace table search-job cancel |
Cancel a log analytics workspace search results table query run. |
Core | GA |
| az monitor log-analytics workspace table search-job create |
Create a Log Analytics workspace search results table. The table name needs to end with '_SRCH'. |
Core | GA |
az monitor log-analytics workspace table search-job cancel
Cancel a log analytics workspace search results table query run.
az monitor log-analytics workspace table search-job cancel [--ids]
[--name]
[--resource-group]
[--subscription]
[--workspace-name]Examples
Cancel a log analytics workspace search results table query run.
az monitor log-analytics workspace table search-job cancel --resource-group MyResourceGroup --workspace-name MyWorkspace -n MyTable_SRCHOptional Parameters
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
The name of the table.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
The name of the workspace.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az monitor log-analytics workspace table search-job create
Create a Log Analytics workspace search results table. The table name needs to end with '_SRCH'.
az monitor log-analytics workspace table search-job create --end-search-time
--name
--resource-group
--search-query
--start-search-time
--workspace-name
[--limit]
[--no-wait]
[--retention-time]
[--total-retention-time]Examples
Create a Log Analytics workspace search result table.
az monitor log-analytics workspace table search-job create --resource-group MyResourceGroup --workspace-name MyWorkspace -n MyTable_SRCH --retention-time 45 --search-query "Heartbeat | where SourceSystem != '' | project SourceSystem" --limit 1000 --start-search-time "Sat, 28 Aug 2021 05:29:18 GMT" --end-search-time "Sat, 28 Aug 2021 08:29:18 GMT"Required Parameters
Datetime format. Format: date (yyyy-mm-dd) time (hh:mm:ss.xxxxx) timezone (+/-hh:mm).
Name of the table. The table name needs to end with _SRCH.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Search job query.
Datetime format. Format: date (yyyy-mm-dd) time (hh:mm:ss.xxxxx) timezone (+/-hh:mm).
Name of the Log Analytics Workspace.
Optional Parameters
Limit the search job to return up to specified number of rows.
Do not wait for the long-running operation to finish.
The table retention in days, between 4 and 730. Setting this property to -1 will default to the workspace retention.
The table total retention in days, between 4 and 2556. Setting this property to -1 will default to table retention.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
