Introduction
Azure Monitor collects log data and stores it in tables. Administrators use Log Analytics in the Azure portal to configure their input data sources and conduct queries for their Azure Monitor logs.
Queries provide insights into system infrastructure, such as assessing system updates and troubleshooting operational incidents. To retrieve and consolidate data in the repository, administrators can create Kusto Query Language (KQL) queries.
In this module, suppose you're a member of a team of administrators. You're responsible for understanding how to work with Azure Monitor and Log Analytics to implement queries and evaluate your log data.
Learning objectives
In this module, you learn how to:
- Identify the features and usage cases for Log Analytics in Azure Monitor.
- Create a Log Analytics workspace in the Azure portal.
- Use KQL to structure a Log Analytics query and review results.
Skills measured
The content in the module helps you prepare for Exam AZ-104: Microsoft Azure Administrator. The module covers the following course concept requirements:
Monitor and back up Azure resources (10–15%)
- Query and analyze logs
Prerequisites
None.