This blog post was co-authored by Vijay Nagarajan, Senior Program Manger and Kiran Madnani, Principal PM Manager, Azure Infrastructure Management
Application Insights is an extensible application performance management (APM) service for web developers on multiple platforms. Customers use Application Insights to monitor live web applications, detect performance anomalies, diagnose issues and to understand usage patterns. In addition to the alerts on application health based on different metrics, you can now monitor e-log files by setting up a query to run at specified intervals and trigger alerts based on the result. For example, let’s say you deployed a new fix for a specific exception and want to make sure it doesn’t surface again. You can now setup an alert to trigger if that exception appears in your Application Insights trace file.
Log Alerts for Application Insights can be accessed from the new Azure Alerts experience. Learn more about Azure Alerts (preview). Create a new alert and specify the target resource to be Application Insights:
Log Analytics customers will find a familiar interface for creating alerts. Much like Log Analytics, log alerts support two types:
Number of Records: Triggers alerts based on the number of records returned for query on
We previously announced the preview of Azure Backup reporting and gave customers the ability to generate their own reports and build customizations using Power BI. Today, we are pleased to let you know that you can leverage the same workflow to build your own Microsoft Operations Management Suite (OMS) monitoring solution for Azure Backup in the upgraded OMS workspace. The OMS monitoring solution allows you to monitor key backup parameters such as backup and restore jobs, backup alerts, and cloud storage usage across Recovery Services vaults and subscriptions. You can then utilize OMS log analytics capabilities to raise further alerts for events that you deem important for the business to be notified of. You could even open tickets through webhooks or ITSM integration using the OMS log analytics capabilities.
Here’s how you do it…
Configuring Diagnostic settings
You can open the diagnostic setting window from the Azure Recovery services vault, or you can open the diagnostic setting window by logging into Azure portal. First, click “Monitor” service followed by “Diagnostic settings” in settings section. You can then specify the relevant Subscription, Resource Group, and Recovery Services Vault. In the Diagnostic settings window, as shown below, you can select “Send data
We heard from several customers that you need a way to view your Azure Security Center alerts in your SIEM solution for a centralized view of your security posture across your organization. Today, we are excited to announce the public preview of a new feature called SIEM Export that allows you to export Azure Security Center alerts into popular SIEM solutions such as Splunk and IBM QRadar. We are continuing to invest in the number of partners we support. This feature is part of our on-going commitment to provide unified security management and protection for your cloud and on-premises workloads.
Security Center uses a variety of detection capabilities to alert you of potential threats to your environment. The alerts can tell you what triggered the alert, what in your environment was targeted, the source of the attack, and if necessary, remediation steps. You also have the flexibility to set up custom alerts to address specific needs in your environment.
Now you can take these alerts from Security Center and integrate them into your own SIEM solutions, so you can quickly view what needs your attention from one management place and take action.
To move your Azure Security Center alerts to a
Today we’re pleased to announce three new Time Series Insights (TSI) explorer capabilities that we think our users are going to love.
First, we are delighted to share that the TSI explorer, the visualization service of TSI, is now generally available and backed by our SLA. Second, we’ve made the TSI explorer more accessible and easier to use for those with visual and fine-motor disabilities. And finally, we’ve made it easy to export aggregate event data to other analytics tools like Microsoft Excel.
Now that the TSI explorer is generally available, users will notice that the explorer is backed by TSI’s service level agreement (SLA), and we’ve removed the preview moniker from the backsplash when the explorer is loading. We have many customers using TSI in production environments and we’re thrilled to offer them the same SLA that backs the rest of the product. The ActionPoint IoT-PREDICT solution is a great example of one of those customers using the TSI explorer to enable their customers to explore and analyze time series data quickly. Check out their solution below.
There are no limits to what people can achieve when technology reflects the diversity of everyone who uses it. Transparency, accountability, and