Log Analytics

Official Documentation

Homepage
Pricing

Homepage Pricing

Service Description

Log Analytics monitors cloud and on-premises environments to maintain availability and performance. Get insight across workloads and systems to maintain availability and performance. Learn how to collect, analyze, and act on data with our quickstarts, tutorials and samples.

Getting Started

Azure Log Analytics

9/5/2017, Video, 0:13:02

Evgeny Ternovsky joins Scott Hanselman to talk about Azure Log Analytics and its upgraded search platform, including a dedicated query experience and a powerful new query...
Combating Corporate Security Threats: Getting Started with Log Analytics

10/11/2016, Video, 0:16:50

For a Guide to a Modern IT Environment, click: http://aka.ms/GuideModernIT. With the increase in cyber attacks over the past two years, organizations need intelligence based...
The improved Azure Log Analytics: A powerful query language with machine learning, and more

9/30/2017, Video, 1:06:21

Azure Log Analytics is now offering new interactive and expressive query language and advanced analytics portal. The service is now powered by the same highly scalable and low...
Explore Microsoft Azure monitoring and diagnostics

9/28/2016, Video, 1:08:06

Learn about the core capabilities of Microsoft Azure Monitoring applicable to all Azure resources. Learn about the new capabilities of Azure monitoring in the Portal, ranging...

Latest Content

Date	Title
8/22/2018	8/22/2018 Experiencing Data Access Issue in Azure and OMS portal for Log Analytics in South East Australia- 08/22 – Mitigated Final Update: Wednesday, 22 August 2018 02:51 UTCWe've confirmed that all systems are back to normal with no customer impact as of 08/22, 01:00 UTC. Our logs show the incident started on 08/21,...
8/21/2018	8/21/2018 Experiencing Data Access Issue in Azure and OMS portal for Log Analytics in East US – 08/21 – Resolved Final Update: Tuesday, 21 August 2018 04:33 UTCWe've confirmed that all systems are back to normal with no customer impact as of 08/21, 03:35 UTC. Our logs show the incident started on 08/21,...
8/16/2018	8/16/2018 Experiencing Data Access Issue in Azure and OMS portal for Log Analytics – 08/16 – Resolved Final Update: Thursday, 16 August 2018 00:52 UTCWe've confirmed that all systems are back to normal with no customer impact as of 08/16 00:00 UTC. Our logs show the incident started on 08/15...
8/13/2018	8/13/2018 Experiencing Data Latency Issue in Azure and OMS portal for Log Analytics in South UK Region- 08/13 – Investigating Initial Update: Monday, 13 August 2018 13:03 UTCWe are aware of issues within Log Analytics and are actively investigating. Some customers may experience data latency in South UK region.. Work...
8/11/2018	8/11/2018 Experiencing Data Access Issue in Azure and OMS portal for Log Analytics – 08/11 – Resolved Final Update: Saturday, 11 August 2018 01:48 UTCWe've confirmed that all systems are back to normal with no customer impact as of 2018-08-10 00:56 UTC. Our logs show the incident started...
8/9/2018	8/9/2018 Azure Log Analytics Service Map Planning and Pre-reqs My grandfather said two things: An ounce of prevention is worth a pound of manure Death and taxes are part of life Planning out a deployment is a good thing. My best friend would say "No one...
8/2/2018	8/2/2018 System Center Operations Manager Management Pack to configure Operations Management Suite Service Updates The Operations Management Suite connection onboarding wizard in System Center Operations Manager is now updated to communicate with the new APIs.
8/1/2018	8/1/2018 Kusto Queries I'll be posting more in GitHub. My first post is related to Kusto Queries (or Azure Log Analytics queries) here is the link: https://github.com/jorodas/KustoQueries/blob/master/Queries.md Enjoy!
8/1/2018	8/1/2018 Log Analytics workspaces must be created in the Azure portal Service Updates Starting July 29, new Log Analytics workspaces can be created only in the Azure portal.
7/31/2018	7/31/2018 OMS Linux Agent July 2018 release now available Service Updates The OMS Linux Agent July 2018 release is now available. It contains many stability and installation improvements, plus introduces support for Ubuntu 18.04.
7/28/2018	7/28/2018 Experiencing Data Access Issue in Azure and OMS portal for Log Analytics – 07/28 – Resolved Final Update: Saturday, 28 July 2018 12:31 UTCWe've confirmed that all systems are back to normal with no customer impact as of 07/28, 12:00 UTC. Our logs show the incident started on 07/28,...
7/24/2018	7/24/2018 Free course on the Log Analytics query language (KQL) now available Service Updates Learn KQL (the query language used in Application Insights and Log Analytics). Go from a beginner to a pro in just a few hours through a free, exercise-driven course.

more...

Web Content

Log Analytics Documentation

1. Overview
     1.1. What is Log Analytics?
2. Quickstarts
     2.1. Collect - Azure VMs
     2.2. Collect - Hybrid Linux computer
     2.3. Collect - Hybrid Windows computer
3. Tutorials
     3.1. 1 - Analyze data
     3.2. 2 - Visualize data
     3.3. 3 - Alert on data
4. Samples
     4.1. Azure PowerShell
5. Concepts
     5.1. OMS portal transition
          5.1.1. Overview
          5.1.2. Common questions
     5.2. Log Analytics FAQ
     5.3. Data ingestion time
     5.4. Data security
     5.5. Manage access
     5.6. Agents overview
     5.7. Monitor hybrid environments
     5.8. Features for service providers
     5.9. Log Search
          5.9.1. Log searches overview
          5.9.2. Log Search portals
6. How-to guides
     6.1. Create workspace
          6.1.1. Use Azure portal
     6.2. Collect data
          6.2.1. Connected sources
               6.2.1.1. Windows agents
               6.2.1.2. VM Extension for Windows
               6.2.1.3. VM Extension for Linux
               6.2.1.4. Azure resources
               6.2.1.5. Azure PaaS resources
               6.2.1.6. Diagnostic or log data from Azure storage
               6.2.1.7. Operations Manager
               6.2.1.8. Configuration Manager
               6.2.1.9. OMS Gateway
          6.2.2. Data sources
               6.2.2.1. Data sources overview
               6.2.2.2. Windows events
               6.2.2.3. Custom JSON data
               6.2.2.4. Collectd performance data
               6.2.2.5. Nagios and Zabbix alerts
               6.2.2.6. Syslog
               6.2.2.7. Performance counters
               6.2.2.8. Linux application performance
               6.2.2.9. IIS logs
               6.2.2.10. Custom logs
               6.2.2.11. Custom fields
               6.2.2.12. Data collector API
               6.2.2.13. Data Collector API Pipeline example
     6.3. Query data
          6.3.1. Language documentation
               6.3.1.1. Transition from legacy language
               6.3.1.2. Language reference
               6.3.1.3. Get started
                    6.3.1.3.1. Get started with Analytics portal
                    6.3.1.3.2. Get started with queries
                    6.3.1.3.3. Search queries
               6.3.1.4. Lessons
                    6.3.1.4.1. String operations
                    6.3.1.4.2. Date and time operations
                    6.3.1.4.3. Aggregation functions
                    6.3.1.4.4. Advanced aggregations
                    6.3.1.4.5. Joins
                    6.3.1.4.6. JSON and data structures
                    6.3.1.4.7. Advanced query writing
                    6.3.1.4.8. Charts and diagrams
          6.3.2. Cross-resource searches
          6.3.3. Take action from search results
          6.3.4. Use computer groups
          6.3.5. Flow connector
          6.3.6. Log Search API
     6.4. Analyze data
          6.4.1. Dashboards
          6.4.2. View Designer
               6.4.2.1. Overview
               6.4.2.2. Tile reference
               6.4.2.3. Visualization part reference
               6.4.2.4. Filters
          6.4.3. Power BI
     6.5. Create alerts
          6.5.1. Understanding log alerts
          6.5.2. Create log alert
          6.5.3. Webhook actions for log alerts
          6.5.4. Create a log alert with a Resource Manager template
          6.5.5. Copy alerts from Log Analytics to Azure Alerts
     6.6. Manage
          6.6.1. Personal data handling
          6.6.2. Agent management
          6.6.3. Manage workspace cost
               6.6.3.1. Data volume and retention
               6.6.3.2. Monitor usage
          6.6.4. Delete a workspace
     6.7. Troubleshoot
          6.7.1. Troubleshoot VM Extension
          6.7.2. Troubleshoot Linux agent
     6.8. Use solutions
          6.8.1. Install solutions
          6.8.2. Solutions inventory
          6.8.3. Target solutions
          6.8.4. Solution guides
               6.8.4.1. Azure activity logs
                    6.8.4.1.1. Analytics
                    6.8.4.1.2. Collect across subscriptions
               6.8.4.2. AD Assessment
               6.8.4.3. AD Replication Status
               6.8.4.4. Agent Health
               6.8.4.5. Alert management
               6.8.4.6. Application Insights Connector
               6.8.4.7. Azure SQL Analytics
               6.8.4.8. Azure Web Apps Analytics
               6.8.4.9. Capacity and performance
               6.8.4.10. Change Tracking
               6.8.4.11. Containers
               6.8.4.12. DNS Analytics
               6.8.4.13. IT Service Management Connector
                    6.8.4.13.1. IT Service Management connections
               6.8.4.14. Key Vault
               6.8.4.15. Logic Apps B2B Messages
                    6.8.4.15.1. Logic Apps B2B Messages solution
                    6.8.4.15.2. Logic Apps B2B custom tracking schema
               6.8.4.16. Networking Analytics
               6.8.4.17. Network Performance Monitor
                    6.8.4.17.1. Solution overview
                    6.8.4.17.2. Performance Monitor
                    6.8.4.17.3. Service Endpoint
                    6.8.4.17.4. ExpressRoute
                    6.8.4.17.5. Pricing
               6.8.4.18. Office 365
               6.8.4.19. SCOM Health Check
               6.8.4.20. Security Audit
               6.8.4.21. Service Fabric with Azure PowerShell
                    6.8.4.21.1. Service Fabric with Azure Resource Manager
               6.8.4.22. Service Map
                    6.8.4.22.1. Use
                    6.8.4.22.2. Configure
                    6.8.4.22.3. Integration with Operations Manager
               6.8.4.23. SQL Health Check
               6.8.4.24. Surface Hub
               6.8.4.25. Update Management
               6.8.4.26. VMware
               6.8.4.27. Windows Analytics
                    6.8.4.27.1. Update Compliance
                    6.8.4.27.2. Upgrade Readiness
               6.8.4.28. Wire Data
     6.9. Develop
          6.9.1. PowerShell cmdlets
          6.9.2. Resource Manager templates
          6.9.3. Alert API
7. Reference
     7.1. Language reference
     7.2. Azure PowerShell
     7.3. REST
8. Resources
     8.1. Azure Roadmap
     8.2. Pricing
     8.3. Pricing calculator
     8.4. Service updates
     8.5. Windows Analytics

Web Pages

Content	Type

Online Training Content

Date	Title
5/31/2017	Azure209x - Managing Azure Workloads Managing Azure Workloads will help the IT professional understand some of the tools that can be used to manage Azure workloads. The course starts by looking at Log Analytics. Log Analytics is a service in Operations Management Suite (OMS) that helps you collect and analyze data generated by resources in your cloud and on-premises environments. It gives...

Tools

Tool	Description	Author

Videos

Date	Title	Length
5/6/2018	Continuous Monitoring for DevOps with Azure Application Insights & Log Analytics Continuous monitoring through your entire DevOps life cycle can lead to better collaboration between Dev and Ops and help you optimize the user experience every step of the way, leaving more time for your next big innovation. Find out...	1:23:29
5/6/2018	Secure and manage your Azure resources In Azure, Security & Management are a joint responsibility between Microsoft and our customers. Microsoft recommends that every production virtual machine and application is secure and well managed with security, backup and monitoring...	1:33:22
5/6/2018	Azure Messaging and event based architecture in the real world: Lessons learned rebuilding Microsoft's Supply chain on Azure Serverless The Software Engineers in Microsoft's Devices Supply Chain Engineering have replaced their on-premise B2B integration platform with multiple Azure components all working together to create a fully cloud native scalable messaging...	1:33:22
4/25/2018	How to use Azure Monitor for Azure Government YT: Microsoft Azure In this episode of the Azure Government videos series, we explore Azure Monitor on Azure Government. What is Azure Monitor? What are its main features and capabilities? What sources are relevant? We answers all these questions and more...	0:16:47
11/30/2017	What's changed in Azure Log Analytics? Channel 9 Azure Log Analytics recently got a new query language, and your workspace needs to be upgraded to use it. This video walks through all of the changes you need to consider when your Log Analytics workspace is upgraded.	0:05:08
11/1/2017	Azure Friday: Get Intelligent Insights for Improving Azure SQL Database Performance YT: Microsoft Azure Veljko Vasic shows Seth Juarez how Azure SQL Database uses built-in intelligence to continuously monitors database usage so that it can detect disruptive events that cause poor performance. Once detected, a detailed analysis is...	0:10:02
11/1/2017	Get Intelligent Insights for Improving Azure SQL Database Performance Azure Friday Veljko Vasic shows Seth Juarez how Azure SQL Database uses built-in intelligence to continuously monitors database usage so that it can detect disruptive events that cause poor performance. Once detected, a detailed analysis is...	0:10:00
9/30/2017	The improved Azure Log Analytics: A powerful query language with machine learning, and more YT: Ignite Azure Log Analytics is now offering new interactive and expressive query language and advanced analytics portal. The service is now powered by the same highly scalable and low latency data store used by Azure Application Insights...	1:06:21
9/11/2017	Enterprise HDInsight Monitoring with Operations Management Suite Data Exposed This week's episode of Data Exposed Scott welcomes Ashish Thapliyal to the show. Ashish is a Senior PM on the HDInsight team and is in the studio today to discuss monitoring HDInsight for the enterprise with the Operations Management...	0:26:58
9/5/2017	Azure Friday: Azure Log Analytics YT: Microsoft Azure Evgeny Ternovsky joins Scott Hanselman to talk about Azure Log Analytics and its upgraded search platform, including a dedicated query experience and a powerful new query language. Already available in Application Insights, this...	0:13:03

Page 1 of 2