One Storage Account Container to store information about logs consumed by the Elastic Agent.Īzure Diagnostic settings allow you to export metrics and logs from a source service, or resource, to one destination for analysis and long-term storage.One or more Event Hub to store in-flight logs exported by Azure services and make them available to Elastic Agent.One or more Diagnostic setting to export logs from Azure services to Event Hubs.You can use our hosted Elasticsearch Service on Elastic Cloud, which is recommended, or self-manage the Elastic Stack on your own hardware.īefore using the Azure integration you will need: You need Elasticsearch for storing and searching your data and Kibana for visualizing and managing it. Log data streams collected by the Azure Logs integration include Activity, Platform, Active Directory (Sign-in, Audit, Identity Protection, Provisioning), and Spring Cloud logs. Logs help you keep a record of events that happen on your Azure account. The Azure Logs integration collects logs. Send Azure Activity logs to Elastic to track and visualize when your virtual machinesįail to start due to an exceed quota limit. Or, perhaps you want to better plan your Azure capacity. Then, set up a new rule in the Elastic Observability Logs app to alert you when the number of failed sign-in attempts exceeds a certain threshold. You can then visualize that data in Kibana, create alerts to notify you if something goes wrong, and reference data when troubleshooting an issue.įor example, if you wanted to detect possible brute force sign-in attacks, youĬould install the Azure Logs integration to send Azure sign-in logs to Elastic. The Azure Logs integration collects logs for specific Azure services like Azure Active Directory (Sign-in, Audit, Identity Protection, and Provisioning logs), Azure Spring Cloud, Azure Firewall, and several others using the Activity and Platform logs. Quick start: Get application traces into the Elastic Stack.Quick start: Get logs, metrics, and uptime data into the Elastic Stack.See the integrations quick start guides to get started:
0 kommentar(er)
