add a caution note about resources created by traffic analytics

halkazwini · halkazwini · commit a714fdc8ca42 · 2025-04-17T11:55:05.000-05:00
diff --git a/articles/network-watcher/required-rbac-permissions.md b/articles/network-watcher/required-rbac-permissions.md
@@ -86,8 +86,7 @@ Since traffic analytics is enabled as part of the flow log resource, the followi
 
 <sup>1</sup> Only required when using traffic analytics to analyze virtual network flow logs. For more information, see [Data collection rules in Azure Monitor](/azure/azure-monitor/essentials/data-collection-rule-overview?toc=/azure/network-watcher/toc.json) and [Data collection endpoints in Azure Monitor](/azure/azure-monitor/essentials/data-collection-endpoint-overview?toc=/azure/network-watcher/toc.json).
 
-> [!CAUTION]
-> Traffic analytics creates and manages data collection rule and data collection endpoint resources in the same resource group as the workspace, prefixed with `NWTA`. If you perform any operation on these resources, traffic analytics might not function as expected.
+[!INCLUDE [Traffic analytics resources](../../includes/network-watcher-traffic-analytics-resources.md)]
 
 > [!IMPORTANT]
 > [Management group](../governance/management-groups/overview.md?toc=/azure/network-watcher/toc.json) inherited permissions are currently not supported for enabling traffic analytics.
diff --git a/articles/network-watcher/vnet-flow-logs-manage.md b/articles/network-watcher/vnet-flow-logs-manage.md
@@ -6,7 +6,7 @@ author: halkazwini
 ms.author: halkazwini
 ms.service: azure-network-watcher
 ms.topic: how-to
-ms.date: 03/18/2025
+ms.date: 04/17/2025
 
 #CustomerIntent: As an Azure administrator, I want to log my virtual network IP traffic using Network Watcher VNet flow logs so that I can analyze it later.
 ---
@@ -149,6 +149,8 @@ Create a flow log for your virtual network, subnet, or network interface. This f
     > [!NOTE]
     > To create and select a Log Analytics workspace other than the default one, see [Create a Log Analytics workspace](/azure/azure-monitor/logs/quick-create-workspace?toc=/azure/network-watcher/toc.json)
 
+    [!INCLUDE [Traffic analytics resources](../../includes/network-watcher-traffic-analytics-resources.md)]
+
 1. Select **Review + create**.
 
 1. Review the settings, and then select **Create**.
@@ -185,6 +187,7 @@ Use [New-AzNetworkWatcherFlowLog](/powershell/module/az.network/new-aznetworkwat
     # Create a VNet flow log.
     New-AzNetworkWatcherFlowLog -Enabled $true -Name 'myVNetFlowLog' -NetworkWatcherName 'NetworkWatcher_eastus' -ResourceGroupName 'NetworkWatcherRG' -StorageId $storageAccount.Id -TargetResourceId $vnet.Id -FormatVersion 2 -EnableTrafficAnalytics -TrafficAnalyticsWorkspaceId $workspace.ResourceId -TrafficAnalyticsInterval 10
     ```
+    [!INCLUDE [Traffic analytics resources](../../includes/network-watcher-traffic-analytics-resources.md)]
 
 # [**Azure CLI**](#tab/cli)
 
@@ -219,6 +222,7 @@ Use [az network watcher flow-log create](/cli/azure/network/watcher/flow-log#az-
     # Create a VNet flow log (storage account and traffic analytics workspace are in different resource groups from the virtual network).
     az network watcher flow-log create --location 'eastus' --name 'myVNetFlowLog' --resource-group 'myResourceGroup' --vnet 'myVNet' --storage-account '/subscriptions/aaaa0a0a-bb1b-cc2c-dd3d-eeeeee4e4e4e/resourceGroups/StorageRG/providers/Microsoft.Storage/storageAccounts/myStorageAccount' --traffic-analytics true --workspace '/subscriptions/aaaa0a0a-bb1b-cc2c-dd3d-eeeeee4e4e4e/resourceGroups/WorkspaceRG/providers/Microsoft.OperationalInsights/workspaces/myWorkspace' --interval 10
     ```
+    [!INCLUDE [Traffic analytics resources](../../includes/network-watcher-traffic-analytics-resources.md)]
 
 ---
 
@@ -306,6 +310,8 @@ To disable traffic analytics on the flow log resource and continue to generate a
 az network watcher flow-log update --location 'eastus' --name 'myVNetFlowLog' --resource-group 'myResourceGroup' --vnet 'myVNet' --storage-account 'myStorageAccount' --traffic-analytics false
 ```
 
+[!INCLUDE [Traffic analytics resources](../../includes/network-watcher-traffic-analytics-resources.md)]
+
 ---
 
 ## List all flow logs
diff --git a/includes/network-watcher-traffic-analytics-resources.md b/includes/network-watcher-traffic-analytics-resources.md
@@ -0,0 +1,10 @@
+---
+author: halkazwini
+ms.author: halkazwini
+ms.service: azure-network-watcher
+ms.topic: include
+ms.date: 04/17/2025    
+ms.custom: include file
+---
+> [!CAUTION]
+> Traffic analytics creates and manages data collection rule and data collection endpoint resources in the same resource group as the workspace, prefixed with `NWTA`. If you perform any operation on these resources, traffic analytics might not function as expected.
