Merge pull request #252422 from AbbyMSFT/api-dep

v-shils · web-flow · commit e8ac0c457e09 · 2023-09-21T12:56:56.000-07:00
Add article: migrating from the Get Summary API
diff --git a/articles/azure-monitor/alerts/alerts-troubleshoot.md b/articles/azure-monitor/alerts/alerts-troubleshoot.md
@@ -164,9 +164,9 @@ If you have received a notification for an alert (such as an email or an SMS) mo
     ![Screenshot of multiple action groups in an alert.](media/alerts-troubleshoot/action-repeated-multi-action-groups.png)
 
 ## Action or notification has an unexpected content
-Action Groups uses two different email providers to ensure email notification delivery. The primary email provider is very resilient and quick but occasionally suffers outages. In this case, the secondary email provider handles email requests. The secondary provider is only a fallback solution. Due to provider differences, an email sent from our secondary provider may have a degraded email experience. The degradation results in slightly different email formatting and content. Since email templates differ in the two systems, maintaining parity across the two systems is not feasible. You can know that you are recieving a degraded experience, if there is a note at the top of your email notification that says: 
+Action Groups uses two different email providers to ensure email notification delivery. The primary email provider is very resilient and quick but occasionally suffers outages. In this case, the secondary email provider handles email requests. The secondary provider is only a fallback solution. Due to provider differences, an email sent from our secondary provider may have a degraded email experience. The degradation results in slightly different email formatting and content. Since email templates differ in the two systems, maintaining parity across the two systems is not feasible. You can know that you are receiving a degraded experience, if there is a note at the top of your email notification that says: 
 
-"This is a degraded email experience. That means the formatting may be off or details could be missing. For more infomration on the degraded email experience, read here."
+"This is a degraded email experience. That means the formatting may be off or details could be missing. For more information on the degraded email experience, read here."
 
 If your notification does not contain this note and you have received the alert, but believe some of its fields are missing or incorrect, follow these steps: 
 
@@ -247,58 +247,6 @@ If you received an error while trying to create, update or delete an [alert proc
 
     Check the [alert processing rule documentation](../alerts/alerts-action-rules.md), or the [alert processing rule PowerShell Set-AzActionRule](/powershell/module/az.alertsmanagement/set-azalertprocessingrule) command. 
 
-## How to Migrate the Get alert summary API to ARG query
-
-Get alert summary API return the summary of alerts using API, today once we opened the option to use ARG query everywhere (including alerts) you can use ARG query directly and by that to have an option to be more flexible. 
-If you are using “GetAlertSummary” API, we recommend using ARG query API and list out the benefits 
-* Ability to add new fields to the query that returns the alert summary.  
-* Ability to be more flexible in the query that returns the alert summary. 
-This is an example of how today we use “GetAlertSummary” API: 
-
-GET https://management.azure.com/subscriptions/{subId}/providers/Microsoft.AlertsManagement/alertsSummary?groupby=severity,alertState&api-version=2019-03-01 
-Response: AlertSummary_Sev_Alertstate 
-
-Instead of “GetAlertSummary” API you can create a query via ARG, examples for 2 uses of ARG query that can be used instead of “GetAlertSummary” API using different parameters. You can use this as a baseline for your query and build it exactly according to your needs. 
-* Query to ARG by Severity, AlertState: 
-    Post  https://management.azure.com/providers/Microsoft.ResourceGraph/resources?api-version=2020-04-01-preview 
-    {
-      query: "alertsmanagementresources  
-        | where type =~ 'microsoft.alertsmanagement/alerts'   
-        | where todatetime(properties.essentials.startDateTime) >= ago(2h) and todatetime(properties.essentials.startDateTime) < now()  
-        | project Severity = tostring(properties.essentials.severity), 
-        AlertState= tostring(properties.essentials.alertState) 
-        | summarize AlertsCount = count() by Severity, AlertState" 
-    } 
-* Query to ARG by Severity: 
-    Post  https://management.azure.com/providers/Microsoft.ResourceGraph/resources?api-version=2020-04-01-preview 
-    { 
-        query: "alertsmanagementresources  
-        | where type =~ 'microsoft.alertsmanagement/alerts'   
-        | where todatetime(properties.essentials.startDateTime) >= ago(2h) and todatetime(properties.essentials.startDateTime) < now()  
-        | project Severity = tostring(properties.essentials.severity) 
-        | summarize AlertsCount = count() by Severity" 
-    } 
-* Query to ARG by Severity, monitorService, TargetResourceType 
-    Post  https://management.azure.com/providers/Microsoft.ResourceGraph/resources?api-version=2020-04-01-preview 
-    { 
-        query: "alertsmanagementresources  
-        | where type =~ 'microsoft.alertsmanagement/alerts'   
-        | where todatetime(properties.essentials.startDateTime) >= ago(2h) and todatetime(properties.essentials.startDateTime) < now()  
-        | project Severity = tostring(properties.essentials.severity),  
-        MonitorCondition = tostring(properties.essentials.monitorCondition),  
-        ObjectState = tostring(properties.essentials.alertState),  
-        MonitorService = tostring(properties.essentials.monitorService),  
-        AlertRuleId = tostring(properties.essentials.alertRule),  
-        SignalType = tostring(properties.essentials.signalType),  
-        TargetResource = tostring(properties.essentials.targetResourceName), 
-        TargetResourceType = tostring(properties.essentials.targetResourceName), 
-        id   
-        | summarize AlertsCount = count() by Severity, MonitorService , TargetResourceType" 
-    } 
-
- 
-
-
 ## Next steps
 - If using a log alert, also see [Troubleshooting Log Alerts](./alerts-troubleshoot-log.md).
 - Go back to the [Azure portal](https://portal.azure.com) to check if you've solved your issue with guidance above.
diff --git a/articles/azure-monitor/alerts/migrate-from-alerts-summary-api.md b/articles/azure-monitor/alerts/migrate-from-alerts-summary-api.md
@@ -0,0 +1,127 @@
+---
+title: Migrate from the Azure Monitor alertsSummary API
+description: Find out how to migrate from the Azure Monitor alertsSummary API, which is being deprecated
+ms.topic: how-to
+ms.date: 09/21/2023
+ms.author: abbyweisberg
+---
+
+
+# Migrate from the alertsSummary API to ARG queries
+
+The [alertsSummary API](/rest/api/monitor/alertsmanagement/alerts/get-summary) is being deprecated as of September 30,2026. Instead of the alertsSummary API, you can use Azure Resource Graph queries to get the same information.
+
+Azure Resource Graph queries provide flexibility to query your Azure data and can be used for Azure monitor alerts instead of the alertsSummary API.
+
+Azure Resource Graph queries provide more functionality than the alertsSummary API, including: 
+* The ability to add new fields to the query that returns the alert summary.  
+* The ability to be more flexible in the query that returns the alert summary. 
+
+## Implementation of the current alertsSummary API: 
+
+This is the format for the calling the alertsSummary API:
+
+  `GET https://management.azure.com/subscriptions/{subId}/providers/Microsoft.AlertsManagement/alertsSummary?groupby=severity,alertState&api-version=2019-03-01`
+
+Response: AlertSummary_Sev_Alertstate 
+
+This is an example of the output from the alertsSummary API:
+
+```json
+{
+  "totalRecords": 2,
+  "count": 2,
+  "data": {
+    "columns": [
+      {"name": "Severity",
+        "type": "string"
+      },
+      {"name": "AlertState",
+        "type": "string"
+      },
+      {
+       "name": "AlertsCount",
+       "type": "integer"
+      }
+    ],
+    "rows": [
+      [
+       "Sev2",
+       "New",
+        2
+      ],
+      [
+       "Sev1",
+        "New",
+        8
+      ]
+      ]
+},
+"facets": [],
+"resultTruncated": false
+}
+```
+
+## Use the Azure Resource Graph query
+
+Use these Azure Resource Graph queries instead of the alertsSummary API call to retrieve alert information, or use these queries as a basis for designing your own queries.
+
+- [List Azure Monitor alerts ordered by severity](../../governance/resource-graph/samples/starter.md#list-azure-monitor-alerts-ordered-by-severity)
+- [List Azure Monitor alerts ordered by severity and alert state](../../governance/resource-graph/samples/starter.md#list-azure-monitor-alerts-ordered-by-severity-and-alert-state)
+- [List Azure Monitor alerts ordered by severity, monitor service, and target resource type](../../governance/resource-graph/samples/starter.md#list-azure-monitor-alerts-ordered-by-severity-monitor-service-and-target-resource-type)
+ 
+ This is an example of the output from the Azure Resource Graph query:
+
+```json
+{
+"properties":{
+  "groupedBy": "severity",
+  "smartGroupsCount": 100,
+  "total": 9692,
+  "values": [
+    {
+        "name": "Sev0",
+        "count": 6517,
+        "groupedby": "alertState",
+        "values": [
+            {
+                "name": "New",
+                "count": 6517
+            },
+            {
+                "name": "Acknowledged",
+                "count": 0
+            },
+            {
+                "name": "Closed",
+                "count": 0
+            }
+        ]
+    },
+    {
+        "name": "Sev1",
+        "count": 3175,
+        "groupedby": "alertState",
+        "values": [
+            {
+                "name": "New",
+                "count": 3175
+            },
+            {
+                "name": "Acknowledged",
+                "count": 0
+            },
+            {
+                "name": "Closed",
+                "count": 0
+            }
+        ]
+    },
+    ]
+}
+},
+"id": "/subscriptions/1a2b3c4d-123a-1234-a12b-a1b2c34d5e6f/providers/Microsoft.AlertsManagement/alertsSummary/current",
+"type": "Microsoft.AlertsManagement/alertsSummary",
+"name": "current"
+
+```
diff --git a/articles/azure-monitor/toc.yml b/articles/azure-monitor/toc.yml
@@ -1604,6 +1604,8 @@ items:
       href: essentials/rest-api-walkthrough.md
     - name: Migrate to the metrics getBatch API
       href: essentials/migrate-to-batch-api.md
+    - name: Migrate from the alertsSummary API
+      href: alerts/migrate-from-alerts-summary-api.md
   - name: Azure alerts management SDK for Python
     href: /python/api/azure-mgmt-monitor/azure.mgmt.monitor.monitormanagementclient
   - name: Resource Manager templates
diff --git a/articles/governance/resource-graph/samples/starter.md b/articles/governance/resource-graph/samples/starter.md
@@ -31,9 +31,9 @@ This article uses the following starter queries:
 - [List all storage accounts with specific tag value](#list-specific-tag)
 - [List all tags and their values](#list-all-tag-values)
 - [Show unassociated network security groups](#unassociated-nsgs)
-- [List alerts by severity](#alerts-severity)
-- [List alerts by severity and resource type](#alerts-severity-state)
-- [List alerts by severity and resource type with a specific tag](#alerts-severity-service-type)
+- [List alerts by severity](#list-azure-monitor-alerts-ordered-by-severity)
+- [List alerts by severity and resource type](#list-azure-monitor-alerts-ordered-by-severity-and-alert-state)
+- [List alerts by severity and resource type with a specific tag](#list-azure-monitor-alerts-ordered-by-severity-monitor-service-and-target-resource-type)
 
 If you don't have an Azure subscription, create a [free account](https://azure.microsoft.com/free)
 before you begin.
@@ -657,7 +657,7 @@ Search-AzGraph -Query "Resources | where type =~ 'microsoft.network/networksecur
 
 ---
 
-## <a name="alerts-severity"></a>List alerts ordered by severity
+## List Azure Monitor alerts ordered by severity
 
 ```kusto
 alertsmanagementresources  
@@ -667,7 +667,7 @@ alertsmanagementresources
 | summarize AlertsCount = count() by Severity
  
 ```
-## <a name="alerts-severity-state"></a>List alerts ordered by severity and alert state
+## List Azure Monitor alerts ordered by severity and alert state
 
 ```kusto
 alertsmanagementresources
@@ -678,7 +678,7 @@ alertsmanagementresources
 | summarize AlertsCount = count() by Severity, AlertState
 ```
 
-## <a name="alerts-severity-service-type"></a>List alerts ordered by severity, monitor service, and target resource type 
+## List Azure Monitor alerts ordered by severity, monitor service, and target resource type 
 
 ```kusto
 alertsmanagementresources  
