From 9f9193a02ae775af2c8390abc8924cc659612bfe Mon Sep 17 00:00:00 2001 From: Apoorv Kudesia Date: Thu, 24 Jul 2025 17:07:04 +0530 Subject: [PATCH 01/15] SUMO-265484 | Apoorv | Update. Azure Event Hub doc and add dashboards and monitors --- .../microsoft-azure/azure-event-hubs.md | 150 ++++++++++++++++-- 1 file changed, 136 insertions(+), 14 deletions(-) diff --git a/docs/integrations/microsoft-azure/azure-event-hubs.md b/docs/integrations/microsoft-azure/azure-event-hubs.md index 00c42c74e1..a931e526c2 100644 --- a/docs/integrations/microsoft-azure/azure-event-hubs.md +++ b/docs/integrations/microsoft-azure/azure-event-hubs.md @@ -29,7 +29,7 @@ For more information on supported metrics, refer to [Azure documentation](https: Azure service sends monitoring data to Azure Monitor, which can then [stream data to Eventhub](https://learn.microsoft.com/en-us/azure/azure-monitor/essentials/stream-monitoring-data-event-hubs). Sumo Logic supports: * Logs collection from [Azure Monitor](https://docs.microsoft.com/en-us/azure/monitoring-and-diagnostics/monitoring-get-started) using our [Azure Event Hubs source](/docs/send-data/collect-from-other-data-sources/azure-monitoring/ms-azure-event-hubs-source/). -* Metrics collection using our [HTTP Logs and Metrics source](/docs/send-data/collect-from-other-data-sources/azure-monitoring/collect-metrics-azure-monitor/) via Azure Functions deployed using the ARM template. +* Metrics collection using our [Azure Metrics Source](/docs/send-data/hosted-collectors/microsoft-source/azure-metrics-source). You must explicitly enable diagnostic settings for each Event Hub Namespace you want to monitor. You can forward logs to the same event hub provided they satisfy the limitations and permissions as described [here](https://learn.microsoft.com/en-us/azure/azure-monitor/essentials/diagnostic-settings?tabs=portal#destination-limitations). @@ -37,25 +37,147 @@ When you configure the event hubs source or HTTP source, plan your source catego ### Configure metrics collection -In this section, you will configure a pipeline for shipping metrics from Azure Monitor to an Event Hub, onto an Azure Function, and finally to an HTTP Source on a hosted collector in Sumo Logic. +import MetricsSourceBeta from '../../reuse/metrics-source-beta.md'; -1. Create a hosted collector and tag the `tenant_name` field. You can get the tenant name using the instructions [here](https://learn.microsoft.com/en-us/azure/active-directory-b2c/tenant-management-read-tenant-name#get-your-tenant-name).
Azure Tag Tenant Name -1. [Configure an HTTP Source](/docs/send-data/collect-from-other-data-sources/azure-monitoring/collect-metrics-azure-monitor/#step-1-configure-an-http-source). -1. [Configure and deploy the ARM Template](/docs/send-data/collect-from-other-data-sources/azure-monitoring/collect-metrics-azure-monitor/#step-2-configure-azure-resources-using-arm-template). -1. [Export metrics to Event Hub](/docs/send-data/collect-from-other-data-sources/azure-monitoring/collect-metrics-azure-monitor/#step-3-export-metrics-for-a-particular-resource-to-event-hub). Perform the steps below for each Event Hub Namespaces that you want to monitor. - * Choose `Stream to an event hub` as the destination. - * Select `AllMetrics`. - * Use the Event hub namespace created by the ARM template in Step 2 above. You can create a new Event hub or use the one created by the ARM template. You can use the default policy `RootManageSharedAccessKey` as the policy name. + ### Configure logs collection In this section, you will configure a pipeline for shipping diagnostic logs from Azure Monitor to an Event Hub. -1. To set up the Azure Event Hubs source in Sumo Logic, refer to [Azure Event Hubs Source for Logs](/docs/send-data/collect-from-other-data-sources/azure-monitoring/ms-azure-event-hubs-source/). -2. To create the Diagnostic settings in the Azure portal, refer to the [Azure documentation](https://learn.microsoft.com/en-us/azure/azure-monitor/essentials/diagnostic-settings?tabs=portal#create-diagnostic-settings). Perform the steps below for each Event Hub Namespaces that you want to monitor. - * Choose `Stream to an event hub` as the destination. - * Select `allLogs`. - * Use the Event hub namespace and Event hub name configured in the previous step in the destination details section. You can use the default policy `RootManageSharedAccessKey` as the policy name. +#### Diagnostic logs + +1. To set up the Azure Event Hubs source in Sumo Logic, refer to the [Azure Event Hubs Source for Logs](/docs/send-data/collect-from-other-data-sources/azure-monitoring/ms-azure-event-hubs-source/). +1. To create the Diagnostic settings in Azure portal, refer to the [Azure documentation](https://learn.microsoft.com/en-us/azure/azure-monitor/essentials/diagnostic-settings?tabs=portal#create-diagnostic-settings). Perform the steps below for each Azure Event Hubs namespace that you want to monitor. + 1. Choose `Stream to an event hub` as the destination. + 1. Select `allLogs`. + 1. Use the Event Hub namespace and Event Hub name configured in the previous step in the destination details section. You can use the default policy `RootManageSharedAccessKey` as the policy name.
Azure Event Grid logs +1. Tag the location field in the source with the right location value.
Azure Virtual Machine Tag Location + +#### Activity Logs + +To collect activity logs, refer to the [Collecting Logs for the Azure Audit App from Event Hub](/docs/integrations/microsoft-azure/audit) section in the Azure Audit documentation. Do not perform this step in case you are already collecting activity logs for a subscription. + +:::note +Since this source contains logs from multiple regions, make sure that you do not tag this source with the location tag. +::: + +## Installing the Azure Event Hubs app + +import AppInstallIndexV2 from '../../reuse/apps/app-install-index-option.md'; + + + +As part of the app installation process, the following fields will be created by default: + +- `tenant_name`. This field is tagged at the collector level. You can get the tenant name using the instructions [here](https://learn.microsoft.com/en-us/azure/active-directory-b2c/tenant-management-read-tenant-name#get-your-tenant-name). +- `location`. The region to which the resource name belongs to. +- `subscription_id`. ID associated with a subscription where the resource is present. +- `resource_group`. The resource group name where the Azure resource is present. +- `provider_name`. Azure resource provider name (for example, Microsoft.Network). +- `resource_type`. Azure resource type (for example, storage accounts). +- `resource_name`. The name of the resource (for example, storage account name). +- `service_type`. Type of the service that can be accessed with a Azure resource. +- `service_name`. Services that can be accessed with an Azure resource (for example, in Azure Container Instances the service is Subscriptions). + +## Viewing the Azure Event Hubs dashboards + +import ViewDashboardsIndex from '../../reuse/apps/view-dashboards-index.md'; + + + +### Overview + +The **Azure Event Hubs - Overview** dashboard provides comprehensive details on Eventhubs and details such as overall number of requests, namespaces and instances, size by eventhubs, operation types, ingress and egress of data +Azure Event Hubs - Overview dashboard + +### Operations + +The **Azure Event Hubs - Operations** dashboard provides details over the recent create, read, delete or update operations done by the event hubs. +Azure Event Hubs - Operations + +### Performance + +The **Azure Event Hubs - Performance** dashboard provides insights into the performance of your Azure Event Hubs. This includes metrics on Replication lag and count, cluster CPU usage and memory usage. +Azure Event Hubs - Performance + +### Network + +The **Azure Event Hubs - Network** dashboard provides details on network traffic and connectivity related to your Azure Event Hubs. This includes data on inbound and outbound traffic in bytes and message, connections and requests. +Azure Event Hubs - Network + +### Kafka Overview + +The **Azure Event Hubs - Kafka Overview** dashboard provides details on Kafka Coordinator events based on different operations count, kakfa coordinator operations based on namespaces and clients, last 10 log messages and heartbeat events. +Azure Event Hubs - Kafka Overview + +### Kafka Errors + +The **Azure Event Hubs - Kafka Errors** dashboard provides information about Kafka related errors in Event Hubs including error count, errors by object and error messages, error by namespaces and last 10 kafka error messages +Azure Event Hubs - Kafka Errors + +### Errors + +The **Azure Event Hubs - Errors** dashboard provides information about errors in Event Hubs including user errors, Diagnostic errors, Operation Errors, top 10 error numbers and error messages, error trend and comparison analyses by types of Activity, operation result and entity. +Azure Event Hubs - Errors + +### Audit + +The **Azure Event Hubs - Audit** dashboard provides audit information on namespace level events, and cluster level events such as Audit failures, auth failures, auth protocols, status and connections. +Azure Event Hubs - Operations + +### Administrative Operations + +The **Azure Event Hubs - Administrative Operations** dashboard provides details on the operational activities and status of your Azure Event Hubs resources. + +Use this dashboard to: +* Monitor the distribution of operation types and their success rates to ensure proper functioning of your Event Hubs. +* Identify potential issues by analyzing the top operations causing errors and correlating them with specific users or applications. +* Track recent write and delete operations to maintain an audit trail of changes made to your Event Hubs. + +Azure Event Hubs - Administrative Operations dashboard + +### Policy and Recommendations + +The **Azure Event Hubs - Policy and Recommendations** dashboard provides details on policy events and recommendations for your Azure Event Hubs resources. + +Use this dashboard to: +* Monitor the success and failure rates of policy events to ensure proper configuration and compliance. +* Track and analyse recent recommendations to improve the performance and security of your Event Hubs setup. +* Identify trends in policy events and recommendations over time to proactively address potential issues. + +Azure Event Hubs - Policy and Recommendations dashboard + +## Create monitors for Azure Event Hubs + +import CreateMonitors from '../../reuse/apps/create-monitors.md'; + + + +### Azure Event Hubs alerts + +These alerts are metric based and will work for all Azure Storage. + +| Alert Name | Alert Description and Conditions | Alert Condition | Recover Condition | +|:-----------------------------------------------------|:----------------------------------------------------------------------------------------------------------------------------------------------------------|:----------------|:------------------| +| `Azure Event Hubs - Available Memory (Cluster Only)` | This alert is triggered when Average Available Memory Percentage is less than 10% and a warning alert is triggered at 20% available memory. | Count < 10 | Count > = 10 | +| `Azure Event Hubs - CPU Usage (Cluster Only)` | This alert is triggered when Average CPU Usage is greater than 80% and a warning alert is triggered at 70% CPU usage. | Count > 80 | Count < = 80 | +| `Azure Event Hubs - Incoming Messages` | This alert is triggered when Total Incoming Messages Count is greater than 1000. | Count > 1000 | Count < = 1000 | +| `Azure Event Hubs - Server Errors` | This alert is triggered when Total Server Errors Count is greater than 1. | Count > 1 | Count < = 1 | +| `Azure Event Hubs - Throttled Requests` | This alert is triggered when Total Throttled Requests Count is greater than 1. | Count > 1 | Count < = 1 | +| `Azure Event Hubs - User Errors` | This alert is triggered when Total User Errors Count is greater than 1. | Count > 1 | Count < = 1 | + +## Upgrade/Downgrade the Azure Event Hubs app (optional) + +import AppUpdate from '../../reuse/apps/app-update.md'; + + + +## Uninstalling the Azure Event Hubs app (optional) + +import AppUninstall from '../../reuse/apps/app-uninstall.md'; + + ## Troubleshooting From bccf87ad9bc2fbc992a843460c5f4d613079cbcb Mon Sep 17 00:00:00 2001 From: Apoorv Kudesia Date: Thu, 24 Jul 2025 17:08:31 +0530 Subject: [PATCH 02/15] SUMO-265484 | Apoorv | Fix. small typos in VM doc --- .../microsoft-azure/azure-virtual-machine.md | 34 +++++++++---------- 1 file changed, 17 insertions(+), 17 deletions(-) diff --git a/docs/integrations/microsoft-azure/azure-virtual-machine.md b/docs/integrations/microsoft-azure/azure-virtual-machine.md index 32dd30972a..a54f886883 100644 --- a/docs/integrations/microsoft-azure/azure-virtual-machine.md +++ b/docs/integrations/microsoft-azure/azure-virtual-machine.md @@ -103,36 +103,36 @@ import ViewDashboardsIndex from '../../reuse/apps/view-dashboards-index.md'; The **Azure Virtual Machine - Overview** dashboard allows you to gain insights into the performance of your VMs by monitoring and analyzing your VM's usage metrics such as VM availability, CPU usage, read/write ops, cache hits, VM usage, and average latencies. -Azure Key Vault - Overview dashboard +Azure Virtual Machine - Overview dashboard ### OS/Disk -The **Azure VM - OS/Disk** dashboard provides details on the operational activities and status of your Azure VM OS and Data disks. +The **Azure Virtual Machine - OS/Disk** dashboard provides details on the operational activities and status of your Azure VM OS and Data disks. -Azure Key Vault - Operations Overview dashboard +Azure Virtual Machine - Operations Overview dashboard ### Network -The **Azure VM - Network** dashboard provides detailed information about VM network activities based on incoming and outgoing packets and bytes. +The **Azure Virtual Machine - Network** dashboard provides detailed information about VM network activities based on incoming and outgoing packets and bytes. -Azure Key Vault - Operations Detailed dashboard +Azure Virtual Machine - Operations Detailed dashboard ### Disk -The **Azure VM - Disk** dashboard provides details on the operational activities and status of your Azure VM disks and premium disks. +The **Azure Virtual Machine - Disk** dashboard provides details on the operational activities and status of your Azure VM disks and premium disks. -Azure Key Vault - Errors and Failures dashboard +Azure Virtual Machine - Errors and Failures dashboard ### Administrative Operations -The **Azure VM - Administrative Operations** dashboard provides details on the operational activities and status of your Azure Virtual Machine resources. +The **Azure Virtual Machine - Administrative Operations** dashboard provides details on the operational activities and status of your Azure Virtual Machine resources. Use this dashboard to: * Monitor the distribution of operation types and their success rates to ensure proper functioning of your Virtual Machine. * Identify potential issues by analyzing the top operations causing errors and correlating them with specific users or applications. * Track recent write and delete operations to maintain an audit trail of changes made to your Virtual Machine. -Azure Key Vault - Administrative Operations dashboard +Azure Virtual Machine - Administrative Operations dashboard ### Policy and Recommendations @@ -140,28 +140,28 @@ The **Azure Virtual Machine - Policy and Recommendations** dashboard provides de Use this dashboard to: * Monitor the success and failure rates of policy events to ensure proper configuration and compliance. -* Track and analyse recent recommendations to improve the performance and security of your Vaults setup. +* Track and analyse recent recommendations to improve the performance and security of your VM setup. * Identify trends in policy events and recommendations over time to proactively address potential issues. -Azure Key Vault - Policy and Recommendations dashboard +Azure Virtual Machine - Policy and Recommendations dashboard ### CPU -The **Azure VM - CPU** dashboard provides details on the CPU metrics and usage of your Azure VM CPU. +The **Azure Virtual Machine - CPU** dashboard provides details on the CPU metrics and usage of your Azure VM CPU. -Azure Key Vault - Vault Health dashboard +Azure Virtual Machine - Vault Health dashboard ### Cache -The **Azure VM - Cache** dashboard provides details on the status and usage of your Azure VM cache resources. +The **Azure Virtual Machine - Cache** dashboard provides details on the status and usage of your Azure VM cache resources. -Azure Key Vault - Compliance dashboard +Azure Virtual Machine - Compliance dashboard ### Temp Disk -The **Azure VM - Temp Disk** dashboard provides details on the operational activities and status of your Azure VM Temp Disk. +The **Azure Virtual Machine - Temp Disk** dashboard provides details on the operational activities and status of your Azure VM Temp Disk. -Azure Key Vault - Compliance dashboard +Azure Virtual Machine - Compliance dashboard ## Create monitors for Azure Virtual Machine app From f99dc89b48cf0faef7198568b6646b8633d77401 Mon Sep 17 00:00:00 2001 From: John Pipkin Date: Thu, 24 Jul 2025 09:26:42 -0500 Subject: [PATCH 03/15] Fix spelling error --- docs/integrations/microsoft-azure/azure-event-hubs.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/integrations/microsoft-azure/azure-event-hubs.md b/docs/integrations/microsoft-azure/azure-event-hubs.md index a931e526c2..ec0c02b86c 100644 --- a/docs/integrations/microsoft-azure/azure-event-hubs.md +++ b/docs/integrations/microsoft-azure/azure-event-hubs.md @@ -108,7 +108,7 @@ The **Azure Event Hubs - Network** dashboard provides details on network traffic ### Kafka Overview -The **Azure Event Hubs - Kafka Overview** dashboard provides details on Kafka Coordinator events based on different operations count, kakfa coordinator operations based on namespaces and clients, last 10 log messages and heartbeat events. +The **Azure Event Hubs - Kafka Overview** dashboard provides details on Kafka coordinator events based on different operations count, Kafka coordinator operations based on namespaces and clients, last 10 log messages and heartbeat events. Azure Event Hubs - Kafka Overview ### Kafka Errors From d5ce6ba79b3fb079a9ebb04c47829c7ae94b40d9 Mon Sep 17 00:00:00 2001 From: Apoorv Kudesia Date: Mon, 28 Jul 2025 18:32:32 +0530 Subject: [PATCH 04/15] SUMO-265484 | Apoorv | Add. screenshot links --- .../microsoft-azure/azure-event-hubs.md | 22 +++++++++---------- 1 file changed, 11 insertions(+), 11 deletions(-) diff --git a/docs/integrations/microsoft-azure/azure-event-hubs.md b/docs/integrations/microsoft-azure/azure-event-hubs.md index ec0c02b86c..eb67ea9840 100644 --- a/docs/integrations/microsoft-azure/azure-event-hubs.md +++ b/docs/integrations/microsoft-azure/azure-event-hubs.md @@ -89,42 +89,42 @@ import ViewDashboardsIndex from '../../reuse/apps/view-dashboards-index.md'; ### Overview The **Azure Event Hubs - Overview** dashboard provides comprehensive details on Eventhubs and details such as overall number of requests, namespaces and instances, size by eventhubs, operation types, ingress and egress of data -Azure Event Hubs - Overview dashboard +Azure Event Hubs - Overview dashboard ### Operations The **Azure Event Hubs - Operations** dashboard provides details over the recent create, read, delete or update operations done by the event hubs. -Azure Event Hubs - Operations +Azure Event Hubs - Operations ### Performance The **Azure Event Hubs - Performance** dashboard provides insights into the performance of your Azure Event Hubs. This includes metrics on Replication lag and count, cluster CPU usage and memory usage. -Azure Event Hubs - Performance +Azure Event Hubs - Performance ### Network The **Azure Event Hubs - Network** dashboard provides details on network traffic and connectivity related to your Azure Event Hubs. This includes data on inbound and outbound traffic in bytes and message, connections and requests. -Azure Event Hubs - Network +Azure Event Hubs - Network ### Kafka Overview -The **Azure Event Hubs - Kafka Overview** dashboard provides details on Kafka coordinator events based on different operations count, Kafka coordinator operations based on namespaces and clients, last 10 log messages and heartbeat events. -Azure Event Hubs - Kafka Overview +The **Azure Event Hubs - Kafka Overview** dashboard provides details on Kafka Coordinator events based on different operations count, kakfa coordinator operations based on namespaces and clients, last 10 log messages and heartbeat events. +Azure Event Hubs - Kafka Overview ### Kafka Errors The **Azure Event Hubs - Kafka Errors** dashboard provides information about Kafka related errors in Event Hubs including error count, errors by object and error messages, error by namespaces and last 10 kafka error messages -Azure Event Hubs - Kafka Errors +Azure Event Hubs - Kafka Errors ### Errors The **Azure Event Hubs - Errors** dashboard provides information about errors in Event Hubs including user errors, Diagnostic errors, Operation Errors, top 10 error numbers and error messages, error trend and comparison analyses by types of Activity, operation result and entity. -Azure Event Hubs - Errors +Azure Event Hubs - Errors ### Audit The **Azure Event Hubs - Audit** dashboard provides audit information on namespace level events, and cluster level events such as Audit failures, auth failures, auth protocols, status and connections. -Azure Event Hubs - Operations +Azure Event Hubs - Operations ### Administrative Operations @@ -135,7 +135,7 @@ Use this dashboard to: * Identify potential issues by analyzing the top operations causing errors and correlating them with specific users or applications. * Track recent write and delete operations to maintain an audit trail of changes made to your Event Hubs. -Azure Event Hubs - Administrative Operations dashboard +Azure Event Hubs - Administrative Operations dashboard ### Policy and Recommendations @@ -146,7 +146,7 @@ Use this dashboard to: * Track and analyse recent recommendations to improve the performance and security of your Event Hubs setup. * Identify trends in policy events and recommendations over time to proactively address potential issues. -Azure Event Hubs - Policy and Recommendations dashboard +Azure Event Hubs - Policy and Recommendations dashboard ## Create monitors for Azure Event Hubs From 966ae0366f08b200b062fb5ab47cfbfbe284fa1f Mon Sep 17 00:00:00 2001 From: Apoorv Kudesia Date: Mon, 28 Jul 2025 18:35:51 +0530 Subject: [PATCH 05/15] Revert "fix Typos in Azure VM doc" This reverts commit 45f9fb4a6d1e93e400dac54574fe807b8b4fc2ca. # Conflicts: # docs/integrations/microsoft-azure/azure-virtual-machine.md --- .../microsoft-azure/azure-virtual-machine.md | 36 +++++-------------- 1 file changed, 9 insertions(+), 27 deletions(-) diff --git a/docs/integrations/microsoft-azure/azure-virtual-machine.md b/docs/integrations/microsoft-azure/azure-virtual-machine.md index a54f886883..b527f99a02 100644 --- a/docs/integrations/microsoft-azure/azure-virtual-machine.md +++ b/docs/integrations/microsoft-azure/azure-virtual-machine.md @@ -30,24 +30,6 @@ You must explicitly enable diagnostic settings for each Virtual Machine you want When you configure the event hubs source or HTTP source, plan your source category to ease the querying process. A hierarchical approach allows you to make use of wildcards. For example: `Azure/VM/ActivityLogs`, `Azure/VM/Metrics`. -### Configure metric rules - -* **Azure Observability Metadata Extraction VMName** - - In case this rule already exists, then no need to create it again. - -```sql -Rule Name: AzureObservabilityMetadataExtractionVMName -``` - -```sql title="Metric match expression" -tenant_name=* namespace=Microsoft.Compute/virtualMachines resource_name=* -``` - -| Fields extracted | Metric rule | -|:--|:--| -| `vmname` | `$resource_name._1` | - ### Configure metrics collection import MetricsSourceBeta from '../../reuse/metrics-source-beta.md'; @@ -103,29 +85,29 @@ import ViewDashboardsIndex from '../../reuse/apps/view-dashboards-index.md'; The **Azure Virtual Machine - Overview** dashboard allows you to gain insights into the performance of your VMs by monitoring and analyzing your VM's usage metrics such as VM availability, CPU usage, read/write ops, cache hits, VM usage, and average latencies. -Azure Virtual Machine - Overview dashboard +Azure Key Vault - Overview dashboard ### OS/Disk -The **Azure Virtual Machine - OS/Disk** dashboard provides details on the operational activities and status of your Azure VM OS and Data disks. +The **Azure VM - OS/Disk** dashboard provides details on the operational activities and status of your Azure VM OS and Data disks. -Azure Virtual Machine - Operations Overview dashboard +Azure Key Vault - Operations Overview dashboard ### Network -The **Azure Virtual Machine - Network** dashboard provides detailed information about VM network activities based on incoming and outgoing packets and bytes. +The **Azure VM - Network** dashboard provides detailed information about VM network activities based on incoming and outgoing packets and bytes. -Azure Virtual Machine - Operations Detailed dashboard +Azure Key Vault - Operations Detailed dashboard ### Disk -The **Azure Virtual Machine - Disk** dashboard provides details on the operational activities and status of your Azure VM disks and premium disks. +The **Azure VM - Disk** dashboard provides details on the operational activities and status of your Azure VM disks and premium disks. -Azure Virtual Machine - Errors and Failures dashboard +Azure Key Vault - Errors and Failures dashboard ### Administrative Operations -The **Azure Virtual Machine - Administrative Operations** dashboard provides details on the operational activities and status of your Azure Virtual Machine resources. +The **Azure Virtual Machine - Administrative Operations** dashboard provides details on the operational activities and status of your Azure Virtual Machine resources. Use this dashboard to: * Monitor the distribution of operation types and their success rates to ensure proper functioning of your Virtual Machine. @@ -136,7 +118,7 @@ Use this dashboard to: ### Policy and Recommendations -The **Azure Virtual Machine - Policy and Recommendations** dashboard provides details on policy events and recommendations for your Azure Virtual Machine resources. +The **Azure Virtual Machine - Policy and Recommendations** dashboard provides details on policy events and recommendations for your Azure Virtual Machine resources. Use this dashboard to: * Monitor the success and failure rates of policy events to ensure proper configuration and compliance. From 0fe7b031fa629ec2cf0ad48533742aab476e4015 Mon Sep 17 00:00:00 2001 From: Apoorv Kudesia Date: Mon, 28 Jul 2025 18:41:46 +0530 Subject: [PATCH 06/15] SUMO-265484 | Apoorv | unrevert the spelling fix removed --- docs/integrations/microsoft-azure/azure-event-hubs.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/integrations/microsoft-azure/azure-event-hubs.md b/docs/integrations/microsoft-azure/azure-event-hubs.md index eb67ea9840..b5c8cdbead 100644 --- a/docs/integrations/microsoft-azure/azure-event-hubs.md +++ b/docs/integrations/microsoft-azure/azure-event-hubs.md @@ -108,7 +108,7 @@ The **Azure Event Hubs - Network** dashboard provides details on network traffic ### Kafka Overview -The **Azure Event Hubs - Kafka Overview** dashboard provides details on Kafka Coordinator events based on different operations count, kakfa coordinator operations based on namespaces and clients, last 10 log messages and heartbeat events. +The **Azure Event Hubs - Kafka Overview** dashboard provides details on Kafka Coordinator events based on different operations count, kafka coordinator operations based on namespaces and clients, last 10 log messages and heartbeat events. Azure Event Hubs - Kafka Overview ### Kafka Errors From e98bcafd809e87cb1f7b4ffd1f732bd948e05bc1 Mon Sep 17 00:00:00 2001 From: Amee Lepcha Date: Mon, 28 Jul 2025 21:57:59 +0530 Subject: [PATCH 07/15] Update azure-virtual-machine.md --- .../microsoft-azure/azure-virtual-machine.md | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/docs/integrations/microsoft-azure/azure-virtual-machine.md b/docs/integrations/microsoft-azure/azure-virtual-machine.md index b527f99a02..e234db14e0 100644 --- a/docs/integrations/microsoft-azure/azure-virtual-machine.md +++ b/docs/integrations/microsoft-azure/azure-virtual-machine.md @@ -87,27 +87,27 @@ The **Azure Virtual Machine - Overview** dashboard allows you to gain insights i Azure Key Vault - Overview dashboard -### OS/Disk +### OS/Data Disk -The **Azure VM - OS/Disk** dashboard provides details on the operational activities and status of your Azure VM OS and Data disks. +The **Azure Virtual Machine - OS/Data Disk** dashboard provides details on the operational activities and status of your Azure VM OS and Data disks. Azure Key Vault - Operations Overview dashboard ### Network -The **Azure VM - Network** dashboard provides detailed information about VM network activities based on incoming and outgoing packets and bytes. +The **Azure Virtual Machine - Network** dashboard provides detailed information about VM network activities based on incoming and outgoing packets and bytes. Azure Key Vault - Operations Detailed dashboard ### Disk -The **Azure VM - Disk** dashboard provides details on the operational activities and status of your Azure VM disks and premium disks. +The **Azure Virtual Machine - Disk** dashboard provides details on the operational activities and status of your Azure VM disks and premium disks. Azure Key Vault - Errors and Failures dashboard ### Administrative Operations -The **Azure Virtual Machine - Administrative Operations** dashboard provides details on the operational activities and status of your Azure Virtual Machine resources. +The **Azure VM - Administrative Operations** dashboard provides details on the operational activities and status of your Azure Virtual Machine resources. Use this dashboard to: * Monitor the distribution of operation types and their success rates to ensure proper functioning of your Virtual Machine. From 16537edd391e97a2db1a4817ab4c8e977f917d71 Mon Sep 17 00:00:00 2001 From: Amee Lepcha Date: Mon, 28 Jul 2025 21:58:20 +0530 Subject: [PATCH 08/15] Update docs/integrations/microsoft-azure/azure-event-hubs.md Co-authored-by: John Pipkin (Sumo Logic) --- docs/integrations/microsoft-azure/azure-event-hubs.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/integrations/microsoft-azure/azure-event-hubs.md b/docs/integrations/microsoft-azure/azure-event-hubs.md index b5c8cdbead..7a041f1c88 100644 --- a/docs/integrations/microsoft-azure/azure-event-hubs.md +++ b/docs/integrations/microsoft-azure/azure-event-hubs.md @@ -48,7 +48,7 @@ In this section, you will configure a pipeline for shipping diagnostic logs from #### Diagnostic logs 1. To set up the Azure Event Hubs source in Sumo Logic, refer to the [Azure Event Hubs Source for Logs](/docs/send-data/collect-from-other-data-sources/azure-monitoring/ms-azure-event-hubs-source/). -1. To create the Diagnostic settings in Azure portal, refer to the [Azure documentation](https://learn.microsoft.com/en-us/azure/azure-monitor/essentials/diagnostic-settings?tabs=portal#create-diagnostic-settings). Perform the steps below for each Azure Event Hubs namespace that you want to monitor. +1. To create the diagnostic settings in Azure portal, refer to the [Azure documentation](https://learn.microsoft.com/en-us/azure/azure-monitor/essentials/diagnostic-settings?tabs=portal#create-diagnostic-settings). Perform the steps below for each Azure Event Hubs namespace that you want to monitor. 1. Choose `Stream to an event hub` as the destination. 1. Select `allLogs`. 1. Use the Event Hub namespace and Event Hub name configured in the previous step in the destination details section. You can use the default policy `RootManageSharedAccessKey` as the policy name.
Azure Event Grid logs From e8346d34fc08094ce1fb53d5b7d8a222dc2a6495 Mon Sep 17 00:00:00 2001 From: Amee Lepcha Date: Mon, 28 Jul 2025 21:58:27 +0530 Subject: [PATCH 09/15] Update docs/integrations/microsoft-azure/azure-event-hubs.md Co-authored-by: John Pipkin (Sumo Logic) --- docs/integrations/microsoft-azure/azure-event-hubs.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/integrations/microsoft-azure/azure-event-hubs.md b/docs/integrations/microsoft-azure/azure-event-hubs.md index 7a041f1c88..c927d8efff 100644 --- a/docs/integrations/microsoft-azure/azure-event-hubs.md +++ b/docs/integrations/microsoft-azure/azure-event-hubs.md @@ -71,7 +71,7 @@ import AppInstallIndexV2 from '../../reuse/apps/app-install-index-option.md'; As part of the app installation process, the following fields will be created by default: - `tenant_name`. This field is tagged at the collector level. You can get the tenant name using the instructions [here](https://learn.microsoft.com/en-us/azure/active-directory-b2c/tenant-management-read-tenant-name#get-your-tenant-name). -- `location`. The region to which the resource name belongs to. +- `location`. The region the resource name belongs to. - `subscription_id`. ID associated with a subscription where the resource is present. - `resource_group`. The resource group name where the Azure resource is present. - `provider_name`. Azure resource provider name (for example, Microsoft.Network). From f0ebd19c2d33dd6b18ea115e06478c34833e1e4c Mon Sep 17 00:00:00 2001 From: Amee Lepcha Date: Mon, 28 Jul 2025 21:58:34 +0530 Subject: [PATCH 10/15] Update docs/integrations/microsoft-azure/azure-event-hubs.md Co-authored-by: John Pipkin (Sumo Logic) --- docs/integrations/microsoft-azure/azure-event-hubs.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/integrations/microsoft-azure/azure-event-hubs.md b/docs/integrations/microsoft-azure/azure-event-hubs.md index c927d8efff..379f3cc8fb 100644 --- a/docs/integrations/microsoft-azure/azure-event-hubs.md +++ b/docs/integrations/microsoft-azure/azure-event-hubs.md @@ -77,7 +77,7 @@ As part of the app installation process, the following fields will be created by - `provider_name`. Azure resource provider name (for example, Microsoft.Network). - `resource_type`. Azure resource type (for example, storage accounts). - `resource_name`. The name of the resource (for example, storage account name). -- `service_type`. Type of the service that can be accessed with a Azure resource. +- `service_type`. Type of the service that can be accessed with an Azure resource. - `service_name`. Services that can be accessed with an Azure resource (for example, in Azure Container Instances the service is Subscriptions). ## Viewing the Azure Event Hubs dashboards From ab72051a9bc5239c22612b4e94a6240591b36f98 Mon Sep 17 00:00:00 2001 From: Amee Lepcha Date: Mon, 28 Jul 2025 21:59:01 +0530 Subject: [PATCH 11/15] Update docs/integrations/microsoft-azure/azure-event-hubs.md Co-authored-by: John Pipkin (Sumo Logic) --- docs/integrations/microsoft-azure/azure-event-hubs.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/integrations/microsoft-azure/azure-event-hubs.md b/docs/integrations/microsoft-azure/azure-event-hubs.md index 379f3cc8fb..3a83040f30 100644 --- a/docs/integrations/microsoft-azure/azure-event-hubs.md +++ b/docs/integrations/microsoft-azure/azure-event-hubs.md @@ -78,7 +78,7 @@ As part of the app installation process, the following fields will be created by - `resource_type`. Azure resource type (for example, storage accounts). - `resource_name`. The name of the resource (for example, storage account name). - `service_type`. Type of the service that can be accessed with an Azure resource. -- `service_name`. Services that can be accessed with an Azure resource (for example, in Azure Container Instances the service is Subscriptions). +- `service_name`. Services that can be accessed with an Azure resource. (For example, in Azure Container Instances the service is Subscriptions.) ## Viewing the Azure Event Hubs dashboards From fc0a39740e0cf829b5dafe116f44d8cc31eab7c2 Mon Sep 17 00:00:00 2001 From: Amee Lepcha Date: Mon, 28 Jul 2025 21:59:15 +0530 Subject: [PATCH 12/15] Update docs/integrations/microsoft-azure/azure-event-hubs.md Co-authored-by: John Pipkin (Sumo Logic) --- docs/integrations/microsoft-azure/azure-event-hubs.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/integrations/microsoft-azure/azure-event-hubs.md b/docs/integrations/microsoft-azure/azure-event-hubs.md index 3a83040f30..9ce6102d6d 100644 --- a/docs/integrations/microsoft-azure/azure-event-hubs.md +++ b/docs/integrations/microsoft-azure/azure-event-hubs.md @@ -108,7 +108,7 @@ The **Azure Event Hubs - Network** dashboard provides details on network traffic ### Kafka Overview -The **Azure Event Hubs - Kafka Overview** dashboard provides details on Kafka Coordinator events based on different operations count, kafka coordinator operations based on namespaces and clients, last 10 log messages and heartbeat events. +The **Azure Event Hubs - Kafka Overview** dashboard provides details on Kafka Coordinator events based on different operations count, Kafka Coordinator operations based on namespaces and clients, last 10 log messages and heartbeat events. Azure Event Hubs - Kafka Overview ### Kafka Errors From 11398e365a081528aba12c288987f2aace6f067f Mon Sep 17 00:00:00 2001 From: Amee Lepcha Date: Mon, 28 Jul 2025 21:59:22 +0530 Subject: [PATCH 13/15] Update docs/integrations/microsoft-azure/azure-event-hubs.md Co-authored-by: John Pipkin (Sumo Logic) --- docs/integrations/microsoft-azure/azure-event-hubs.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/integrations/microsoft-azure/azure-event-hubs.md b/docs/integrations/microsoft-azure/azure-event-hubs.md index 9ce6102d6d..5701eb6373 100644 --- a/docs/integrations/microsoft-azure/azure-event-hubs.md +++ b/docs/integrations/microsoft-azure/azure-event-hubs.md @@ -113,7 +113,7 @@ The **Azure Event Hubs - Kafka Overview** dashboard provides details on Kafka Co ### Kafka Errors -The **Azure Event Hubs - Kafka Errors** dashboard provides information about Kafka related errors in Event Hubs including error count, errors by object and error messages, error by namespaces and last 10 kafka error messages +The **Azure Event Hubs - Kafka Errors** dashboard provides information about Kafka related errors in Event Hubs including error count, errors by object and error messages, error by namespaces and last 10 Kafka error messages Azure Event Hubs - Kafka Errors ### Errors From b89f3766b79f6e3a9a512c5343bbd178639d4724 Mon Sep 17 00:00:00 2001 From: Amee Lepcha Date: Mon, 28 Jul 2025 21:59:33 +0530 Subject: [PATCH 14/15] Update docs/integrations/microsoft-azure/azure-event-hubs.md Co-authored-by: John Pipkin (Sumo Logic) --- docs/integrations/microsoft-azure/azure-event-hubs.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/integrations/microsoft-azure/azure-event-hubs.md b/docs/integrations/microsoft-azure/azure-event-hubs.md index 5701eb6373..49b2a40b80 100644 --- a/docs/integrations/microsoft-azure/azure-event-hubs.md +++ b/docs/integrations/microsoft-azure/azure-event-hubs.md @@ -118,7 +118,7 @@ The **Azure Event Hubs - Kafka Errors** dashboard provides information about Kaf ### Errors -The **Azure Event Hubs - Errors** dashboard provides information about errors in Event Hubs including user errors, Diagnostic errors, Operation Errors, top 10 error numbers and error messages, error trend and comparison analyses by types of Activity, operation result and entity. +The **Azure Event Hubs - Errors** dashboard provides information about errors in Event Hubs including user errors, diagnostic errors, operation errors, top 10 error numbers and error messages, error trend and comparison analyses by types of activity, operation result and entity. Azure Event Hubs - Errors ### Audit From b1526c011e26b02ba499676144eb360bbd76518d Mon Sep 17 00:00:00 2001 From: Amee Lepcha Date: Mon, 28 Jul 2025 21:59:41 +0530 Subject: [PATCH 15/15] Update docs/integrations/microsoft-azure/azure-event-hubs.md Co-authored-by: John Pipkin (Sumo Logic) --- docs/integrations/microsoft-azure/azure-event-hubs.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/integrations/microsoft-azure/azure-event-hubs.md b/docs/integrations/microsoft-azure/azure-event-hubs.md index 49b2a40b80..8bc9c3aebc 100644 --- a/docs/integrations/microsoft-azure/azure-event-hubs.md +++ b/docs/integrations/microsoft-azure/azure-event-hubs.md @@ -123,7 +123,7 @@ The **Azure Event Hubs - Errors** dashboard provides information about errors in ### Audit -The **Azure Event Hubs - Audit** dashboard provides audit information on namespace level events, and cluster level events such as Audit failures, auth failures, auth protocols, status and connections. +The **Azure Event Hubs - Audit** dashboard provides audit information on namespace level events, and cluster level events such as audit failures, auth failures, auth protocols, status and connections. Azure Event Hubs - Operations ### Administrative Operations