Today I’ve got another Azure Monitor Workbook, this time for Windows Virtual Desktop (WVD). This workbook uses exclusively Log Analytics data IaaS data, so it will work with both WVD 1.0 and 2.0. Though there are some nice logs available in the diagnostic settings for WVD 2.0. If this is your first time on my …
Today I’m excited to finally share with you something that I’ve been working on for weeks. This project entailed many many hours of work. It is, An Azure Inventory Dashboard using Azure Monitor Workbooks. The original version of this Workbook was shown in my Workbooks video I made last year. In that same video I …
In my previous post I showed you how to collect and parse the FSLogix event log with Log Analytics. In this post I will show you how to use that event log to calculate WVD profile load time. Calculating logon time is one of those things that can provide value into our users experience. And …
Last week the Azure Monitor team announced a new Community for Workbooks, queries and alerts for Azure Monitor. Hopefully it becomes to Azure Operations as what the Azure Sentinel Community has become. Despite being around a lot less time than Azure Monitor, there are many workbooks, queries, Jupyter Notebooks for use in the Azure Sentinel …
I recently took a look at the Azure Sentinel Syslog Workbook, called Linux Machines. This workbook is not great, its essentially a dashboard. For me the power of Workbooks in both Azure Monitor and Azure Sentinel is hunting, whether you’re hunting threats or operational issues with your infrastructure or applications. Workbook Resources If this is …
PSST: you could read this post. Orrrr you could check out the new 2.0 version, which has way more examples. Extracting Nested Fields in Kusto 2.0 – Cloud, Systems Management and Automation (cloudsma.com) Pretty much every blog I’ve produced is a real world solution that I have used in production. Sometimes they are …
The Heartbeat table in Log Analytics is surprisingly useful for a number of things. First at its base level, it acts as an inventory of your VMs. The table contains a number of useful columns from Solutions a VM is scoped to, Os Type and versions to what resource group they are in. In this …