Azure Monitor-Log Analytics

Welcome to the "Azure Log Analytics ":https://azure.microsoft.com/en-us/services/log-analytics/ Feedback page. We appreciate your feedback and look forward to hearing from you. Use this site for new ideas and bug reports or to request help.
NOTE – Log Analytics is now a part of Operations Management Suite. Learn more at http://microsoft.com/OMS

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. 'render timechart' should support logarithmic y-scale

    Currently I need to manually exclude one series that has especially high values from my timechart. It means that the automatic scale has a very high max which means that the other series are not easily viewable.

    I'd like a parameter to 'render timechart' that lets me specify a log y scale, it will help all series to be visible.

    It's a fairly common feature in data visualization generally.

    I actually want this for Application Insights Analytics (https://feedback.azure.com/forums/357324-application-insights/suggestions/14110047-add-logarithmic-scale-to-charts). I'm not sure the right place for these requests now that there is standard Log Analytics Query Language.

    35 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Search UI and Language  ·  Flag idea as inappropriate…  ·  Admin →
  2. Please DO NOT RETIRE the demo site: https://portal.loganalytics.io/demo#/query/main

    For log analytics, there is a demo site: https://portal.loganalytics.io/demo#/query/main, which is very useful for testing purpose since it has a lot of data.

    And now I see it will be retired on September 2nd, 2019, please keep it alive.

    35 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  3. Choosing default time range

    Would like an option to choose the default time range.

    It seems it defaults to last 24 hours and on some of my dashboards it shows me no data, but as soon as I change it to 7 days I see the data.

    35 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Workspace Settings / Administration  ·  Flag idea as inappropriate…  ·  Admin →
  4. Add native support for AIX

    Provide native support for SCOM monitored AIX systems.

    35 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  5. Link Multiple Account into Workspace

    In this moment is possible manage only the resources linked to the Workspace account. This means that is not possible link a different account where I want have Backup/Automation status.

    As consultant this is a big limitation because I can monitor the computers from one subscription but not some advanced resources, in case the customer has Azure Backup/Automation.

    S

    35 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Workspace Settings / Administration  ·  Flag idea as inappropriate…  ·  Admin →
  6. DCR: powershell cmdlet to collect activity log across subscription in Log analytics workspace

    We have activity log solution here: https://docs.microsoft.com/en-us/azure/azure-monitor/platform/collect-activity-logs
    cx want to do the below steps by powershell command:
    - Configure activity logs to go to your Log Analytics workspace.
    - In the Azure portal, select your workspace and then click Azure Activity log.
    - For each subscription, click the subscription name.

    Currently we don't have any powershell commands to do the same, as I know, we have some powershell command to enable custom logs in log analytics, hence please also provide similar command to connect activity logs in workspace across subscription.

    35 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  7. Parameterized saved searches

    Currently, we are able to create parameterized functions by using the 'let' command.

    Example:

    let f=(a:int, b:string) { strcat(b, ":", a) }

    This sounds great in concept... until you find out that this only works if you type your entire function at the beginning of each query because these functions aren't 'stored' and you can't save the function as a saved search because then the search engine starts complaining when there is no output...

    So, saved searches behave right now as SQL views. Even though there is a "function" concept it doesn't seem like we can create parameterized functions at…

    34 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Flag idea as inappropriate…  ·  Admin →
  8. Multi tenant management for the enterprise

    Azure Operational Insights Portal screen can be viewed is subscriber only. The Azure Operational Insights enterprise-friendly features as a subscription for more than one portal screen can review together and happy.

    34 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Workspace Settings / Administration  ·  Flag idea as inappropriate…  ·  Admin →

    Currently, you can add your users fro the ‘settings’ page and invite either LiveID or AAD users/groups to access the workspace directly from https://preview.opinsights.azure.com/

    You can have direct agents and SCOM management groups that live in different subscriptions than the one the workspace is linked to. The only scenario that is limited at the moment is ingesting data from storage accounts (WAD data). We are investigating for how many this is important enough to allow cross-subscription reading of Storage accounts.

    Also read this other thread for an additional requirement we have heard in this area http://feedback.azure.com/forums/267889-azure-operational-insights/suggestions/6519233-improve-multitenancy-for-managed-services-provider#comments

  9. put service map in Australia.

    add it to Australia regions :-)

    34 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Service Map  ·  Flag idea as inappropriate…  ·  Admin →
  10. One Microsoft Client

    One Microsoft Cloud Client
    Please provide one client for azure (or maybe also office365) with the possibility to expand this client with features.

    Actually we have to install many small Clients for intunes, several for OMS and so on.

    Maybe it could be one intunes managed client-Software and if there are for example on one machine OMS-features needed, then we can just choose which Feature on which client and the client downloads and installs everything. Same for AIP, Dynamics Plugins and so on.

    Thanks, Martin

    34 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  11. Network Performance Monitor linux

    Network Performance Monitor Support for Linux OMS Agent

    Would love to use Linux Nodes for Service Connectivity and Performance Monitor as part of the Network Performance Monitor solution.

    34 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Network Monitoring  ·  Flag idea as inappropriate…  ·  Admin →
  12. Ability to see what resources support Resource-Specific Diagnostics

    Currently we aren't able to determine which resources support Resource-Specific Collection Mode. It is buried in the documentation for each resource: https://docs.microsoft.com/en-us/azure/azure-monitor/platform/resource-logs-collect-workspace It would be gratefully beneficial to have a complete list seeing Microsoft is recommending users to switch to this mode for their resources where applicable due to the 500 field limit on the AzureDiagnostic Table

    33 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  13. Azure trafic manager logs with OMS

    it would be great if we could have logs of Azure traffic manager in OMS

    33 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    5 comments  ·  Flag idea as inappropriate…  ·  Admin →
  14. Want to display the graphs added to the Tile directly on the dashboard from View Designer.

    Hello,

    Now, we have to create query and use "Pin to dashboard" when wants to show the graphs on dashboard.
    However, View Designer can create easily some graphs.
    It is very effective if we can paste this graph directly on the dashboard.

    33 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Workspace Settings / Administration  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

  15. Reuse workspace name

    cannot reused name of closed workspace?

    33 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Workspace Settings / Administration  ·  Flag idea as inappropriate…  ·  Admin →

    Ok, I got this answer from the engineers and confirmed the current limitation – we will have to make a change for this:

    WorkspaceName is used to register the portal DNS, and it should be globally unique.
    We cannot reuse the workspace name now, because we dodn’t yet remove the DNS mapping when we do the CloseWorkspace operation.

  16. Allow Multiple Accounts in Backup Solution

    For the Backup solution, need to be able to add more than one vault account.

    33 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  My Dashboard  ·  Flag idea as inappropriate…  ·  Admin →
  17. ADFS Auditing

    It would be great if Log analytics could correctly identify and parse ADFS audit events. currently they are identified as "500 - The Desktop Window Manager is experiencing heavy resource contention."

    32 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  18. Fix Operations Manager Health Service Modules Event ID 26007

    Operations Manager fails to collect events from the Windows Security Event log, because the EventLog service concludes the Security Event log is corrupt. The underlying reason appears to be corrupt events in the Security Event log generated by the Microsoft Monitoring Agent. See attached screenshot.

    I'd like some help troubleshooting this issue. Thanks.

    Marco

    Log Name: Operations Manager
    Source: Health Service Modules
    Date: 2/3/2016 3:36:30 PM
    Event ID: 26007
    Task Category: None
    Level: Error
    Keywords: Classic
    User: N/A
    Computer:
    Description:
    The EventLog service reported that the Security event log on computer '
    ' is corrupt. The Windows Event Log Provider…

    32 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  19. sccm support\configuration manager

    connection for SCCM 2012 R2 so that we can see all hardware inv data on all managed servers

    32 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  20. Add wildcard character feature for folder in Custom log path

    introduce this wildcard character feature in log path future.
    For example
    C://test//log/.log

    32 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

  • Don't see your idea?

Feedback and Knowledge Base