How can we improve Azure Log Analytics ?

Expand Data Retention for Security and Audit IP

Provide to ability to expand the data retention to 3-8 years. Some customers do have compliance rules to save their security related data for 8 years. When this could be accomplished we move our ACS implementations on premise to OpInsights.

148 votes
Vote
Sign in
(thinking…)
Sign in with: oidc
Signed in as (Sign out)
You have left! (?) (thinking…)
Arjan Vroege shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

7 comments

Sign in
(thinking…)
Sign in with: oidc
Signed in as (Sign out)
Submitting...
  • Michael Guest commented  ·   ·  Flag as inappropriate

    We too are looking at audit and compliance horizons beyond even two years. We would appreciate a native solution that would allow us to retain even beyond 8 years (storage and other charges applied of course).

  • Anonymous commented  ·   ·  Flag as inappropriate

    More and more customers want this! If they are willing to pay for the storage, we should offer this service.

  • Anonymous commented  ·   ·  Flag as inappropriate

    Any news about increasing retention period to 5-10 years ? With new GDPR we need more retention !

  • moelazha commented  ·   ·  Flag as inappropriate

    What would be the workaround if we need to retain to more than 2 years. like 5 or 10 years ?

  • Stanislav Zhelyazkov commented  ·   ·  Flag as inappropriate

    Agree that exporting even gigabytes of data with PowerShell or API will not be good experience. Imagine if you even have to export terabytes or petabytes. Exporting data may be should be implement on later stage as for now we are mainly trying to get customers into the service. Exporting probably can be achieved with one of those services where you send hard drives to the datacenter and after some period they are returned. At this point I think extending the retention period has bigger priority than exporting.

  • Nicklas Westerberg commented  ·   ·  Flag as inappropriate

    We need to keep data longer than 365 days (premium subscription), as this is an audit point of requirements on security events, so what we ask for is the possibility of a custom subscription or several choices for retaining data longer than one year.

Feedback and Knowledge Base