How to send custom logs to Azure Log Analytics in Azure Synapse Analytics workspace with Managed Identity authentication?

Question

Hi Azure Community,

I want to send custom logs to Azure Log Analytics in Azure Synapse Analytics Notebook with Managed Identity authentication. I was following this tutorial to do so, but the authencation method in this tutorial focuses on Service Principal instead of Managed Identity. May I ask if there is a way that I can send custom logs to Log Analytics in Synapse Notebook with Managed Identity authentication? Thanks in advance!!

Below is the error message I got when trying the sample codes in the above tutorial:
dew1

Answer

Based on this old thread :

It's important to understand that Managed Identity feature in Azure is ONLY relevant when, in this case, the App Service is deployed. This would mean you would probably want to use DefaultAzureCredential() from the Azure.Identity library which is compatible both when running locally and for the deployed web app. This class will run down the hierarchy of possible authentication methods and when running locally I prefer to use a service principal. Run the following in Azure CLI to create a service principal: az ad sp create-for-rbac --name localtest-sp-rbac --skip-assignment. You then add the service principal localtest-sp-rbac in the IAM for the required Azure services. I recommend reading this article for more information and how to configure your local environment: https://learn.microsoft.com/en-us/azure/developer/python/configure-local-development-environment You can see the list of credential types that DefaultAzureCredential() goes through in the Azure docs.

How to send custom logs to Azure Log Analytics in Azure Synapse Analytics workspace with Managed Identity authentication?

1 answer