question

EnterpriseArchitect avatar image
0 Votes"
EnterpriseArchitect asked GitaraniSharmaMSFT-4262 edited

What is not working across two different Azure Subscriptions?

Hi People,

We have multiple different objects spread across multiple different Azure Subscriptions like below:

Development-AzSubscription
ApplicationGateway\AppGW-Dev1
ApplicationGateway\AppGW-Dev2
...

Testing-AzSubscription
ApplicationGateway\AppGW-Test1
ApplicationGateway\AppGW-Test2

Production-AzSubscription
Event Hubs Namespace\3rd Party SIEM
ApplicationGateway\AppGW-Prod1
ApplicationGateway\AppGW-Prod2

I can send the logs for the production gateway with no problem as I can select from the below steps:
1. Go to the Diagnostic settings under AppGW
2. Click Add diagnostic setting, if it already exists, click Edit setting.
3. In the Destination details, click Stream to an event hub Event Hubs Namespace\3rd Party SIEM under Production-AzSubscription.

What other items is NOT working across two different Azure subscription and how to mitigate it?

Thanks in advance.










azure-cloud-servicesazure-event-hubsazure-firewallazure-web-application-firewall
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

GitaraniSharmaMSFT-4262 avatar image
0 Votes"
GitaraniSharmaMSFT-4262 answered GitaraniSharmaMSFT-4262 edited

Hello @EnterpriseArchitect ,

From your question, it looks like you are trying to enable diagnostic logs for Azure application gateway and were able to successfully enable it for your production gateway but are unable to do the same for Dev and testing subscriptions.

You have an event hub in your production subscription and you are trying to add the same event hub when enabling diagnostics for Dev and testing application gateways. Is that correct?

If that is correct, the Event Hubs namespace does not have to be in the same subscription as the subscription that's emitting logs, as long as you have appropriate RBAC access to both subscriptions and both subscriptions are in the same AAD tenant. So I would recommend you to check your RBAC access for all 3 subscriptions and also check if they are in the same AAD tenant.

For more details, please refer the below articles:
https://docs.microsoft.com/en-us/azure/application-gateway/application-gateway-diagnostics#enable-logging-through-the-azure-portal
https://docs.microsoft.com/en-us/azure/azure-monitor/platform/diagnostic-settings#event-hub

Hope this helps!

Kindly let us know if the above helps or you need further assistance on this issue.



Please don’t forget to "Accept the answer" wherever the information provided helps you, this can be beneficial to other community members.

· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hi @EnterpriseArchitect ,

Any update on this post?

If the suggested response helped you resolve your issue, please don't forget to "Accept the answer" for the benefit of other community members.

Thanks,
Gita

0 Votes 0 ·

Hi @EnterpriseArchitect ,

Any update on this post?

If the suggested response helped you resolve your issue, please don't forget to "Accept the answer" for the benefit of other community members.

Thanks,
Gita

0 Votes 0 ·