Azure Data Explorer
An Azure data analytics service for real-time analysis on large volumes of data streaming from sources including applications, websites, and internet of things devices.
484 questions
1 answer
Events for Servers
I can see logs under Advanced Hunting in the below portal for workstations. How can I see same data on-prem servers that have been onboarded and connect to LAW(Log analytics Workspace). I want IdentityLogonEvents and DeviceNetworkEvents Microsoft 365…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 69%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER7%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
How to purchase more Storage for Azure Data Explorer
We are planning to use the Standard_E8a_v4 SKU for our Requiremnet but the Storage capacity for the same is only 127 GB SSD and 64 GB Cache. Is there a way to purchase more Storage Space for the mentioned SKU.
asked 2021-01-21T16:10:32.62+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(105.60000000000001, 60%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESK%3C/text%3E%3C/svg%3E)
Srivatsan kothandraman
41
Reputation points
commented 2021-01-25T19:36:50.073+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 9%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKM%3C/text%3E%3C/svg%3E)
KranthiPakala-MSFT
46,422
Reputation points Microsoft Employee
2 answers
One of the answers was accepted by the question author.
Project/Extract from additional data fields
How can I project CVE titles from this. Some have more than 1 as in below example, and some don't have any. I ultimately want server names and CVE columns either empty or ith Title value Below is example of what I am running in log analytics to extract…
3 answers
Injest xml from blob into Azure Data Explorer
I have some test xml files stored as azure storage blobs that I would like to injest into Azure Data Explorer. I created a table with a single raw column. I'm having issues injesting the blob because there is no RAW format in the One Click wizard. Is…
asked 2021-01-19T14:38:34.7+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(41.6, 4%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMK%3C/text%3E%3C/svg%3E)
Michael Koerner
1
Reputation point
answered 2021-01-22T20:35:22.99+00:00
Michael Koerner
1
Reputation point
1 answer
One of the answers was accepted by the question author.
What is CoreUtilizationCoefficient w.r.t the Export Capacity of the ADX.
Hi All, I am updating the value of CoreUtilizationCoefficient to increase the Export Capacity of ADX. As I increase this value the number capacity of Export Increases. I went through this documentation that explains what CoreUtilizationCoefficient…
asked 2021-01-08T15:37:54.727+00:00
Srivatsan kothandraman
41
Reputation points
accepted 2021-01-14T05:35:15.753+00:00
Srivatsan kothandraman
41
Reputation points
1 answer
One of the answers was accepted by the question author.
azure data explorer function with parameter for 'by' condition
Hi, is there a way to add parameter to my ADX function in order to summarize value by different dimension. for example let say I have country and city in my table. I would like to create a function with a parameter to specificy if it needs to summarize…
asked 2021-01-06T03:32:07.277+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(262.40000000000003, 7.000000000000001%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERM%3C/text%3E%3C/svg%3E)
Romain Miralles
21
Reputation points
accepted 2021-01-12T02:14:05.027+00:00
Romain Miralles
21
Reputation points
2 answers
Create Power Bi Dataset using c# code. Use Azure data explorer connection as data source to power bi dataset.
Our requirement is to create power bi dataset using c# programmatically while using azure data explorer connection as data source to it. Can someone please help with the sample code to make connection to azure data explorer while creating pbi dataset …
Azure Cloud Services
Azure Cloud Services
An Azure platform as a service offer that is used to deploy web and cloud applications.
643 questions
Azure Data Explorer
Azure Data Explorer
An Azure data analytics service for real-time analysis on large volumes of data streaming from sources including applications, websites, and internet of things devices.
484 questions
C#
C#
An object-oriented and type-safe programming language that has its roots in the C family of languages and includes support for component-oriented programming.
10,291 questions
Not Monitored
Not Monitored
Tag not monitored by Microsoft.
36,203 questions
asked 2020-12-09T10:04:15.16+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(102.4, 3%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMK%3C/text%3E%3C/svg%3E)
Mohammed Kaleem
1
Reputation point
answered 2020-12-28T07:06:55.93+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(86.4, 24%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EUB%3C/text%3E%3C/svg%3E)
Uri Barash
176
Reputation points
1 answer
One of the answers was accepted by the question author.
Data load to ADX (Kusto) fails with error - UserErrorKustoWriteFailed
We are loading data from OData to Kusto table. In OData source, a query is given to pull specific columns data to Kusto. If the query has $top=10000 clause, ADF loads the data to Kusto table but when it is removed or 10001 or more is given, the…
asked 2020-12-09T08:26:11.817+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 14.000000000000002%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EV%3C/text%3E%3C/svg%3E)
Vaibhav_Chaudhari
21
Reputation points
accepted 2020-12-18T10:25:23.837+00:00
Vaibhav_Chaudhari
21
Reputation points
2 answers
Trying to link azure log analytics with AKS
am trying to enable log analytics for aks instance through portal it throws an error saying try to enable using Azure CLI. I am trying to enable using below command az aks enable-addons -a monitoring -n ExistingManagedCluster -g…
asked 2020-12-07T11:36:43.957+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(288, 48%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKG%3C/text%3E%3C/svg%3E)
Karthick G
101
Reputation points
answered 2020-12-16T09:29:37.307+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(262.40000000000003, 81%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
aravindan
1
Reputation point
1 answer
Improve Logic App Execution time
We have created a logic app which would read the data from a Staging table from Azure Data Explorer and would expand the data using the Azure Data Explorer. Once expanded it would then push the data back to Azure Data Explorer to another table. This…
asked 2020-12-12T09:18:53.613+00:00
Chandan B
1
Reputation point
answered 2020-12-15T13:43:11.997+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(89.60000000000001, 68%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJM%3C/text%3E%3C/svg%3E)
JayaC-MSFT
5,526
Reputation points
0 answers
Ingest into Azure Data Explorer failing through Azure Data Factory pipeline
I have created a Azure Data Factory pipeline to copy data from On- Premise Sql server to a Kusto cluster.I have created a service principal and given it admin permission on the Kusto database in Azure Data Explorer.Also used this service principal for…
asked 2020-11-18T07:10:29.487+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(313.6, 52%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAR%3C/text%3E%3C/svg%3E)
Ashutosh Rai (Tata Consultancy Services Ltd)
1
Reputation point
commented 2020-12-15T08:29:30.097+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(217.60000000000002, 71%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVB%3C/text%3E%3C/svg%3E)
Vladik Branevich
1
Reputation point Microsoft Employee
1 answer
Is it possible to create connection in PowerBi dataset using the table existing in Azure Data Explorer programmatically(using c#)
We have tried following approaches but nothing helped: Approach 1 : Using ADOMD and AMO libraries create the dataset with data source connection as Azure Data Explorer Blocker : The challenge is, using ADOMD library the dataset is being created…
asked 2020-11-17T12:49:20.313+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 51%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESP%3C/text%3E%3C/svg%3E)
Sanjana P.S
1
Reputation point
commented 2020-12-10T04:54:28.77+00:00
PRADEEPCHEEKATLA-MSFT
77,901
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Azure Data Factory V2 Bug, Scheduled triggered Kusto result is wrong but manually triggered result is right
Hi all, I am a dev in MS and recently I created a Kusto pipeline on ADF, according to design, Kusto will execute at 9 am UTC Time everyday and return some data. However, I found that the scheduled triggered result is always wrong and large than the…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(208, 67%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EG%3C/text%3E%3C/svg%3E)
1 answer
Push Large Quantity of events to Event Hub
A service which is generating 7.2 B events in 30 mins Duration. Need to store these events in Azure Data Explorer. To send the data we are using EventHub since we can stream the data in realtime using the EventHubs. We are not able to send these many…
asked 2020-11-20T08:27:59.757+00:00
Chandan B
1
Reputation point
commented 2020-11-25T20:31:15.55+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(172.8, 70%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMM%3C/text%3E%3C/svg%3E)
MartinJaffer-MSFT
26,031
Reputation points
1 answer
Custom aggregate function on summarize
Hi at all, i want calculate a statistic mode on a colummn during summarize a table. My CalculateMode functions that i try are: .create function CalculateMode(Action:int, Asset:string, Start:long, End:long) { Event | where JsonPath…
1 answer
One of the answers was accepted by the question author.
Ingesting json events with various schemas from Blob Storage to Azure Data Explorer
Hi, We're a game company using PlayFab for our backend. Play sessions events are created by PlayFab and are automatically sent to a blob storage in Azure. I created an Azure Data Explorer Database which ingests these events whenever the blob storage…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 33%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EF%3C/text%3E%3C/svg%3E)
0 answers
My partitions are returning inconsistent results (Mapped JSON file data)
I have a set of tables based on a number of JSON files taken from a data lake v2 container. I'm building an external table using derived data from JSON mapping, then using derived columns based on those columns to generate an identifier. When I go to…
asked 2020-10-09T21:00:12.793+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 71%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EME%3C/text%3E%3C/svg%3E)
Mark Ehlke
1
Reputation point
commented 2020-10-15T17:19:26.137+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(192, 26%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHM%3C/text%3E%3C/svg%3E)
HimanshuSinha-msft
19,381
Reputation points Microsoft Employee
0 answers
Azure: querying KQL from SSMS
Hi, just wondering about if we have the ability to call Graph queries from on prem SSMS, for example a simplest query enumerating all the resources under 1 subscription Thanks for your inputs,
asked 2020-08-26T12:49:27.61+00:00
Northface
161
Reputation points
commented 2020-09-08T18:10:05.373+00:00
HimanshuSinha-msft
19,381
Reputation points Microsoft Employee
2 answers
Abnormal behaviour when inserting very large value in decimal column in azure data explorer
So I tried to ingest very large values in decimal column of azure data explorer, it succeeded. But then when I tried to fetch the rows it is showing empty. I ran the following queries : .create table test_decimal_table(id:decimal) .ingest inline…
asked 2020-06-23T10:39:32.013+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(284.8, 61%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKP%3C/text%3E%3C/svg%3E)
Kamaljit Pati
1
Reputation point
commented 2020-07-23T23:14:40.73+00:00
MartinJaffer-MSFT
26,031
Reputation points
1 answer
One of the answers was accepted by the question author.
Are Azure data explorer clusters storage and compute dedicated?
Hi there, we are working in highly complaint environment and we want to store data in Azure Data Explorer. When I tried to create them, it did not gave me and option to create dedicated cluster for our Subscription. May be it is dedicated by default.…
asked 2020-07-21T20:52:49.287+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(89.60000000000001, 92%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EU2%3C/text%3E%3C/svg%3E)
Unknown-2795
51
Reputation points
accepted 2020-07-22T20:17:23.723+00:00
Unknown-2795
51
Reputation points