Azure offers many services that together provide a comprehensive solution for collecting, analyzing, and acting on telemetry from your applications and from the Azure resources that support them. These services can also monitor critical on-premises resources to provide a hybrid monitoring environment.
Azure Monitor provides a single unified hub for all monitoring and diagnostics data in Azure. You can use it to get visibility across your resources. With Azure Monitor, you can find and fix problems, optimize performance, and understand customer behavior.
Monitor and visualize metrics. Metrics are numerical values available from Azure resources that help you understand the health of your systems. You can customize charts for your dashboards, and use workbooks for reporting.
Query and analyze logs. Log Analytics provides a central repository to aggregate data from activity and diagnostic logs in Azure. From there, you can run queries to help troubleshoot issues or to visualize data. You can also collect logs from other monitoring and management solutions for your cloud or on-premises resources.
Set up alerts and actions. Alerts proactively notify you of critical conditions, so you can take corrective actions based on triggers from metrics, logs, or service health issues. You can set up different notifications and actions, and send data to your IT service management tools.
Azure Service Health provides a personalized view of the health of your Azure services and regions. Information about active issues is posted to Azure Service Health to help you understand the impact to your resources. Regular updates keep you informed as issues are resolved.
Set up Service Health alerts to notify you when service issues, planned maintenance, or other changes might affect the Azure services and regions you use. You can also view planned maintenance events that could affect the availability of your resources.
Azure Service Health includes:
Azure status: A global view of the health of Azure services.
Service health: A personalized view of the health of your Azure services.
Resource health: A deeper view of the health of each of your individual resources.
Action
To set up a Service Health alert:
Go to Service Health.
Select Health alerts.
Create a Service Health alert.
To set up an Azure Service Health alert, go to the Azure portal.
Azure Advisor is a free, personalized cloud consultant that helps you follow and implement best practices for Azure deployments. Advisor analyzes your resource configuration and usage telemetry, and then recommends solutions that can help optimize your environment. The recommendations are divided into the following categories:
High availability: To improve the continuity of your business-critical applications. Recommendations might include adding virtual machines to an availability set or adding geo-redundant endpoints.
Security: To detect threats and vulnerabilities that might lead to security breaches. Recommendations might include applying Azure Disk Encryption or enabling network security groups.
Performance: To improve the speed of your applications. Recommendations might include boosting SQL query performance by creating indexes or reconfiguring your Traffic Manager settings.
Cost: To optimize and reduce your overall Azure spending. Recommendations might include resizing or shutting down underused virtual machines or switching to Azure Reservations to lower total cost of ownership.
Operational excellence: To improve process and workflow efficiency and manageability. Recommendations might include setting up and enforcing Azure Policy rules, repairing invalid log alert rules, and configuring Service Health alerts.
Recommendations in Advisor are based on the resources you deploy and the actions you take in Azure. You can check Advisor regularly for the latest recommendations.
Microsoft Defender for Cloud also plays an important part in your monitoring strategy. Defender for Cloud can help you monitor the security of your machines, networks, storage, data services, and applications. It provides advanced threat detection by using machine learning and behavioral analytics to help identify active threats that target your Azure resources. Defender for Cloud also provides threat protection that blocks malware or other unwanted code, and reduces the surface area exposed to brute force and other network attacks.
When Defender for Cloud identifies a threat, it triggers a security alert with steps you need to take to respond to an attack. It also provides a report with information about the threat that was detected.
Defender for Cloud is offered in two tiers: free and standard. Features like security recommendations are available for free. The standard tier provides more protection like advanced threat detection and protection across hybrid cloud workloads.
Action
Try Standard tier for free for your first 30 days.
After you turn on and set up security policies for a subscription's resources, you can view the security state of your resources and any issues in the Prevention section. You can also view a list of those issues on the Recommendations tile.
To explore Microsoft Defender for Cloud, go to the Azure portal.