Azure Monitor 资源日志/Log Analytics 表

  • 项目

Azure Monitor 资源日志是 Azure 服务发出的日志,用于描述这些服务或资源的操作。 通过 Azure Monitor 提供的所有资源日志都共享一个常见的顶级架构。 每个服务都灵活地为其自己的事件发出唯一属性。 导出到 Log Analytics 工作区 时,日志存储在表中。 这组文章包含 Log Analytics 表的字段定义。 Log Analytics 工作区中还提供了表定义。

资源日志/Log Analytics 表

Analysis Services

microsoft.analysisservices/servers

API 管理服务

Microsoft.ApiManagement/service

应用服务

Microsoft.Web/sites

适用于容器的应用程序网关

Microsoft.ServiceNetworking/TrafficControllers

应用程序网关

Microsoft.Network/applicationGateways

Application Insights

microsoft.insights/components

自动化帐户

Microsoft.Automation/AutomationAccounts

AVS 私有云

microsoft.avs/privateClouds

Azure Active Directory 日志

microsoft.aadiam/tenants

Azure AD 域服务

Microsoft.AAD/domainServices

适用于 FHIR 的 Azure API

Microsoft.HealthcareApis/services

已启用 Azure Arc 的 Kubernetes

Microsoft.Kubernetes/connectedClusters

Azure Arc 预配群集

Microsoft.HybridContainerservice/Provisionedclusters

Azure 证明

Microsoft.Attestation/attestationProviders

Azure 自治开发平台工作区

Microsoft.AutonomousDevelopmentPlatform/workspaces

Azure 区块链服务

Microsoft.Blockchain/blockchainMembers

Azure Redis 缓存

microsoft.cache/redis

Azure Cache for Redis Enterprise

Microsoft.Cache/redisEnterprise

Azure CloudHsm

Microsoft.HardwareSecurityModules/cloudHsmClusters

Azure Cosmos DB

Microsoft.DocumentDb/databaseAccounts

Azure Cosmos DB for MongoDB (vCore)

Microsoft.DocumentDB/mongoClusters

Azure Cosmos DB for PostgreSQL

Microsoft.DBForPostgreSQL/servergroupsv2

Azure 数据资源管理器群集

Microsoft.Kusto/Clusters

Azure Data Manager for Energy

Microsoft.OpenEnergyPlatform/energyServices

Azure 数据传输

Microsoft.AzureDataTransfer/connections

Azure Database for MariaDB 服务器

Microsoft.DBforMariaDB/servers

Azure Database for MySQL 灵活服务器

Microsoft.DBForMySQL/flexibleServers

Azure Database for MySQL 服务器

Microsoft.DBforMySQL/servers

Azure Database for PostgreSQL 灵活服务器

Microsoft.DBForPostgreSQL/flexibleServers

Azure Database for PostgreSQL 服务器

Microsoft.DBforPostgreSQL/servers

Azure Database for PostgreSQL服务器 V2

Microsoft.DBforPostgreSQL/serversv2

Azure Databricks 服务

Microsoft.Databricks/workspaces

Azure 数字孪生

Microsoft.DigitalTwins/digitalTwinsInstances

Azure HPC 缓存

Microsoft.StorageCache/caches

Azure 负载测试

Microsoft.LoadTestService/loadtests

Azure 托管 CCF

Microsoft.ConfidentialLedger/ManagedCCFs

Azure Managed Instance for Apache Cassandra

Microsoft.DocumentDB/cassandraClusters

Azure 托管 Lustre

Microsoft.StorageCache/amlFilesytems

适用于 Grafana 的 Azure 托管工作区

Microsoft.Dashboard/grafana

Azure Monitor 自动缩放设置

Microsoft.Insights/AutoscaleSettings

Azure Monitor 工作区

Microsoft.Monitor/accounts

Azure 操作员见解 - 数据产品

Microsoft.NetworkAnalytics/DataProducts

Azure PlayFab

Microsoft.PlayFab/titles

Azure 资源组

resourceGroup

Azure Sentinel

Microsoft.SecurityInsights/securityInsights

Azure Sentinel CEF 表

Microsoft.SecurityInsights/CEF

Azure Sentinel Web 会话日志

Microsoft.SecurityInsights/WebSessionLogs

Azure Sphere

Microsoft.AzureSphere/catalogs

Azure Spring Apps

Microsoft.AppPlatform/Spring

Azure Stack HCI

Microsoft.AzureStackHCI/VirtualMachines

Azure Stack HCI

Microsoft.AzureStackHCI/clusters

Azure 存储移动程序

Microsoft.StorageMover/storageMovers

Azure 订阅

订阅

Azure 流量收集器

Microsoft.NetworkFunction/AzureTrafficCollectors

Azure Virtual Network Manager

Microsoft.Network/networkManagers

堡垒

Microsoft.Network/bastionHosts

Batch 帐户

microsoft.batch/batchaccounts

机器人服务

Microsoft.BotService/botServices

CDN 配置文件

Microsoft.Cdn/profiles

混沌试验

Microsoft.Chaos/experiments

认知服务

microsoft.cognitiveservices/accounts

通信服务

Microsoft.Communication/CommunicationServices

容器应用

Microsoft.App/managedEnvironments

容器注册表

Microsoft.ContainerRegistry/registries

数据收集规则

Microsoft.Insights/datacollectionrules

数据工厂

Microsoft.DataFactory/factories

Data Lake Analytics

Microsoft.DataLakeAnalytics/accounts

Data Lake Storage Gen1

Microsoft.DataLakeStore/accounts

Data Share

Microsoft.DataShare/accounts

资源的默认架构

默认值

Defender for Storage 设置

Microsoft.Security/DefenderForStorageSettings

桌面虚拟化应用程序组

Microsoft.DesktopVirtualization/applicationGroups

桌面虚拟化主机池

Microsoft.DesktopVirtualization/hostPools

桌面虚拟化工作区

Microsoft.DesktopVirtualization/workspaces

开发人员中心

Microsoft.DevCenter/devcenters

设备预配服务

Microsoft.Devices/ProvisioningServices

DNS 解析程序策略

Microsoft.Network/dnsResolverPolicies

Dynamics 365 Customer Insights

Microsoft.D365CustomerInsights/instances

事件网格域

Microsoft.EventGrid/domains

事件网格命名空间

Microsoft.EventGrid/namespaces

事件网格合作伙伴命名空间

Microsoft.EventGrid/partnerNamespaces

事件网格合作伙伴Topics

Microsoft.EventGrid/partnerTopics

事件网格系统Topics

Microsoft.EventGrid/systemTopics

事件网格主题

Microsoft.EventGrid/topics

事件中心

Microsoft.EventHub/namespaces

试验工作区

Microsoft.Experimentation/experimentWorkspaces

ExpressRoute 线路

Microsoft.Network/expressRouteCircuits

防火墙

Microsoft.Network/azureFirewalls

前门

Microsoft.Network/frontdoors

HDInsight 群集

Microsoft.HDInsight/Clusters

运行状况数据服务

Microsoft.HealthcareApis/workspaces

集成帐户。

Microsoft.Logic/integrationAccounts

Intune专家报告。

microsoft.intune/operations

IoT 中心

Microsoft.Devices/IotHubs

密钥保管库

Microsoft.KeyVault/vaults

Kubernetes 服务

Microsoft.ContainerService/managedClusters

负载均衡器

Microsoft.Network/LoadBalancers

Log Analytics 工作区

Microsoft.OperationalInsights/Workspaces

逻辑应用

Microsoft.Logic/workflows

机器学习

Microsoft.MachineLearningServices/workspaces

机器学习

Microsoft.MachineLearningServices/registries

媒体服务

Microsoft.Media/mediaservices

Microsoft 应用程序配置

Microsoft.AppConfiguration/configurationStores

Microsoft 互连缓存

Microsoft.ConnectedCache/CacheNodes

Microsoft 互联车辆平台

Microsoft.ConnectedVehicle/platformAccounts

Microsoft 容器实例服务

Microsoft.ContainerInstance/containerGroups

Microsoft Defender for Cloud

Microsoft.SecurityInsights/Purview

Microsoft Defender for Cloud

Microsoft.Security/Security

Microsoft Graph 日志

Microsoft.Graph/tenants

Microsoft Playwright Testing

Microsoft.AzurePlaywrightService/accounts

Microsoft Sentinel ASim

Microsoft.SecurityInsights/ASimTables

Microsoft Sentinel 审核事件 ASim 架构

Microsoft.SecurityInsights/AuditEventNormalized

Microsoft Sentinel 身份验证事件 ASIM 架构

Microsoft.SecurityInsights/AuthenticationEvent

Microsoft Sentinel DNS 活动 ASim 架构

Microsoft.SecurityInsights/DnsNormalized

Microsoft Sentinel 网络会话 ASim 架构

Microsoft.SecurityInsights/NetworkSessionNormalized

Microsoft Sentinel 进程事件 ASim 架构

Microsoft.SecurityInsights/ProcessEventNormalized

Microsoft.AgFoodPlatform/farmBeats

Microsoft.AgFoodPlatform/farmBeats

Microsoft.OpenLogisticsPlatform/Workspaces

Microsoft.OpenLogisticsPlatform/Workspaces

Microsoft.Purview/accounts

Microsoft.Purview/accounts

网络设备 (操作员 Nexus)

Microsoft.ManagedNetworkFabric/networkDevices

网络接口

Microsoft.Network/networkinterfaces

网络安全组

Microsoft.Network/NetworkSecurityGroups

网络安全外围

Microsoft.Network/NetworkSecurityPerimeters

网络观察程序 - 连接监视器

Microsoft.Network/NetworkWatchers/Connectionmonitors

Nexus BareMetal 计算机

Microsoft.NetworkCloud/bareMetalMachines

Nexus 群集

Microsoft.NetworkCloud/clusters

Nexus 存储设备

Microsoft.NetworkCloud/storageAppliances

NGINXaaS

NGINX.NGINXPLUS/nginxDeployments

Power BI 数据集

Microsoft.PowerBI/tenants

Power BI 数据集

Microsoft.PowerBI/tenants/workspaces

Power BI Embedded

microsoft.powerbidedicated/capacities

Project CI 工作区

Microsoft.DataCollaboration/workspaces

公共 IP 地址

Microsoft.Network/PublicIpAddresses

恢复服务保管库

Microsoft.RecoveryServices/Vaults

中继

Microsoft.Relay/namespaces

搜索服务

Microsoft.Search/searchServices

服务总线

Microsoft.ServiceBus/namespaces

Service Fabric 群集

Microsoft.ServiceFabric/clusters

SignalR

Microsoft.SignalRService/SignalR

SignalR 服务 WebPubSub

Microsoft.SignalRService/WebPubSub

SQL 数据库

Microsoft.Sql/servers/databases

SQL 托管实例

Microsoft.Sql/managedInstances

SQL Server

microsoft.sql/servers

存储帐户

Microsoft.Storage/storageAccounts

流分析作业

microsoft.streamanalytics/streamingjobs

Synapse 工作区

Microsoft.Synapse/workspaces

System Center Virtual Machine Manager

Microsoft.SCVMM/VirtualMachines

时序见解环境

Microsoft.TimeSeriesInsights/environments

流量管理器配置文件

Microsoft.Network/trafficmanagerprofiles

视频索引器

Microsoft.VideoIndexer/accounts

虚拟机规模集

Microsoft.Compute/virtualMachineScaleSets

虚拟机

Microsoft.Compute/VirtualMachines

虚拟网络网关

Microsoft.Network/virtualNetworkGateways

虚拟网络

Microsoft.Network/virtualNetworks

虚拟专用网络网关

Microsoft.Network/vpnGateways

VMware

Microsoft.ConenctedVMwarevSphere/VirtualMachines

工作负载监视器

Microsoft.WorkloadMonitor/monitors

Azure Monitor 见解的工作负载监视

Microsoft.Insights/WorkloadMonitoring

后续步骤