Ends in

24-Hour Anniversary Sale Extension! $3 OFF ALL Reviewers

Azure Monitor

Azure Monitor

Azure Monitor Cheat Sheet

  • Monitoring tool for your Azure resources and applications.
  • A service to display the metrics of your resources. You can also configure alerts that send notifications when a threshold is breached.

azure monitor


  • Metrics represents a time-ordered set of data points that are published to Azure Monitor.
  • The metrics collected are stored for a maximum of 93 days.
  • Share your dashboards with other users using Azure Dashboards.
  • The data is stored as a set of records in either the Log Analytics or Application Insights.
  • You may use log analytics to collect and store the data from various log sources and use a custom query language to query them.
  • Tutorials dojo strip
  • Application Insights helps you detect and diagnose issues across applications and dependencies.
  • When important conditions are found in your monitoring data, you can create an alert rule to identify and address issues.
  • You can export basic usage metrics from your CDN endpoint with diagnostic logs.
  • To connect Azure to a supported IT Service Management (ITSM) product or service, you need to use an ITSM Connector (ITSMC)
  • ITSMC supports connections to the following ITMS tools: Cherwell, Provance, ServiceNow, and System Center Service Manager.

Log Analytics

  • All log data obtained by Azure Monitor shall be stored in a Log Analytics workspace
  • Query simple to advanced logs.
  • The data is retrieved from a workspace using a log query written using Kusto Query Language (KQL).
  • The queries that you can run are:
    • Table-based queries – the query organizes log data into tables.
    • Search queries – use this query if you need to find a specific value in your table.
    • Sort and top – to display the results in a particular order, you must sort the preferred column. To get the latest records in the entire table, you can use top.
    • Where – this operator allows you to add a filter to a query. You can use different expressions when writing filter conditions.
    • Time filter in query – you can define a specific time range by adding the time filter to the query.
    • Project and Extend – project allows you to select specific columns and extend will add additional columns.
    • Summarize – you can identify a group of records and apply aggregations using the summarize operator.
  • If the query includes workspaces in 20 or more regions, your query will be blocked from running.
  • Log Analytics results are limited to a maximum of 10,000 records.
  • With a log analytics agent, you can collect logs and performance data from virtual or physical devices outside Azure.
  • Log analytics agent cannot send data to Azure Monitor Metrics, Azure Storage, or Azure Event Hubs.

Application Insights

  • Enables you to monitor custom events and metrics.
  • Monitor diagnostic trace logs from your application.
  • You can identify performance anomalies, diagnose issues, and understand user activities in live applications.
  • Monitor the performance, health, and running processes of virtual machines and virtual machines scale sets.
  • You can also monitor the performance, capacity, and availability of storage accounts.
  • Insights provide a comprehensive view of the performance, health, and utilization of container workloads in Azure Container Instances or clusters hosted on Azure Kubernetes Service.
  • Monitor the health and metrics of all network resources.
  • It provides a unified view of all Azure Key vaults’ requests, failures, operations, and latency.
  • Monitor the overall performance, capacity, failures, and operational health of all Azure Cosmos DB resources and Azure Cache for Redis.

Azure Monitor Pricing

  • You pay for the ingestion and retention of data in Log Analytics (per GB/month).
  • You are billed for the number of metrics you have per month.
  • There are no charges for health criteria alerts.

What is Azure Monitor?

Want to learn more about Azure? Watch the official Microsoft Azure YouTube channel’s video series called Azure Tips and Tricks.

Validate Your Knowledge

Question 1

Question Type: Multiple-choice

Your company has an Azure Log Analytics workspace in their Azure subscription.

You are instructed to find the error in the table named EventLogs.

Which log query should you run in the workspace?

  1. search in (EventLogs) "error"
  2. EventLogs | take 10
  3. search "error"
  4. EventLogs | sort by TimeGenerated desc

Correct Answer: 1

Azure Monitor is a service in Azure that provides performance and availability monitoring for applications and services in Azure, other cloud environments, or on-premises. Azure Monitor collects data from multiple sources into a common data platform where it can be analyzed for trends and anomalies. Rich features in Azure Monitor assist you in quickly identifying and responding to critical situations that may affect your application.

To retrieve data in the Log Analytics workspace, you need to use a Kusto Query Language (KQL). Remember that there are different types of log queries in Azure Monitor. Based on the given question, you only need to find the “error” in the table named “EventLogs.”

With search queries, you can find the specific value that you need in your table. This query searches the “TableName” table for records that contains the word “value”:

 search in (TableName) "value"

If you omit the in (TableName) part and just run the search "value", the search will go over all tables, which would take longer and be less efficient.

Hence, the correct answer is: search in (EventLogs) "error".

The option that says: EventLogs | take 10 is incorrect because this option would only take 10 results in the EventLogs table. Remember that the requirement in the scenario is to show all the logs containing the word “error” in the table named EventLogs.

The option that says: search "error" is incorrect because this query would search “error” in all the tables. Take note that you only need to query the table EventLogs.

The option that says: EventLogs | sort by TimeGenerated desc is incorrect because this query will only sort the entire EventLogs table by the TimeGenerated column.



Note: This question was extracted from our AZ-104 Microsoft Azure Administrator Practice Exams.

For more Azure practice exam questions with detailed explanations, check out the Tutorials Dojo Portal:

Microsoft Azure Practice Exams Tutorials Dojo

Azure Monitor References:


Tutorials Dojo portal

Enroll Now – Our AWS Certification Exam Reviewers

AWS Practice Exams Tutorials Dojo

FREE AWS Exam Readiness Digital Courses

Enroll Now – Our Azure Certification Exam Reviewers

azure reviewers tutorials dojo

Enroll Now – Our Google Cloud Certification Exam Reviewers

Tutorials Dojo Exam Study Guide eBooks

tutorials dojo study guide eBook

Subscribe to our YouTube Channel

Tutorials Dojo YouTube Channel

FREE Intro to Cloud Computing for Beginners

FREE AWS, Azure, GCP Practice Test Samplers

Recent Posts

AWS, Azure, and GCP Certifications are consistently among the top-paying IT certifications in the world, considering that most companies have now shifted to the cloud. Earn over $150,000 per year with an AWS, Azure, or GCP certification!

Follow us on LinkedIn, YouTube, Facebook, or join our Slack study group. More importantly, answer as many practice exams as you can to help increase your chances of passing your certification exams on your first try!

View Our AWS, Azure, and GCP Exam Reviewers Check out our FREE courses

Our Community

passing rate
Around 95-98% of our students pass the AWS Certification exams after training with our courses.
Over 200k enrollees choose Tutorials Dojo in preparing for their AWS Certification exams.
Our courses are highly rated by our enrollees from all over the world.

What our students say about us?