Type of logs available in Azure

Azure produces extensive logging for every Azure service.  

Logs provide data to ensure that your application stays up and running in a healthy state. It also helps you to stave off potential problems or troubleshoot past ones. In addition, you can use logging data to gain deep insights about your application. That knowledge can help you to improve application performance or maintainability, or automate actions that would otherwise require manual intervention.

Microsoft Azure log data can be exported to Security Incident and Event Management (SIEM) systems for analysis and integration with third-party auditing solutions

Log Category Log Type Usages Integration
Activity Logs Control-plane events on Azure Resource Manager resources Provide insight into the operations that were performed on resources in your subscription. Rest API & Azure Monitor
Azure Diagnostic Logs frequent data about the operation of Azure Resource Manager resources in subscription Provide insight into operations that your resource performed itself Azure Monitor, Stream
AAD Reporting Logs and Reports User sign-in activities & System activity information about users and group management Graph API
Virtual Machine & Cloud Services Windows Event log & Linux Syslog Captures system data and logging data on the virtual machines and transfers that data into a storage account of your choice. Windows using WAD (Windows Azure Diagnostics storage) and Linux in Azure monitor
Storage Analytics Storage logging and provides metrics data for a storage account Provides insight into trace requests, analyze usage trends, and diagnose issues with your storage account. REST API or the client library
NSG (Network Security Group) Flow Logs JSON format and shows outbound and inbound flows on a per rule basis View information about ingress and egress IP traffic through a Network Security Group Network Watcher
Application insight Logs, exceptions,and custom diagnostics Application Performance Management (APM) service for web developers on multiple platforms. REST API, Power BI
Process Data / Security Alert Azure Security Center Alert, Log Analytics Alert Security information and alerts. REST APIs, JSON
Source: Microsoft

Comments