In Azure, want to send logs of Windows Virtual machines to 2 different Logs Analytics Workspace. I have different resource groups that want to collect logs there themselves in Logs Analytics and security logs(custom logs) to centralize(single) Logs Analytics Workspace from different resource groups.
Is it possible to send logs to multi-workspace analytics?
Since you have windows VM, you can setup to send to multiple Log Analytics Workspaces (multi-homing).
Extension is applicable for Azure Virtual Machines. Direct agent can be used for Azure and non-Azure Virtual Machines(on-premise). The agent isn't only for connecting to Azure Monitor. Other services such as Azure Security Center and Azure Sentinel rely on the agent and its connected Log Analytics workspace
If automatic provisioning is On, Security Center provisions the Log Analytics Agent on all supported Azure VMs and any new ones that are created.
Note: Windows agents can connect to up to four workspaces, even if
they are connected to a System Center Operations Manager management
group.
The Linux agent does not support multi-homing and can only connect to
a single workspace or management group.
Related
I'm new to Kusto queries.
I would like to use Azure Monitor queries to pull live stats for machine that are remotely connected to an on-prem RDP gateway we have set up. Lets call the server rdp1.
rdp1 is connected to Azure with Azure Arc. Are their Kusto queries that can list the currently connected rdp machine (and user) in on the rdp1 rdp gateway? Do I have to enable additional logging to be able to see this?
I am not able to use more than 2 concurrent connection for RDP through Azure Bastion service. By default it should be 25 [ https://learn.microsoft.com/en-us/azure/bastion/bastion-overview#limits ]. Azure servers only support 2 concurrent RDP sessions in reality, and these MUST be from two different user profiles, so I was unable to have more than 1 Bastion session per user profile on the Virtual Machine.
Any way I can achieve multiple concurrent connection like we used to have back then in Win Server 2003 remote terminals?
Although it is true that with the Azure Bastion can support up to 25 concurrent RDP, this is still dependent on the Azure Virtual Machines.
Azure servers only support 2 concurrent RDP sessions by default, and these MUST be from two different user profiles, hence the reason you will be unable to have more than 1 Bastion session per user profile on the Virtual Machine.
This behavior I believe is by design and is exclusive to Azure Servers from Windows 2012 R2 and above.
A Remote Desktop Service (RDS) license for your virtual machine server would need to be acquired for multiple concurrent sessions on the server, however, a workaround exists but this would last for about 120 days.
You would need to take the following steps:
Open up your Server Manager and select the Add roles and features option.
Select next and then select the Remote Desktop Services installation option.
Go ahead to select the Multipoint Services option.
Click on next and ensure you select the Restart the destination server automatically if required option and then Deploy.
This should restart your virtual machine server.
After the restart, on the Server Manager dashboard, select the Tools option, Remote Desktop Services and then the Remote Desktop Licensing Manager.
Right-click on your server name and Activate Server.
Let your Connection method be the Automatic connection.
Fill out the Company Information.
On the License Program, select the Services Provider License Agreement
Supply your license number, it could be any 7 digit number of your choice.
For your product Version and License Type, select your Server version and select the RDS Per User CAL as your license type.
Under Quantity, provide the number of licenses ( users) you need.
Once this is completed and you have set up the required number of user profiles, you should be able to have concurrent Bastion sessions on par with the number of user profiles set up on your server.
Yes, we are only able to create one session per user. As far as I know, we only have one live RDP connection per one user at a simultaneous time.
Also, because we cannot interact with the Bastion host directly, we are currently unable to configure RDP session policies as we do with Group Policy on-premises. Also, from Sam's answer here, this is the limit imposed by Windows Server on remote administration, you can only have 2 administrators connecting to a server to manage it at once. If you have interested in it, you may have a look at Azure RemoteApp like his answer.
I am experiencing a problem configuring the backup of an SQL database using Azure.
I have web application and an associated Azure SQL database. The app connects to the DB no problem. I have pasted the connection string provided to me by the Azure UI (Home -> SQL Databases -> My SQL Database) into the connection strings section of the configuration for the App Service (Home -> App Services -> My App Service -> Configuration). I created a backup of the App Service (Home -> App Services -> My App Service -> Backups -> Configuration) and ticked my connection string to be back up my database.
After about 20 minutes, the backup fails with the error:
A network-related or instance-specific error occurred while establishing a connection to SQL Server. The server was not found or was not accessible. Verify that the instance name is correct and that SQL Server is configured to allow remote connections. (provider: TCP Provider, error: 0 - No such host is known.)
I can connect to the database from the SQL Server Management Studio running on my laptop, and from code running on my laptop, using the server, username and password from the connection string, why can the backup not connect to the database?
Many thanks for any advice.
Linking the same question asked on MSDN: Azure SQL Database Backup Fails, cannot connect to the database.
Please see the Requirements and Restrictions details where this functionality is not supported, which I have listed below the applicable items that apply to your scenario:
The Backup and Restore feature requires the App Service plan to be in the Standard tier or Premium tier. For more information about scaling your App Service plan to use a higher tier, see Scale up an app in Azure. Premium tier allows a greater number of daily back ups than Standard tier.
You need an Azure storage account and container in the same subscription as the app that you want to back up. For more information on Azure storage accounts, see Azure storage account overview.
Backups can be up to 10 GB of app and database content. If the backup size exceeds this limit, you get an error.
Using a firewall enabled storage account as the destination for your backups is not supported. If a backup is configured, you will get failed backups.
If none of the above apply to you, then the issue is an IP Address issue in that you need to enable "Allow access to Azure services" in the firewall for your Azure SQL (logical) Server.
Additional troubleshooting can be performed by leveraging Application Insights to capture the backup failure event and then drill into the collected log detail to see what the specific error is.
So what I need is a remote/cloud Windows Server that I can connect to using RDP (or another remote connection program) where I can create users, groups, basically everything I could do with an on-premises Server instance. What I need though is to be able to setup all the office computers to authenticate through the cloud AD. I have no clue how to do this. I cannot have a Server running on-premises, period. Just need something where I can connect each computer to the remote domain/forest, hopefully using an IP to the server, and then have the employees be able to logon to any domain-connected PC using their credentials. Thank you for any and all answers! -Scott
You need Azure Active Directory. You can control everything with remote management in the way you have described. Per the provided link, "Azure Active Directory (Azure AD) provides an easy way for businesses to manage identity and access, both in the cloud and on-premises."
I have an ASP.NET MVC 4 web application. I need to be able to log controller logic.
Now i have created a Windows Azure project and added a web role and added this web application as a web-role.
How can I log when the the website is running as a cloud service?
Windows Azure Diagnostics enables you to collect diagnostic data from a worker role or web role running in Windows Azure.
The Windows Azure diagnostic monitor runs in Windows Azure and in the compute emulator to collect diagnostic data for a role instance. Log data will be periodically saved to a storage account where it can be examined.
For step-by-step instructions refer to Enabling Diagnostics in Windows Azure.
For additional information refer to Collect Logging Data by Using Windows Azure Diagnostics, Diagnostics and Debugging in Windows Azure and Windows Azure Diagnostics–From the Ground Up.
For advanced dianostic management features check Azure Diagnostics Manager (free trial available).