- Connect VMs To Log Analytics
- Setup Performance Counters
- Enable Azure Monitor for VM
- Enable Update Management
- Enable Inventory & Change Tracking
- Activity Log to Log Analytics Workspace
- Enable NSG Flow logs & Traffic Analytics
- Azure Portal
- Or through Powershell
Add Linux and Windows Performance Counters configuration for Log Analytics agent to collect from VMs
Go to Network Watcher -> NSG Flow logs and watch out for NSG with Status "Disabled".
Select NSG with Disabled status and select
- Flow logs = "On"
- Flow Logs version = 2
- select a storage account to keep the raw logs
- Go to Traffic Analytics status switch to "On" to enable Traffic Analytics
- select Log Analytics to store aggregated logs of Traffic Analytics