Skip to content
/ AzureMonitorStarterPacks Public

A project to create a framework for workloads and services monitoring in Azure

License

MIT license
47 stars 17 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Azure/AzureMonitorStarterPacks

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

304 Commits
.VSCodeCounter/2023-12-18_09-26-04
.VSCodeCounter/2023-12-18_09-26-04
 
 
.github
.github
 
 
.vscode
.vscode
 
 
Docs
Docs
 
 
Packs
Packs
 
 
misc/packs
misc/packs
 
 
modules
modules
 
 
setup
setup
 
 
tools
tools
 
 
.gitignore
.gitignore
 
 
.gitmodules
.gitmodules
 
 
CODE_OF_CONDUCT.md
CODE_OF_CONDUCT.md
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
SECURITY.md
SECURITY.md
 
 
SUPPORT.md
SUPPORT.md
 
 

Repository files navigation

Azure Monitoring Packs

FastTrack for Azure - Monitoring Starter Packs (MonStar Packs)

Objectives

  • Minimize the initial ramp up required for customers, in multiple aspects of the Azure technologies to deploy basic monitoring.

  • Minimize the need for the Customer to determine the minimal monitoring items for a certain type of workload

  • Provide best practices out of the box on items that need monitoring for different workloads. The Monitoring Packs work closely wit the Azure Monitor Baseline Alerts AMBA and the Azure Monitor teams to provide an comprehensive and aligned monitoring solution.

  • Create a framework for collaboration that will make it easy to add new monitored technologies.

For a detailed solution anatomy, please refer to Solution Anatomy

Pre-requisites and recommendations

  • Azure Subscription - an Azure subscription to deploy the components
  • A Management group structure with at least one management group. Most of the elements like policies and permissions need to be deployed at a management group level.

Setup

The Main solution can be deployed by clicking the link below to the respective cloud.

Deploy to Azure

Deploy to Azure Gov

Initial Configuration

Once the deployment is completed, the following steps need to be completed:

  • Navigate to the recently deployed resource group and find the workbook name "Azure Monitor Starter Packs Extended". Open the workbook and click on the "Configuration" tab. This will open a new tab with the configuration page.

alt text

Once the parameters are configured, make sure to save the workbook.

The first time certain areas are accessed, the following configuration will need to be accepted:

alt text

Monitoring Packs

Packs can also be deployed separately. However, the main solution needs to be deployed first. The packs can be deployed by clicking the link in the page below.

Review Packs documentation here.

Multi-region Considerations

If you are deploying the solution in multiple regions, a few additional steps are required. The following steps need to be completed:

  • For discovery and VM Application dependent components (ADDS), the VM Application versions need to have a replica in each region where VMs will be monitored.
  • For the Data Collection rules, a data collection endpoint needs to be created in each region. The data collection endpoint allows for the agent to receive configuration in the specific region. The data collection endpoint is assigned after the data collection rule association has been created.

Grafana Dashboards

Each pack may have its own Grafana dashboard. The Grafana dashboards are deplyed as a package during the packs deployment. Using Grafana is optional but will limit the visuazliation capabilities of the solution. In order for the current user to have access to the Grafana environment, the user needs to be added to the Grafana Admins group. This can be done by running the following these instructions.

  1. Navigate the recently deployed Grafana environment and click on Access Control (IAM) and click on Add role assignment.

Alt text

Alt text

  1. Select the proper user or users. The process may take a few minutes to assign the proper permissions.

Network Isolation (Private Endpoints)

The solution can work with network isolation. By default, the components are deployed with public endpoints. The following components can be isolated (click the links for details):

The Compute Gallery and the VM Application Gallery are not supported with network isolation.

Removing the solution

In order to remove the solution, you can run the following script in this link. The script will remove all the resources created by the solution.

  • Open the Azure CLI with PowerShell:
wget https://raw.githubusercontent.com/Azure/AzureMonitorStarterPacks/main/tools/cleanup.ps1
./cleanup.ps1 -RG <Resource Group Name> -RemoveAll

Alternatively, you can select to remove specific components of the solution by using the following parameters:

  • RemovePacks : Removes all the packs deployed by the solution
  • RemoveAMAPolicySet : Removes the policy set deployed by the solution
  • RemoveMainSolution : Removes the main components of the deployed solution
  • RemoveDiscovery : Removes the discovery deployed by the solution

Once completed, some resources will remain in the resource group. These resources are not removed by the script and need to be removed manually. The resources are:

  • Storage Account
  • Log Analytics Workspace
  • Action Group(s)

Note: If the gallery is not removed in the first run, please run the command again.

Note: The Azure Managed Grafana environment requires about 10 minutes to be removed. Once finished, the resource group can be removed.

Note 2: To completeley remove the Log Analytics workspace, use the -ForceDelete parameter. This will remove the workspace and all the data in it (ignoring the retention period).

Example:

remove-AzOperationalInsightsWorkspace -ResourceGroupName <Resource Group> -Name <Workspace name> -ForceDelete -force

Telemetry

Microsoft can correlate these resources used to support the deployments. Microsoft collects this information to provide the best experiences with their products and to operate their business. The telemetry is collected through customer usage attribution. The data is collected and governed by Microsoft's privacy policies, located at https://www.microsoft.com/trustcenter.

If you don't wish to send usage data to Microsoft, you can disable telemetry during setup.

Project Bicep collects telemetry in some scenarios as part of improving the product.

Authoring Guide

Click here for guidance on how to create new packs.

Contributing

This project welcomes contributions and suggestions. Most contributions require you to agree to a Contributor License Agreement (CLA) declaring that you have the right to, and actually do, grant us the rights to use your contribution. For details, visit https://cla.opensource.microsoft.com.

When you submit a pull request, a CLA bot will automatically determine whether you need to provide a CLA and decorate the PR appropriately (e.g., status check, comment). Simply follow the instructions provided by the bot. You will only need to do this once across all repos using our CLA.

This project has adopted the Microsoft Open Source Code of Conduct. For more information see the Code of Conduct FAQ or contact opencode@microsoft.com with any additional questions or comments.

Trademarks

This project may contain trademarks or logos for projects, products, or services. Authorized use of Microsoft trademarks or logos is subject to and must follow Microsoft's Trademark & Brand Guidelines. Use of Microsoft trademarks or logos in modified versions of this project must not cause confusion or imply Microsoft sponsorship. Any use of third-party trademarks or logos are subject to those third-party's policies.

About

A project to create a framework for workloads and services monitoring in Azure

Resources

Readme

License

MIT license

Code of conduct

Code of conduct

Security policy

Security policy
Activity
Custom properties

Stars

47 stars

Watchers

6 watching

Forks

17 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors 6

Languages