Deployment Architecture
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Can I use Splunk Enterprise Add on as log management tool for Azure Websites (AppService)?

Obula
New Member
‎02-14-2018 07:22 AM

Hello,

I am hosting a website in Azure Platform as a Service(PaaS).

I am using Azure AppService to host my website and a Linux VM hosting MySQL database and connected both.

What I am planning to do is integrate logs (Application, web server, Azure Activity logs, MySQL logs) and monitor them.

Is it possible to achieve this using Splunk enterprise?

Thanks

0 Karma
Reply

jconger
Splunk Employee
Splunk Employee
‎02-14-2018 01:25 PM

For this scenario, you can use the Splunk Add-on for Microsoft Cloud Services (a.k.a. MSCS) to pull in the data from the various components listed. Azure Websites expose data via an Azure Blob, and the MSCS add-on can pull in the data written there. For the Linux VMs, you can install a Universal Forwarder, or you can enable diagnostics within Azure and have Splunk pick up the diagnostic data. The MSCS add-on can also pick up the Azure Activity logs (a.k.a. Azure Audit logs).

0 Karma
Reply
Get Updates on the Splunk Community!

Get Your Exclusive Splunk Certified Cybersecurity Defense Engineer at Splunk .conf24 ...

We’re excited to announce a new Splunk certification exam being released at .conf24! If you’re headed to Vegas ...

Share Your Ideas & Meet the Lantern team at .Conf! Plus All of This Month’s New ...

Splunk Lantern is Splunk’s customer success center that provides advice from Splunk experts on valuable data ...

Combine Multiline Logs into a Single Event with SOCK: a Step-by-Step Guide for ...

Combine multiline logs into a single event with SOCK - a step-by-step guide for newbies Olga Malita The ...