Deployment Architecture

Can I use Splunk Enterprise Add on as log management tool for Azure Websites (AppService)?

Obula
New Member

Hello,

I am hosting a website in Azure Platform as a Service(PaaS).

I am using Azure AppService to host my website and a Linux VM hosting MySQL database and connected both.

What I am planning to do is integrate logs (Application, web server, Azure Activity logs, MySQL logs) and monitor them.

Is it possible to achieve this using Splunk enterprise?

Thanks

0 Karma

jconger
Splunk Employee
Splunk Employee

For this scenario, you can use the Splunk Add-on for Microsoft Cloud Services (a.k.a. MSCS) to pull in the data from the various components listed. Azure Websites expose data via an Azure Blob, and the MSCS add-on can pull in the data written there. For the Linux VMs, you can install a Universal Forwarder, or you can enable diagnostics within Azure and have Splunk pick up the diagnostic data. The MSCS add-on can also pick up the Azure Activity logs (a.k.a. Azure Audit logs).

0 Karma
Get Updates on the Splunk Community!

Take Your Breath Away with Splunk Risk-Based Alerting (RBA)

WATCH NOW!The Splunk Guide to Risk-Based Alerting is here to empower your SOC like never before. Join Haylee ...

SignalFlow: What? Why? How?

What is SignalFlow? Splunk Observability Cloud’s analytics engine, SignalFlow, opens up a world of in-depth ...

Federated Search for Amazon S3 | Key Use Cases to Streamline Compliance Workflows

Modern business operations are supported by data compliance. As regulations evolve, organizations must ...