Skip to main content

Azure Backup

Thumbnail icon

The Azure Backup service provides simple, secure, and cost-effective solutions to back up your data and recover it from the Microsoft Azure cloud. This integration helps you in getting rich insights on your backups across your entire backup estate.

Log and metric types

For Azure Backup, you can collect the following logs and metrics:

  • Diagnostic logs. Azure Backup provides the following diagnostics events:
    • CoreAzureBackup
    • AddonAzureBackupProtectedInstance
    • AddonAzureBackupJobs
    • AddonAzureBackupPolicy
    • AddonAzureBackupStorage

To learn more about the schemas differences for Recovery Services vaults and Backup vaults and different fields collected, refer to Azure documentation.

Setup

Azure service sends monitoring data to Azure Monitor, which can then stream data to Eventhub. Sumo Logic supports:

You must explicitly enable diagnostic settings for each Azure Backup Vault you want to monitor. You can forward logs to the same event hub provided they satisfy the limitations and permissions as described here.

When you configure the event hubs source or HTTP source, plan your source category to ease the querying process. A hierarchical approach allows you to make use of wildcards. For example: Azure/AzureBackup/Logs, Azure/AzureBackup/Metrics.

Configure metrics collection

In this section, you will configure a pipeline for shipping metrics from Azure Monitor to an Event Hub, on to an Azure Function, and finally to an HTTP Source on a hosted collector in Sumo Logic.

  1. Configure an HTTP Source.
  2. Configure and deploy the ARM Template.
  3. Export metrics to Event Hub. Perform below steps for each Azure Backup Vault that you want to monitor.
    • Choose Stream to an event hub as destination.
    • Select Health.
    • Use the Event hub namespace created by the ARM template in Step 2 above. You can create a new Event hub or use the one created by ARM template. You can use the default policy RootManageSharedAccessKey as the policy name.

Configure logs collection

In this section, you will configure a pipeline for shipping diagnostic logs from Azure Monitor to an Event Hub.

  1. To set up the Azure Event Hubs in Sumo Logic, refer to Azure Event Hubs Source for Logs.
  2. To create the Diagnostic settings in Azure portal, refer to the Azure documentation for Recovery Service Vaults and Backup Vaults respectively. Perform below steps for each Azure Backup Vault that you want to monitor.
    • Choose Stream to an event hub as the destination.
    • Select the following events for respective vault type:
      • Backup Vault: CoreAzureBackup, AddonAzureBackupJobs, AddonAzureBackupPolicy, and AddonAzureBackupProtectedInstance.
      • Recover Service Vault: CoreAzureBackup, AddonAzureBackupJobs, AddonAzureBackupPolicy, AddonAzureBackupStorage, and AddonAzureBackupProtectedInstance.
    • Use the Event hub namespace and Event hub name configured in previous step in destination details section. You can use the default policy RootManageSharedAccessKey as the policy name.

Troubleshooting

HTTP Logs and Metrics Source used by Azure Functions

To troubleshoot metrics collection, follow the instructions in Collect Metrics from Azure Monitor > Troubleshooting metrics collection.

Status
Legal
Privacy Statement
Terms of Use

Copyright © 2024 by Sumo Logic, Inc.