Let’s face it\u2014manually setting alert thresholds in Azure Monitor can feel like trying to hit a moving target while blindfolded. Just when you think you’ve nailed the perfect threshold, your application’s behavior decides to take a detour, leaving you drowning in false positives or, worse, missing critical alerts. Azure Monitor’s dynamic thresholds for log search alerts are here to save the day!<\/p>\n\n\n\n
Why Dynamic Thresholds Are a Game-Changer<\/strong><\/p>\n\n\n\n Dynamic thresholds in Azure Monitor analyze historical data to establish expected performance patterns, automatically adjusting alert thresholds as your application’s behavior changes.<\/p>\n\n\n\n <\/p>\n\n\n\n It’s still in Private Preview (boo!), but it won’t be long before we get our hands on it in public preview!<\/p>\n\n\n\n So what does it look like? Here is a sample ARM template that sets a dynamic threshold on CPU percentage – notice the new criterionType of DynamicThresholdCriterion.<\/p>\n\n\n\n Let’s face it\u2014manually setting alert thresholds in Azure Monitor can feel like trying to hit a moving target while blindfolded. Just when you think you’ve nailed the perfect threshold, your application’s behavior decides to take a detour, leaving you drowning in false positives or, worse, missing critical alerts. Azure Monitor’s dynamic thresholds for log search … Continue reading “Private Preview – Dynamic Log Alerts!”<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[4,27],"class_list":["post-709","post","type-post","status-publish","format-standard","hentry","category-uncategorized","tag-azure","tag-azure-monitor"],"_links":{"self":[{"href":"https:\/\/draith.com\/index.php?rest_route=\/wp\/v2\/posts\/709","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/draith.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/draith.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/draith.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/draith.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=709"}],"version-history":[{"count":1,"href":"https:\/\/draith.com\/index.php?rest_route=\/wp\/v2\/posts\/709\/revisions"}],"predecessor-version":[{"id":710,"href":"https:\/\/draith.com\/index.php?rest_route=\/wp\/v2\/posts\/709\/revisions\/710"}],"wp:attachment":[{"href":"https:\/\/draith.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=709"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/draith.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=709"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/draith.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=709"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}\n
{\n \"$schema\": \"https:\/\/schema.management.azure.com\/schemas\/2019-04-01\/deploymentTemplate.json#\",\n \"contentVersion\": \"1.0.0.0\",\n \"parameters\": {\n \"scheduledqueryrules_PerfDemoRule_name\": {\n \"defaultValue\": \"PerfDemoRule\",\n \"type\": \"String\"\n },\n \"workspaces_PerfDemoWorkspace_externalid\": {\n \"defaultValue\": \"\/subscriptions\/XXXX-XXXX-XXXX-XXXX\/resourceGroups\/XXXX\/providers\/Microsoft.OperationalInsights\/workspaces\/PerfDemoWorkspace\",\n \"type\": \"String\"\n }\n },\n \"resources\": [\n {\n \"type\": \"microsoft.insights\/scheduledqueryrules\",\n \"apiVersion\": \"2024-01-01-preview\",\n \"name\": \"[parameters('scheduledqueryrules_PerfDemoRule_name')]\",\n \"location\": \"eastus2\",\n \"properties\": {\n \"displayName\": \"[parameters('scheduledqueryrules_PerfDemoRule_name')]\",\n \"severity\": 3,\n \"enabled\": true,\n \"evaluationFrequency\": \"PT5M\",\n \"scopes\": [\n \"[parameters('workspaces_PerfDemoWorkspace_externalid')]\"\n ],\n \"targetResourceTypes\": [\n \"Microsoft.Compute\/virtualMachines\"\n ],\n \"criteria\": {\n \"allOf\": [\n {\n \"criterionType\": \"DynamicThresholdCriterion\",\n \"metricName\": \"Percentage CPU\",\n \"timeAggregation\": \"Average\",\n \"dimensions\": [\n {\n \"name\": \"Computer\",\n \"operator\": \"Include\",\n \"values\": [ \"*\" ]\n }\n ],\n \"alertSensitivity\": \"Medium\"\n }\n ]\n }\n }\n }\n ]\n}\n<\/code><\/pre>\n","protected":false},"excerpt":{"rendered":"