Azure Monitor Agent is implemented as an Azure VM extension with the details in the following table. You can install it by using any of the methods to install virtual machine extensions including the methods described in this article.
| Property | Windows | Linux |
|---|---|---|
| Publisher | Microsoft.Azure.Monitor | Microsoft.Azure.Monitor |
| Type | AzureMonitorWindowsAgent | AzureMonitorLinuxAgent |
| TypeHandlerVersion | See Azure Monitor agent extension versions | Azure Monitor agent extension versions |
- Ingestion-Time Transformations
- Filtering
- Scoping
- Multi-Homing
- Prerequisites
- Permissions
- Deployment/Management
- Azure/Non-Azure
- To install the agent on physical servers and virtual machines hosted outside of Azure (that is, on-premises) or in other clouds, you must install the Azure Arc Connected Machine agent first, at no added cost.
- Authentication
- Managed identity must be enabled on Azure virtual machines. Both user-assigned and system-assigned managed identities are supported.
- Networking
- Access
global.handler.control.monitor.azure.com<virtual-machine-region-name>.handler.control.monitor.azure.com- example: eastus2.handler.control.azure.com
- example: centralus.handler.control.azure.com
<log-analytics-workspace-id>.ods.opinsights.azure.com
- Access
- Permissions
- Installation
- Configuration
- Disk Space
- Log Rotation
- Log Retention
- Data Collection Rule(s)
- Sentinel Syslog Forwarder Data Collection Rule
- /var/opt/microsoft/azuremonitoragent
- /etc/opt/microsoft/azuremonitoragent/mdsd.xml
- /etc/rsyslog.d/10-azuremonitoragent.conf
- /run/azuremonitoragent/
- /etc/logrotate.d/rsyslog
- /etc/rsyslog.conf
az vm extension image list
az deployment group create --resource-group "" --template-file "" --parameters "@<parameter-filename.json>"