Coming Soon: GET:IT Endpoint Management 1-Day Conference on September 28th at 9:30 AM ET Coming Soon: GET:IT Endpoint Management 1-Day Conference on September 28th at 9:30 AM ET
Microsoft Azure

Next Generation Alerts Generally Available in Azure

This post will explain the improvements that Microsoft has made by making the next-generation alert system of Azure generally available.



Sponsored Content

Say Goodbye to Traditional PC Lifecycle Management

Traditional IT tools, including Microsoft SCCM, Ghost Solution Suite, and KACE, often require considerable custom configurations by T3 technicians (an expensive and often elusive IT resource) to enable management of a hybrid onsite + remote workforce. In many cases, even with the best resources, organizations are finding that these on-premise tools simply cannot support remote endpoints consistently and reliably due to infrastructure limitations.


An important part of any large or complex IT system is being able to ignore it until something goes wrong or, ideally, is about to go wrong. The key to this is being able to configure alerts if something breaks, an unexpected thing happens, or if a threshold is exceeded. Azure has had a system for creating alerts but it has a fragmented history. You could configure alerts in all kinds of places, such as a virtual machine, in a web app, in Log Analytics (OMS), in Azure Backup (recovery services vault), or in Activity Log. Slowly, all of this is being centralized into Azure Monitor. The real system for monitoring performance and managing all alerts in Azure.

The configuration of alerts was quite fragmented too. Recovery services vaults only handled notifications by email. Log Analytics had its own complete system. Activity Log used a combination of Action Groups and alerts, which offered a lot of functionality. Azure monitor resource alerts were more powerful than those in the recovery services vault but still didn’t offer alerts by SMS text message.

Next Generation Alerts

After a fairly long public preview, Azure has made the next generation alert system generally available. With this new system, we see a unification of the methods used by Activity Log and Azure Monitor resources.

Action Groups

An Action Group allows you to define how a notification is configured. You can select a method of notifying people, and how those people are notified:

  • SMS: You can configure text-based alerts to numbers in 15 countries
  • Email: Send an email to a system, person, or (preferably) a distribution list
  • Mobile App: Notifications can be pushed out via mobile apps hosted on Azure App Services
  • Voice: An alert can be sent out via a voice-based phone, currently limited to numbers in the USA

You can also configure automated notifications:

  • LogicApp: An Azure App Service that orchestrates a number of API-connected systems – the big brother of Office 365 Flow
  • Webhook: Execute a task on a third-party system
  • ITSM: Integrate with System Center Service Manager, ServiceNow, Provance, or Cherwell
  • Automation Runbook: Execute a PowerShell-based or Python-based script that is hosted in Azure Automation to perform a task either on-premises or in Azure

Creating a new Action Group in Azure Monitor [Image Credit: Aidan Finn]
Creating a New Action Group in Azure Monitor [Image Credit: Aidan Finn]

You can configure one or more Action Groups and reuse them with different alerts, depending on the scenario. For example, most alerts might notify administrators of an issue. Some results, such as a successful backup by Azure Backup, might result in an email to a mailbox for proof-of-backup only and others might require some sort of automated response.

Creating Alerts

You can create alerts in Azure Monitor. The process consists of the following steps:

  1. Select A Target: What is the scope of monitoring that can create the alert. This can be a subscription, a resource group, or a resource.
  2. Add Criteria: Define a condition to create an alert, such as something happening in Activity Log or a performance threshold of a resource.
  3. Define Alert Rules: Give the alert a name, a description, and set a severity to suit your business processes.
  4. Define Action Group: Create or select an existing action group.

This new system allows you to create alerts for entire groups of virtual machines or resources that we could not do before and create complex human or automated responses.

Merging of Functionality

Microsoft also recently announced that Log Analytics will be leveraging the new alert system found in the Azure Portal, giving evidence to the maturing alerting system of Microsoft’s cloud.

Related Topics:


Don't have a login but want to join the conversation? Sign up for a Petri Account

Comments (0)

Leave a Reply

Aidan Finn, Microsoft Most Valuable Professional (MVP), has been working in IT since 1996. He has worked as a consultant and administrator for the likes of Innofactor Norway, Amdahl DMR, Fujitsu, Barclays and Hypo Real Estate Bank International where he dealt with large and complex IT infrastructures and MicroWarehouse Ltd. where he worked with Microsoft partners in the small/medium business space.
Live Webinar: Active Directory Security: What Needs Immediate Priority!Live on Tuesday, October 12th at 1 PM ET

Attacks on Active Directory are at an all-time high. Companies that are not taking heed are being punished, both monetarily and with loss of production.

In this webinar, you will learn:

  • How to prioritize vulnerability management
  • What attackers are leveraging to breach organizations
  • Where Active Directory security needs immediate attention
  • Overall strategy to secure your environment and keep it secured

Sponsored by: