Microsoft Azure Web App
Azure Web Application Hosting Service
This source has been deprecated
observIQ is in the process of transitioning a subset of BindPlane's monitoring capabilities to the observIQ OpenTelemetry Collector. As a result, this Source is no longer publicly available in BindPlane. If you need access to this Source, please reach out to our support via chat or via [email protected].
Please refer to the Microsoft Azure Sources topic for additional information on how to configure the LPU, and general Azure Data Collection setup details.
Least Privileged User
Steps:
- Using the Azure CLI Client, find the Subscription ID and Tenant ID from your account list
- Create a custom RBAC role using the JSON provided. Include your Subscription ID and rename the file to azure.json
- Create an Active Directory Service Principal and assign the custom RBAC role t it.
Creating custom roles using the Azure CLI:
https://docs.microsoft.com/en-us/azure/role-based-access-control/custom-roles
Assigning roles using the Azure CLI:
https://docs.microsoft.com/en-us/azure/role-based-access-control/role-assignments-portal
{
"Name": "LPU App",
"Description": "LPU for Application, Covers Functions and Sites",
"Actions": [
"Microsoft.Web/*/read",
"Microsoft.Insights/metrics/*/read",
"Microsoft.Authorization/*/read"
],
"AssignableScopes": [
"/subscriptions/09373b6b-bc8b-4093-925d-eb87334c7d56"
]
}
Connection Parameters
| Name | Required? | Description |
|---|---|---|
| Subscription ID | Required | GUID Subscription ID |
| Tenant ID | Required | GUID Tenant ID (also known as Directory ID) |
| Client ID | Required | GUID Client ID (also known as Application ID) |
| Client Secret | Required | The Secret (also known as Key) corresponding to the Client ID. |
| Maximum HTTP Retry Time (seconds) | The maximum amount of time in seconds to retry each API request when the API is throttling. | |
| HTTP Request Timeout (seconds) | The maximum amount of time in seconds before a single HTTP request will fail. | |
| Monitor Metric Collection Level | Selects which monitor metrics should be collected. | |
| Filter By Resource Group Type | Selects whether to use a whitelist or blacklist when filtering by Resource Groups. | |
| Filter By Resource Group Whitelist | A comma separated list of resource groups to explicitly allow. A '*' character is used to represent 'all', and a blank string is used for 'none'. | |
| Filter By Resource Group Blacklist | A comma separated list of resource groups to filter out. A '*' character is used to represent 'all', and a blank string is used for 'none'. | |
| Filter By Tags Group Type | Selects whether to use a whitelist or blacklist when filtering by Resource Groups. | |
| Filter By Tags Group Whitelist | A comma separated list of tags to explicitly allow. Tags must follow the format <key:value>. Instead of a specific tag, or tag value, a '*' character is used to represent 'all'. A blank entry is treated as 'none'. | |
| Filter By Tags Group Blacklist | A comma separated list of tags to filter out. Tags must follow the format <key:value>. Instead of a specific tag, or tag value, a '*' character is used to represent 'all'. A blank entry is treated as 'none'. |
Metrics
API Usage
| Name | Description |
|---|---|
| Average Pages | The average amount of pages needed for a paged resource type. |
| Average Request Retries | The average number of retry requests per unique requests made. |
| Average Retry Attempts | The average number of retry requests made per unique request that was retried. |
| Average Retry Wait (Milliseconds) | The average amount of time retried requests spent waiting. |
| Client ID | The client ID used to make API calls. |
| Failed Requests | The total number of requests that returned a failure response. |
| Maximum Pages | The most amount of pages needed for a paged resource type. |
| Maximum Retries | The highest number of retries made for a single request. |
| Maximum Retry Wait (Milliseconds) | The most amount of time a retried request spent waiting. |
| Minimum Pages | The least amount of pages needed for a paged resource type. |
| Minimum Retry Wait (Milliseconds) | The least amount of time a retried request spent waiting. |
| Other Status Responses | The total number of successful requests that responded with some other accepted status. |
| Request Timeouts | The total number of requests that timed out waiting for a response. |
| Requests Retried | The number of unique requests that were retried. |
| Retry Status Responses | The total number of successful requests that responded with the status TOO MANY REQUESTS (429). |
| Retry Timeouts | The total number of requests that needed to be retried, but the request retry time exceeded the maximum retry time. |
| Status OK Responses | The total number of successful requests that responded with the status OK (200). |
| Subscription ID | The subscription ID used to make API calls. |
| Successful Requests | The total number of requests that returned a successful response. |
| Tenant ID | The tenant ID used to make API calls. |
| Total Monitor Requests | The total number of requests made to get monitor metrics. |
| Total Paged Requests | The total amount of resource types that required paging. |
| Total Requests | The total number of requests made during collection. |
| Total Retries | The total number of retry requests that were made. |
| Unique Monitor Requests | The number of unique requests made to get monitor metrics. |
| Unique Requests | The number of requests made with unique endpoints. |
Configuration
| Name | Description |
|---|---|
| Always On | True if Always On is enabled; otherwise, false |
| API Definition | The URL of the API definition |
| App Command Line | App command line to launch |
| Auto Heal Enabled | True if Auto Heal is enabled; otherwise, false |
| Auto Swap Slot | Auto-swap slot name |
| Connection Strings | Connection strings |
| CORS | The list of origins that should be allowed to make cross-origin calls |
| Default Documents | Default documents |
| Detailed Error Logging Enabled | True if detailed error logging is enabled; otherwise, false |
| Document Root | Document root |
| Handler Mapping Arguments | Command-line arguments to be passed to the script processor |
| Handler Mapping Extensions | Requests with this extension will be handled using the specified FastCGI application |
| Handler Mapping Script Processors | The absolute path to the FastCGI application |
| HTTP20 Enabled | Configures a web site to allow clients to connect over http2.0 |
| HTTP Logging Enabled | True if HTTP logging is enabled; otherwise, false |
| ID | Resource ID of the configuration |
| IP Security Restriction IP Addresses | IP addresses the security restriction is valid for |
| IP Security Restriction Subnet Masks | Subnet mask for the range of IP addresses the restriction is valid for |
| Java Container | Java container |
| Java Container Version | Java container version |
| Java Version | Java version |
| Linux FX Version | Linux App Framework and version |
| Load Balancing | Site load balancing strategy |
| Local MySQL Enabled | True to enable local MySQL; otherwise, false |
| Logs Directory Size Limit | HTTP logs directory size limit |
| Machine Key | Site MachineKey |
| Managed Pipeline Mode | Managed pipeline mode |
| Maximum CPU Usage (%) | Maximum allowed CPU usage |
| Maximum Disk Size (Megabytes) | Maximum allowed disk size usage |
| Maximum Memory (Megabytes) | Maximum allowed memory usage |
| Minimum TLS Version | The minimum version of TLS required for SSL requests |
| Name | Resource name of the configuration |
| .NET Framework Version | .NET Framework version |
| Node Version | Version of Node.js |
| Number Of Workers | Number of workers |
| PHP Version | Version of PHP |
| Publishing Username | Publishing user name |
| Python Version | Version of Python |
| Remote Debugging Enabled | True if remote debugging is enabled; otherwise, false |
| Remote Debugging Version | Remote debugging version |
| Request Tracing Enabled | True if request tracing is enabled; otherwise, false |
| Request Tracing Expiration Time | Request tracing expiration time |
| SCM Type | SCM type |
| Tracing Options | Tracing options |
| Type | Microsoft Azure resource type |
| Use 32-Bit Worker Process | True to use 32-bit worker process; otherwise, false |
| VNet Name | Virtual Network name |
| Web Sockets Enabled | True if WebSocket is enabled; otherwise, false |
Function
| Name | Description |
|---|---|
| App ID | Function App ID |
| Configuration HREF | Configuration URI |
| Files | List of files |
| HREF | The Function URI |
| ID | Resource ID of the function |
| Location | Resource location of the function |
| Name | Resource name of the function |
| Script HREF | Script URI |
| Script Root Path HREF | Script root path URI |
| Secrets File HREF | Secrets file URI |
| Type | Microsoft Azure resource type |
Site
| Name | Description |
|---|---|
| Admin Enabled | Whether or not the admin user is enabled |
| App Connections (Connections) | Connections |
| Availability State | Management information availability state for the app |
| Average Memory Working Set (Bytes) | Average memory working set |
| Average Response Time (Seconds) | Average Response Time |
| Certificates | The certificates associated with the web app |
| Client Affinity Enabled | True to enable client affinity; false to stop sending session affinity cookies, which route client requests in the same session to the same instance |
| Client Cert Enabled | True to enable client certificate authentication (TLS mutual authentication); otherwise false |
| Compute Mode | The compute mode for the website |
| Container Size | Size of the function container |
| CPU Time (Seconds) | CPU Time |
| CSRs | The certificate signing requests associated with the web app |
| Daily Memory Time Quota | Maximum allowed daily memory-time quota (applicable on dynamic apps only) |
| Data Received (Bytes) | Data In |
| Data Sent (Bytes) | Data Out |
| Default Host Name | Default hostname of the app |
| Deployment ID | Gets the unique identifier of the deployment in which the web app is running |
| Disabled Reason | The reason the site has been disabled |
| Enabled | Whether or not the app is enabled |
| Enabled Host Names | Enabled hostnames for the app |
| Function Execution Count | Function Execution Count |
| Function Execution Units | Function Execution Units |
| Handle Count | Handle Count |
| Host Names | Hostnames associated with the app |
| Host Names Disabled | True to disable the public hostnames of the app; otherwise, false. If true, the app is only accessible via API management process. |
| Hosting Environment | The name of the App Service Environment where the web app was created |
| Hosting Environment ID | Resource ID of the App Service Environment |
| Hosting Environment Profile | App Service Environment to use for the app |
| HTTP 101 | Http 101 |
| HTTP 2xx | Http 2xx |
| HTTP 3xx | Http 3xx |
| HTTP 401 | Http 401 |
| HTTP 403 | Http 403 |
| HTTP 404 | Http 404 |
| HTTP 406 | Http 406 |
| HTTP 4xx | Http 4xx |
| HTTP 5xx | Http Server Errors |
| HTTPS Only | Whether a web site is configured to accept only https requests. Issues redirect for http requests |
| ID | Site ID |
| Kind | Kind of site |
| Last Modified Time | Last time the app was modified |
| Location | Site location |
| Maximum Number Of Workers | Maximum number of workers. This only applies to Functions container |
| Memory Working Set (Bytes) | Memory working set |
| Mode | A string that represents the website mode |
| Name | Site name |
| Outbound IP Addresses | List of IP addresses that the app uses for outbound connections (e.g. database access). Includes VIPs from tenants that site can be hosted with current settings |
| Owner | The owner of the web app |
| Possible Outbound IP Addresses | List of IP addresses that the app uses for outbound connections (e.g. database access). Includes VIPs from all tenants |
| Repository Site Name | Name of the repository site |
| Requests (Requests) | Requests |
| Reserved | Whether or not the site is reserved |
| Resource Group | Name of the resource group the app belongs to |
| Runtime Availability State | The availability of the website |
| SCM Site Also Stopped | True to stop SCM (KUDU) site when the app is stopped; otherwise, false |
| Self Link | Direct URL to the website endpoint on Windows Azure Web Sites that includes the subscription ID, webspace name, and site name |
| Server Farm ID | Resource ID of the associated App Service plan |
| SKU | The name of the SKU for the web app |
| SSL Certificates | The SSL certificates associated with the site |
| State | Current state of the slot |
| Suspended Till | App suspended till in case memory-time quota is exceeded |
| Tags | Tags assigned to the site |
| Target Swap Slot | Specifies which deployment slot this app will swap into |
| Thread Count (Threads) | Thread Count |
| Traffic Manager Host Names | Azure Traffic Manager hostnames associated with the web app |
| Type | Resource type |
| Usage State | State indicating whether the app has exceeded its quota usage |
| Web Space | The name of the webspace in which the website is located |
Site Instance
| Name | Description |
|---|---|
| App Connections (Connections) | Connections |
| Average Memory Working Set (Bytes) | Average memory working set |
| Average Response Time (Seconds) | Average Response Time |
| CPU Time (Seconds) | CPU Time |
| Data Received (Bytes) | Data In |
| Data Sent (Bytes) | Data Out |
| Function Execution Count | Function Execution Count |
| Function Execution Units | Function Execution Units |
| Handle Count | Handle Count |
| HTTP 101 | Http 101 |
| HTTP 2xx | Http 2xx |
| HTTP 3xx | Http 3xx |
| HTTP 401 | Http 401 |
| HTTP 403 | Http 403 |
| HTTP 404 | Http 404 |
| HTTP 406 | Http 406 |
| HTTP 4xx | Http 4xx |
| HTTP 5xx | Http Server Errors |
| Instance | Instance |
| Memory Working Set (Bytes) | Memory working set |
| Parent ID | The ID of the parent site |
| Requests (Requests) | Requests |
| Thread Count (Threads) | Thread Count |
Slot
| Name | Description |
|---|---|
| Admin Enabled | Whether or not the admin user is enabled |
| App Connections (Connections) | Connections |
| Availability State | Management information availability state for the slot |
| Average Memory Working Set (Bytes) | Average memory working set |
| Average Response Time (Seconds) | Average Response Time |
| Certificates | The certificates associated with the web slot |
| Client Affinity Enabled | True to enable client affinity; false to stop sending session affinity cookies, which route client requests in the same session to the same instance |
| Client Cert Enabled | True to enable client certificate authentication (TLS mutual authentication); otherwise false |
| Compute Mode | The compute mode for the website |
| Container Size | Size of the function container |
| CPU Time (Seconds) | CPU Time |
| CSRs | The certificate signing requests associated with the web slot |
| Current Assemblies | The number of assemblies currently associated to the slot |
| Daily Memory Time Quota | Maximum allowed daily memory-time quota (slotlicable on dynamic slots only) |
| Data Received (Bytes) | Data In |
| Data Sent (Bytes) | Data Out |
| Default Host Name | Default hostname of the slot |
| Deployment ID | Gets the unique identifier of the deployment in which the web slot is running |
| Enabled | Whether or not the slot is enabled |
| Enabled Host Names | Enabled hostnames for the slot |
| Function Execution Count | Function Execution Count |
| Function Execution Units | Function Execution Units |
| Gen 0 Collections | Displays the number of times the generation 0 objects (that is, the youngest, most recently allocated objects) are garbage collected since the application started. |
| Gen 1 Collections | Displays the number of times the generation 1 objects are garbage collected since the application started |
| Gen 2 Collections | Displays the number of times the generation 2 objects are garbage collected since the application started |
| Handle Count | Handle Count |
| Host Names | Hostnames associated with the slot |
| Host Names Disabled | True to disable the public hostnames of the slot; otherwise, false. If true, the slot is only accessible via API management process. |
| Hosting Environment | The name of the slot Service Environment where the web slot was created |
| Hosting Environment ID | Resource ID of the slot Service Environment |
| Hosting Environment Profile | Slot Service Environment to use for the slot |
| HTTP 101 | Http 101 |
| HTTP 2xx | Http 2xx |
| HTTP 3xx | Http 3xx |
| HTTP 401 | Http 401 |
| HTTP 403 | Http 403 |
| HTTP 404 | Http 404 |
| HTTP 406 | Http 406 |
| HTTP 4xx | Http 4xx |
| Http Server Errors | Http Server Errors |
| HTTPS Only | Whether a slot is configured to accept only https requests. Issues redirect for http requests |
| ID | Resource ID of the configuration |
| I/O Other Data (Bytes per Second) | Other I/O data during monitoring period |
| I/O Other Operations (Operations per Second) | Other I/O |
| I/O Read Data (Bytes per Second) | Average data read from disk during monitoring period |
| I/O Read Operations (Operations per Second) | Disk read I/O |
| I/O Write Data (Bytes per Second) | Average data written from disk during monitoring period |
| I/O Write Operations (Operations per Second) | Disk write I/O |
| Kind | Kind of site |
| Last Modified Time | Last time the slot was modified |
| Location | Site location |
| Maximum Number Of Workers | Maximum number of workers. This only slotlies to Functions container |
| Memory Working Set (Bytes) | Memory working set |
| Mode | A string that represents the website mode |
| Name | Site name |
| Outbound IP Addresses | List of IP addresses that the slot uses for outbound connections (e.g. database access). Includes VIPs from tenants that site can be hosted with current settings |
| Owner | The owner of the web slot |
| Possible Outbound IP Addresses | List of IP addresses that the slot uses for outbound connections (e.g. database access). Includes VIPs from all tenants |
| Repository Site Name | Name of the repository site |
| Requests (Requests) | Requests |
| Requests In Application Queue (Requests) | The total number of requests in the application queue |
| Reserved | Whether or not the site is reserved |
| Resource Group | Name of the resource group the slot belongs to |
| Runtime Availability State | The availability of the slot |
| SCM Site Also Stopped | True to stop SCM (KUDU) site when the slot is stopped; otherwise, false |
| Self Link | Direct URL to the website endpoint on Windows Azure Web Sites that includes the subscription ID, webspace name, and site name |
| Server Farm ID | Resource ID of the associated slot Service plan |
| SKU | The name of the SKU for the web slot |
| SSL Certificates | The SSL certificates associated with the site |
| State | Current state of the slot |
| Suspended Till | Slot suspended till in case memory-time quota is exceeded |
| Tags | Tags assigned to the slot |
| Target Swap Slot | Specifies which deployment slot this slot will swap into |
| Thread Count | Thread Count |
| Total App Domains | The total number of app domains associated to the slot |
| Total App Domains Unloaded | The total number of app domains that have been unloaded in the slot due to adversely affecting the performance of the entire process |
| Traffic Manager Host Names | Azure Traffic Manager hostnames associated with the web slot |
| Type | Resource type |
| Usage State | State indicating whether the slot has exceeded its quota usage |
| Web Space | The name of the webspace in which the website is located |
Slot Instance
| Name | Description |
|---|---|
| App Connections (Connections) | Connections |
| Average Memory Working Set (Bytes) | Average memory working set |
| Average Response Time (Seconds) | Average Response Time |
| CPU Time (Seconds) | CPU Time |
| Current Assemblies | The number of assemblies currently associated to the slot |
| Data Received (Bytes) | Data In |
| Data Sent (Bytes) | Data Out |
| Function Execution Count | Function Execution Count |
| Function Execution Units | Function Execution Units |
| Gen 0 Collections | Displays the number of times the generation 0 objects (that is, the youngest, most recently allocated objects) are garbage collected since the application started. |
| Gen 1 Collections | Displays the number of times the generation 1 objects are garbage collected since the application started |
| Gen 2 Collections | Displays the number of times the generation 2 objects are garbage collected since the application started |
| Handle Count | Handle Count |
| HTTP 101 | Http 101 |
| HTTP 2xx | Http 2xx |
| HTTP 3xx | Http 3xx |
| HTTP 401 | Http 401 |
| HTTP 403 | Http 403 |
| HTTP 404 | Http 404 |
| HTTP 406 | Http 406 |
| HTTP 4xx | Http 4xx |
| Http Server Errors | Http Server Errors |
| Instance | Instance |
| I/O Other Data (Bytes per Second) | Other I/O data during monitoring period |
| I/O Other Operations (Operations per Second) | Other I/O |
| I/O Read Data (Bytes per Second) | Average data read from disk during monitoring period |
| I/O Read Operations (Operations per Second) | Disk read I/O |
| I/O Write Data (Bytes per Second) | Average data written from disk during monitoring period |
| I/O Write Operations (Operations per Second) | Disk write I/O |
| Memory Working Set (Bytes) | Memory working set |
| Parent ID | The ID of the parent slot |
| Requests (Requests) | Requests |
| Requests In Application Queue (Requests) | The total number of requests in the application queue |
| Thread Count | Thread Count |
| Total App Domains | The total number of app domains associated to the slot |
| Total App Domains Unloaded | The total number of app domains that have been unloaded in the slot due to adversely affecting the performance of the entire process |
Usage
| Name | Description |
|---|---|
| Current Value | The current value of the resource counter |
| Limit | The resource limit |
| Name | Localized name for the quota |
| Next Reset Time | Next reset time for the resource counter |
| Parent ID | The ID of the parent site |
| Unit | Units of measurement for the quota resource |
Updated over 1 year ago