Introduction to Azure and the VMProcess Kusto Query Operator
Azure is Microsoft’s cloud platform, which provides a range of cloud-computing services and resources. With Azure, users can access Microsoft’s services and resources across the world. Azure also offers a variety of solutions, such as Service Map and VM Insights, which use the Dependency and Log analytics agents to help monitor and collect data from virtual machines and servers. The VMProcess Kusto query operator is one of the methods used to collect process data from Azure servers and clients. This article will explain how to use the VMProcess Kusto query operator with Azure Monitor to collect this data.
Azure Monitor and VMProcess Kusto Query Operator
Azure Monitor provides Service Map and VM Insights solutions which use the Dependency agent and Log analytics agent to collect the process data of azure servers/virtual machine clients. The VMProcess Kusto query operator can be used to retrieve the process data logs.
Using the VMProcess Kusto query operator
To use the VMProcess Kusto query operator, the following KQL Queries can be used.
Query 1: To get the VMProcess Operator Data Logs for the last 10 minutes
Query 2: To get the VMProcess Operator Data Logs for the last 1 hour
Query 3: To get the VMProcess Operator Data Logs for the last 1 day
Output
Query 4: To get the details of the Host Process for Windows Services
Output
Query 5: To get the VMProcess Executable Name and its Display Name, Group, and Product Name
Output
Conclusion
The VMProcess Kusto query operator can be used to retrieve the process data logs for Azure servers/virtual machine clients for a specific duration. This data can then be used to gain insights into the performance of the server or client.