Kusto is a service for storing and running interactive analytics over Big Data. Kusto was designed from scratch to be a “big data” repository for Azure and easy to query using Kusto Query Language (KQL). We learn new ways to monitor and alert resources and services as we migrate to the cloud. Microsoft has consolidated many services under the umbrella of ‘Azure Monitor.’ Whether you are detecting and diagnosing issues across applications and dependencies,’ ‘correlating infrastructure issues with Azure Monitor for VMs,’ ‘or drilling into your SQL database monitoring data with Log Analytics, you will be using ‘Azure Monitor.’ Azure Monitor uses a version of the KQL used by Azure Data Explorer.

In this 100% demo session, I will show an example with Azure SQL Database, which you can use for any Azure resource:
1. How to enable event logging (auditing and diagnostic) for the Azure SQL database?
2. How do you consume the data once you enable event logging?
3. How do you find anomalies to alert, establish a baseline, and look at trends?
4. How do you consume this data with python and kql notebook from Azure Data Studio using kql magic, kql kernel, and the recently released Azure Monitor Logs extension?

No slide. All demo. Will need an internet connection.