Sprint 4 Outline - brian-anderson01/Capstone GitHub Wiki

Overview

In sprint 4 I plan to look into implementing Azure Monitor and Log Analytics into my environment. I plan to pull logs from the domain controller as well as one of the the work stations. The main goal is to explore the functionality of Azure Monitor and see what it can do as far as log collection and potentially metrics collection. I will also be fixing the Azure file share script that I am deploying through Intune as it is not fully working at the moment.

Objectives

• Fix Azure files script and confirm it is deploying properly through Intune
• Research how to implement Azure log monitor into an existing environment
• Get logs from DC and one workstation using the log monitor
• Research what can be done with the logs on the cloud side (alerts, parsing etc.).
• Research if log monitor can be deployed through Intune
• Add to sprint tasks as necessary

Task

• Fix Azure Files script, test and confirm it's working
• Enable Azure monitoring
• Install log monitor on server as well as workstation
• Research log parsing and usage and update sprint if necessary

Sprint Outcome

Throughout the sprint I worked on getting logs and performance metrics sent to Azure from my domain controller. I got the monitoring agent installed on the server and setup. With that installed, I was able to collect logs and metrics. With a couple of queries that I made I can visualize the metrics and see the logs that are being set. I also made a dashboard that shows all of this information and made documentation on setting all of this up. I also spent quite a bit of time getting the Azure files mapped drive script setup and working reliably. I had multiple issue with the script and was able to eventually resolve them. I have uploaded the script to my repo. I tested the deployment through Intune and confirmed that everything was working as it should. Overall, the sprint was quite successful and I was able to get everything done that I had planned.