Logging
Applicable to version 2.4 and above
AppConfig:LoggingConfig:WorkspaceId
Linux: AppConfig__LoggingConfig__WorkspaceId
Value: Guid
Description:
The WorkspaceID of your Log Analytics Workspace (shown in the Overview of the workspace). This is a required setting if you want to use Azure Monitor together with SharedKey.
This logging method is deprecated and Microsoft has announced to retire this logging API. Switch to AppConfig:LoggingConfig:DataCollectionEndpointUri and AppConfig:LoggingConfig:RuleId instead, as described in the Log Management article.
AppConfig:LoggingConfig:SharedKey
Linux: AppConfig__LoggingConfig__SharedKey
Value: String
Description:
Use one of the two keys for the Log Analytics Workspace. They are displayed if you access the Log Analytics Workspace on portal.azure.com and navigate to Settings/Agents, where you can unfold the "Log Analytics agent instructions" section. Use either the Primary or the Secondary key.
This is a required setting if you want to use Azure Monitor, together with WorkspaceId.
This logging method is deprecated and Microsoft has announced to retire this logging API. Switch to AppConfig:LoggingConfig:DataCollectionEndpointUri and AppConfig:LoggingConfig:RuleId instead, as described in the Log Management article.
SCEPman Certificate Master does not support storing configuration values in Key Vault in the same way that the SCEPman core component does. There is a generic way to store App Service settings in Key Vault, though, which Mika Berglund describes in his blog. In short, you must add Secrets-Get permission to the Certificate Master Managed Identity and, for the SharedKey, you would use @Microsoft.KeyVault(SecretUri=https://YOURKEYVAULTNAMEHERE.vault.azure.net/secrets/appconfig--loggingconfig--sharedkey/) as value for AppConfig:LoggingConfig:SharedKey.
AppConfig:LoggingConfig:DataCollectionEndpointUri
Linux: AppConfig__LoggingConfig__DataCollectionEndpointUri
Value: String
Description:
Used in conjunction with AppConfig:LoggingConfig:RuleId to log to a Log Analytics Workspace, authenticating with the Managed Identity of the App Service.
This is the URI of the Data Collection Endpoint (DCE) of Azure Monitor.
AppConfig:LoggingConfig:RuleId
Linux: AppConfig__LoggingConfig__RuleId
Value: String
Description:
Used in conjunction with AppConfig:LoggingConfig:DataCollectionEndpointUri to log to a Log Analytics Workspace, authenticating with the Managed Identity of the App Service.
This setting is the immutable Id of the Data Collection Rule (DCR) resource.
The Managed Identities of the App Services logging to the DCR need to be assigned the Monitoring Metrics Publisher role on the DCR.
Usually, you won't configure this setting manually, as the SCEPman PS Module or Terraform Module do it for you and also assign the required role automatically when they create the DCR and DCE.
AppConfig:LoggingConfig:AzureOfferingDomain
Linux: AppConfig__LoggingConfig__AzureOfferingDomain
Value: String
Description:
If the workspace is not in the Global Azure Cloud, you can configure the offering domain here. The default is 'azure.com'.
Changes can harm your service!
AppConfig:LoggingConfig:LogLevel
Linux: AppConfig__LoggingConfig__LogLevel
Value: Trace, Debug, Info, Warn, Error, Fatal
Description:
The minimum log level to be logged. The default is 'Info'. Only log entries with a log level equal or higher than the configured log level will be logged.
Note that if you configure this setting to 'Trace' or 'Debug', log output might contain personal data like UPNs or IP addresses of users. If you want to avoid personal data in the log output, you should configure this setting to 'Info' or higher.
AppConfig:LoggingConfig:AzureEventHubConnectionString
Linux: AppConfig__LoggingConfig__AzureEventHubConnectionString
Logging to Azure Event Hub is possible in version 2.7 and above
Value: String
Description:
The connection string to your Azure Event Hub. This is a required setting if you want to use Azure Event Hub.
AppConfig:LoggingConfig:AzureEventHubName
Linux: AppConfig__LoggingConfig__AzureEventHubName
Logging to Azure Event Hub is possible in version 2.7 and above
Value: String
Description:
The name of your Azure Event Hub. This is a required setting if you want to use Azure Event Hub.
AppConfig:LoggingConfig:AzureEventHubPartitionKey
Linux: AppConfig__LoggingConfig__AzureEventHubPartitionKey
Logging to Azure Event Hub is possible in version 2.7 and above
Value: String
Description:
The partition key of your Azure Event Hub. Setting this is optional. If you don't set this, this defaults to '0'.
Last updated
Was this helpful?