What are the prerequisites to use Traffic Analytics in Azure Network Watcher?
Experience Level: Junior
Tags: Azure Log Analytics WorkspaceAzure Network Security GroupsAzure Network WatcherAzure Storage
Answer
Traffic Analytics requires the following prerequisites:
A Network Watcher enabled subscription.
Network Security Group (NSG) flow logs enabled for the NSGs you want to monitor.
An Azure Storage account, to store raw flow logs.
An Azure Log Analytics workspace, with read and write access.
Your account must meet one of the following to enable traffic analytics:
Your account must have any one of the following Azure roles at the subscription scope: owner, contributor, reader, or network contributor.
If your account is not assigned to one of the previously listed roles, it must be assigned to a custom role that is assigned the following actions, at the subscription level.
Microsoft.Network/applicationGateways/read
Microsoft.Network/connections/read
Microsoft.Network/loadBalancers/read
Microsoft.Network/localNetworkGateways/read
Microsoft.Network/networkInterfaces/read
Microsoft.Network/networkSecurityGroups/read
Microsoft.Network/publicIPAddresses/read
Microsoft.Network/routeTables/read
Microsoft.Network/virtualNetworkGateways/read
Microsoft.Network/virtualNetworks/read
Related Azure Cloud job interview questions
What is Network Watcher Connection Troubleshoot?
Azure Network Watcher JuniorYou are configuring Traffic Analytics and no log analytics workspace is showing even that you have created log analytics workspace before. What could be the issue?
Azure Network Watcher JuniorWhat do you need to do in order to setup Traffic Analytics in Network Watcher?
Azure Network Watcher JuniorHow can you visualize network flow logs collected by Network Watcher?
Azure Network Watcher JuniorWhat is Traffic Analytics feature of Network Watcher good for?
Azure Network Watcher Junior
