I've been on the hunt for a solution and could really use some help. I have a KQL query that shows me alerts in a Fired state, and I want to receive these results in my email every 15 minutes. My support team relies on this information since our applications often experience slowness, and having these alerts handy would help me see if the slowness is related to any active alerts. Any advice on how to set this up?
1 Answer
I run KQL queries frequently that get emailed out. If you're familiar with PowerShell, you should check out the Automation Account in Azure. It can automatically run your query every 15 minutes. You can write your KQL query in PowerShell to capture the results, and then use the Graph API to send that data via email in various formats like HTML or CSV. If PowerShell isn't your thing, you might consider using Python as an alternative in the Automation Account.
Nice! I’ll definitely give this a try tomorrow!