In this section, we are going to learn how we can monitor an AD environment using Azure Monitor. Before we start, we need the following elements:
- A valid Azure Monitor subscription: Azure Monitor has different levels of subscription. Which is more appropriate depends on the amount of data uploaded and your data retention policies. More info about pricing is available at https://azure.microsoft.com/en-gb/services/monitor/.
- A direct connection to Azure Monitor: In this demo, I am going to use direct Azure Monitor integration via the Log Analytics agent.
- A domain administrator account: In order to install the agent on the domain controllers, we need to have domain administrator privileges.