AzureLogCollector Extension
Important
This extension has been deprecated and is only documented here for informational purposes only. We do not recommend you continue to use this extension within your deployments.
Diagnosing issues with a Microsoft Azure cloud service requires collecting the service’s log files on virtual machines as the issues occur. You can use the AzureLogCollector extension on-demand to perform one-time collection of logs from one or more Cloud Service VMs (from both web roles and worker roles) and transfer the collected files to an Azure storage account – all without remotely logging on to any of the VMs.
Note
Descriptions for most of the logged information can be found at https://blogs.msdn.microsoft.com/kwill/2013/08/09/windows-azure-paas-compute-diagnostics-data/
There are two modes of collection dependent on the types of files to be collected.
Azure Guest Agent Logs only (GA). This collection mode includes all the logs related to Azure guest agents and other Azure components.
All Logs (Full). This collection mode collects all files in GA mode plus:
- system and application event logs
- HTTP error logs
- IIS Logs
- Setup logs
- other system logs
In both collection modes, additional data collection folders can be specified by using a collection of the following structure:
- Name: The name of the collection, used as the name of the subfolder inside the zip file with the collected files.
- Location: The path to the folder on the virtual machine where files to be collected are located.
- SearchPattern: The pattern of the names of files to be collected. Default is “*”
- Recursive: if the files to be collected are located recursively under the location specified.
Prerequisites
Note
We recommend that you use the Azure Az PowerShell module to interact with Azure. See Install Azure PowerShell to get started. To learn how to migrate to the Az PowerShell module, see Migrate Azure PowerShell from AzureRM to Az.
- Have a storage account for extension to save generated zip files.
- Azure PowerShell. See Install Azure PowerShell] for install instructions.
Add the extension
You can use Microsoft Azure PowerShell cmdlets or Service Management REST APIs to add the AzureLogCollector extension.
For Cloud Services, the existing Azure Powershell cmdlet, Set-AzureServiceExtension, can be used to enable the extension on Cloud Service role instances. Every time this extension is enabled through this cmdlet, log collection is triggered on the selected role instances of selected roles.
For Virtual Machines, the existing Azure Powershell cmdlet, Set-AzureVMExtension, can be used to enable the extension on Virtual Machines. Every time this extension is enabled through the cmdlets, log collection is triggered on each instance.
Internally, this extension uses the JSON-based PublicConfiguration and PrivateConfiguration. The following is the layout of a sample JSON for public and private configuration.
PublicConfiguration
{
"Instances": "*",
"Mode": "Full",
"SasUri": "SasUri to your storage account with sp=wl",
"AdditionalData":
[
{
"Name": "StorageData",
"Location": "%roleroot%storage",
"SearchPattern": "*.*",
"Recursive": "true"
},
{
"Name": "CustomDataFolder2",
"Location": "c:\customFolder",
"SearchPattern": "*.log",
"Recursive": "false"
},
]
}
PrivateConfiguration
{
}
Note
This extension doesn’t need privateConfiguration. You can just provide an empty structure for the –PrivateConfiguration argument.
You can follow one of the two following steps to add the AzureLogCollector to one or more instances of a Cloud Service or Virtual Machine of selected roles, which triggers the collections on each VM to run and send the collected files to Azure account specified.
Adding as a Service Extension
Follow the instructions to connect Azure PowerShell to your subscription.
Specify the service name, slot, roles, and role instances to which you want to add and enable the AzureLogCollector extension.
#Specify your cloud service name $ServiceName = 'extensiontest2' #Specify the slot. 'Production' or 'Staging' $slot = 'Production' #Specified the roles on which the extension will be installed and enabled $roles = @("WorkerRole1","WebRole1") #Specify the instances on which extension will be installed and enabled. Use wildcard * for all instances $instances = @("*") #Specify the collection mode, "Full" or "GA" $mode = "GA"Specify the additional data folder for which files will be collected (this step is optional).
#add one location $a1 = New-Object PSObject $a1 | Add-Member -MemberType NoteProperty -Name "Name" -Value "StorageData" $a1 | Add-Member -MemberType NoteProperty -Name "SearchPattern" -Value "*" $a1 | Add-Member -MemberType NoteProperty -Name "Location" -Value "%roleroot%storage" #%roleroot% is normally E: or F: drive $a1 | Add-Member -MemberType NoteProperty -Name "Recursive" -Value "true" $AdditionalDataList+= $a1 #more locations can be added....Note
You can use token
%roleroot%to specify the role root drive since it doesn’t use a fixed drive.Provide the Azure storage account name and key to which collected files will be uploaded.
$StorageAccountName = 'YourStorageAccountName' $StorageAccountKey = 'YourStorageAccountKey'Call the SetAzureServiceLogCollector.ps1 (included at the end of the article) as follows to enable the AzureLogCollector extension for a Cloud Service. Once the execution is completed, you can find the uploaded file under
https://YourStorageAccountName.blob.core.windows.net/vmlogs.\SetAzureServiceLogCollector.ps1 -ServiceName YourCloudServiceName -Roles $roles -Instances $instances –Mode $mode -StorageAccountName $StorageAccountName -StorageAccountKey $StorageAccountKey -AdditionDataLocationList $AdditionalDataList
The following is the definition of the parameters passed to the script. (This is copied below as well.)
[CmdletBinding(SupportsShouldProcess = $true)]
param (
[Parameter(Mandatory=$true)]
[string] $ServiceName,
[Parameter(Mandatory=$false)]
[string[]] $Roles ,
[Parameter(Mandatory=$false)]
[string[]] $Instances,
[Parameter(Mandatory=$false)]
[string] $Slot = 'Production',
[Parameter(Mandatory=$false)]
[string] $Mode = 'Full',
[Parameter(Mandatory=$false)]
[string] $StorageAccountName,
[Parameter(Mandatory=$false)]
[string] $StorageAccountKey,
[Parameter(Mandatory=$false)]
[PSObject[]] $AdditionDataLocationList = $null
)
ServiceName: Your cloud service name.
Roles: A list of roles, such as “WebRole1” or ”WorkerRole1”.
Instances: A list of the names of role instances separated by comma -- use the wildcard string (“*”) for all role instances.
Slot: Slot name. “Production” or “Staging”.
Mode: Collection mode. “Full” or “GA”.
StorageAccountName: Name of Azure storage account for storing collected data.
StorageAccountKey: Name of Azure storage account key.
AdditionalDataLocationList: A list of the following structure:
{ String Name, String Location, String SearchPattern, Bool Recursive }
Adding as a VM Extension
Follow the instructions to connect Azure PowerShell to your subscription.
Specify the service name, VM, and the collection mode.
#Specify your cloud service name $ServiceName = 'YourCloudServiceName' #Specify the VM name $VMName = "'YourVMName'" #Specify the collection mode, "Full" or "GA" $mode = "GA" Specify the additional data folder for which files will be collected (this step is optional). #add one location $a1 = New-Object PSObject $a1 | Add-Member -MemberType NoteProperty -Name "Name" -Value "StorageData" $a1 | Add-Member -MemberType NoteProperty -Name "SearchPattern" -Value "*" $a1 | Add-Member -MemberType NoteProperty -Name "Location" -Value "%roleroot%storage" #%roleroot% is normally E: or F: drive $a1 | Add-Member -MemberType NoteProperty -Name "Recursive" -Value "true" $AdditionalDataList+= $a1 #more locations can be added....Provide the Azure storage account name and key to which collected files will be uploaded.
$StorageAccountName = 'YourStorageAccountName' $StorageAccountKey = 'YourStorageAccountKey'Call the SetAzureVMLogCollector.ps1 (included at the end of the article) as follows to enable the AzureLogCollector extension for a Cloud Service. Once the execution is completed, you can find the uploaded file under
https://YourStorageAccountName.blob.core.windows.net/vmlogs
The following is the definition of the parameters passed to the script. (This is copied below as well.)
[CmdletBinding(SupportsShouldProcess = $true)]
param (
[Parameter(Mandatory=$true)]
[string] $ServiceName,
[Parameter(Mandatory=$false)]
[string] $VMName ,
[Parameter(Mandatory=$false)]
[string] $Mode = 'Full',
[Parameter(Mandatory=$false)]
[string] $StorageAccountName,
[Parameter(Mandatory=$false)]
[string] $StorageAccountKey,
[Parameter(Mandatory=$false)]
[PSObject[]] $AdditionDataLocationList = $null
)
ServiceName: Your cloud service name.
VMName: The name of the VM.
Mode: Collection mode. “Full” or “GA”.
StorageAccountName: Name of Azure storage account for storing collected data.
StorageAccountKey: Name of Azure storage account key.
AdditionalDataLocationList: A list of the following structure:
{ String Name, String Location, String SearchPattern, Bool Recursive }
Extention PowerShell Script files
SetAzureServiceLogCollector.ps1
[CmdletBinding(SupportsShouldProcess = $true)]
param (
[Parameter(Mandatory=$true)]
[string] $ServiceName,
[Parameter(Mandatory=$false)]
[string[]] $Roles ,
[Parameter(Mandatory=$false)]
[string[]] $Instances = '*',
[Parameter(Mandatory=$false)]
[string] $Slot = 'Production',
[Parameter(Mandatory=$false)]
[string] $Mode = 'Full',
[Parameter(Mandatory=$false)]
[string] $StorageAccountName,
[Parameter(Mandatory=$false)]
[string] $StorageAccountKey,
[Parameter(Mandatory=$false)]
[PSObject[]] $AdditionDataLocationList = $null
)
$publicConfig = New-Object PSObject
if ($Instances -ne $null -and $Instances.Count -gt 0) #Instances should be separated by ,
{
$instanceText = $Instances[0]
for ($i = 1;$i -lt $Instances.Count;$i++)
{
$instanceText = $instanceText+ "," + $Instances[$i]
}
$publicConfig | Add-Member -MemberType NoteProperty -Name "Instances" -Value $instanceText
}
else #For all instances if not specified. The value should be a space or *
{
$publicConfig | Add-Member -MemberType NoteProperty -Name "Instances" -Value " "
}
if ($Mode -ne $null )
{
$publicConfig | Add-Member -MemberType NoteProperty -Name "Mode" -Value $Mode
}
else
{
$publicConfig | Add-Member -MemberType NoteProperty -Name "Mode" -Value "Full"
}
#
#we need to get the Sasuri from StorageAccount and containers
#
$context = New-AzStorageContext -Protocol https -StorageAccountName $StorageAccountName -StorageAccountKey $StorageAccountKey
$ContainerName = "azurelogcollectordata"
$existingContainer = Get-AzStorageContainer -Context $context | Where-Object { $_.Name -like $ContainerName}
if ($existingContainer -eq $null)
{
"Container ($ContainerName) doesn't exist. Creating it now.."
New-AzStorageContainer -Context $context -Name $ContainerName -Permission off
}
$ExpiryTime = [DateTime]::Now.AddMinutes(120).ToString("o")
$SasUri = New-AzStorageContainerSASToken -ExpiryTime $ExpiryTime -FullUri -Name $ContainerName -Permission rwl -Context $context
$publicConfig | Add-Member -MemberType NoteProperty -Name "SasUri" -Value $SasUri
#
#Add AdditionalData to collect data from additional folders
#
if ($AdditionDataLocationList -ne $null )
{
$publicConfig | Add-Member -MemberType NoteProperty -Name "AdditionalData" -Value $AdditionDataLocationList
}
#
# Convert it to JSON format
#
$publicConfigJSON = $publicConfig | ConvertTo-Json
"publicConfig is: $publicConfigJSON"
#we just provide an empty privateConfig object
$privateconfig = "{
}"
if ($Roles -ne $null)
{
Set-AzureServiceExtension -Service $ServiceName -Slot $Slot -Role $Roles -ExtensionName 'AzureLogCollector' -ProviderNamespace Microsoft.WindowsAzure.Compute -PublicConfiguration $publicConfigJSON -PrivateConfiguration $privateconfig -Version 1.0 -Verbose
}
else
{
Set-AzureServiceExtension -Service $ServiceName -Slot $Slot -ExtensionName 'AzureLogCollector' -ProviderNamespace Microsoft.WindowsAzure.Compute -PublicConfiguration $publicConfigJSON -PrivateConfiguration $privateconfig -Version 1.0 -Verbose
}
#
#This is an optional step: generate a sasUri to the container so it can be shared with other people if needed.
#
$SasExpireTime = [DateTime]::Now.AddMinutes(120).ToString("o")
$SasUri = New-AzStorageContainerSASToken -ExpiryTime $ExpiryTime -FullUri -Name $ContainerName -Permission rl -Context $context
$SasUri = $SasUri + "&restype=container&comp=list"
Write-Output "The container for uploaded file can be accessed using this link:`r`n$sasuri"
SetAzureVMLogCollector.ps1
[CmdletBinding(SupportsShouldProcess = $true)]
param (
[Parameter(Mandatory=$true)]
[string] $ServiceName,
[Parameter(Mandatory=$false)]
[string] $VMName ,
[Parameter(Mandatory=$false)]
[string] $Mode = 'Full',
[Parameter(Mandatory=$false)]
[string] $StorageAccountName,
[Parameter(Mandatory=$false)]
[string] $StorageAccountKey,
[Parameter(Mandatory=$false)]
[PSObject[]] $AdditionDataLocationList = $null
)
$publicConfig = New-Object PSObject
$publicConfig | Add-Member -MemberType NoteProperty -Name "Instances" -Value "*"
if ($Mode -ne $null )
{
$publicConfig | Add-Member -MemberType NoteProperty -Name "Mode" -Value $Mode
}
else
{
$publicConfig | Add-Member -MemberType NoteProperty -Name "Mode" -Value "Full"
}
#
#we need to get the Sasuri from StorageAccount and containers
#
$context = New-AzStorageContext -Protocol https -StorageAccountName $StorageAccountName -StorageAccountKey $StorageAccountKey
$ContainerName = "azurelogcollectordata"
$existingContainer = Get-AzStorageContainer -Context $context | Where-Object { $_.Name -like $ContainerName}
if ($existingContainer -eq $null)
{
"Container ($ContainerName) doesn't exist. Creating it now.."
New-AzStorageContainer -Context $context -Name $ContainerName -Permission off
}
$ExpiryTime = [DateTime]::Now.AddMinutes(90).ToString("o")
$SasUri = New-AzStorageContainerSASToken -ExpiryTime $ExpiryTime -FullUri -Name $ContainerName -Permission rwl -Context $context
$publicConfig | Add-Member -MemberType NoteProperty -Name "SasUri" -Value $SasUri
#
#Add AdditionalData to collect data from additional folders
#
if ($AdditionDataLocationList -ne $null )
{
$publicConfig | Add-Member -MemberType NoteProperty -Name "AdditionalData" -Value $AdditionDataLocationList
}
#
# Convert it to JSON format
#
$publicConfigJSON = $publicConfig | ConvertTo-Json
Write-Output "PublicConfiguration is: \r\n$publicConfigJSON"
#
#we just provide an empty privateConfig object
#
$privateconfig = "{
}"
if ($VMName -ne $null )
{
$VM = Get-AzureVM -ServiceName $ServiceName -Name $VMName
$VM.VM.OSVirtualHardDisk.OS
if ($VM.VM.OSVirtualHardDisk.OS -like '*Windows*')
{
Set-AzureVMExtension -VM $VM -ExtensionName "AzureLogCollector" -Publisher Microsoft.WindowsAzure.Compute -PublicConfiguration $publicConfigJSON -PrivateConfiguration $privateconfig -Version 1.* | Update-AzureVM -Verbose
#
#We will check the VM status to find if operation by extension has been completed or not. The completion of the operation,either succeed or fail, can be indicated by
#the presence of SubstatusList field.
#
$Completed = $false
while ($Completed -ne $true)
{
$VM = Get-AzureVM -ServiceName $ServiceName -Name $VMName
$status = $VM.ResourceExtensionStatusList | Where-Object {$_.HandlerName -eq "Microsoft.WindowsAzure.Compute.AzureLogCollector"}
if ( ($status.Code -ne 0) -and ($status.Status -like '*error*'))
{
Write-Output "Error status is returned: $($Status.ExtensionSettingStatus.FormattedMessage.Message)."
$Completed = $true
}
elseif (($status.ExtensionSettingStatus.SubstatusList -eq $null -or $status.ExtensionSettingStatus.SubstatusList.Count -lt 1))
{
$Completed = $false
Write-Output "Waiting for operation to complete..."
}
else
{
$Completed = $true
Write-Output "Operation completed."
$UploadedFileUri = $Status.ExtensionSettingStatus.SubStatusList[0].FormattedMessage.Message
$blob = New-Object Microsoft.WindowsAzure.Storage.Blob.CloudBlockBlob($UploadedFileUri)
#
# This is an optional step: For easier access to the file, we can generate a read-only SasUri directly to the file
#
$ExpiryTimeRead = [DateTime]::Now.AddMinutes(120).ToString("o")
$ReadSasUri = New-AzStorageBlobSASToken -ExpiryTime $ExpiryTimeRead -FullUri -Blob $blob.name -Container $blob.Container.Name -Permission r -Context $context
Write-Output "The uploaded file can be accessed using this link: $ReadSasUri"
#
#This is an optional step: Remove the extension after we are done
#
Get-AzureVM -ServiceName $ServiceName -Name $VMName | Set-AzureVMExtension -Publisher Microsoft.WindowsAzure.Compute -ExtensionName "AzureLogCollector" -Version 1.* -Uninstall | Update-AzureVM -Verbose
}
Start-Sleep -s 5
}
}
else
{
Write-Output "VM OS Type is not Windows, the extension cannot be enabled"
}
}
else
{
Write-Output "VM name is not specified, the extension cannot be enabled"
}
Next Steps
Now you can examine or copy your logs from one simple location.