Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have an Azure virtual machine named VM1 that runs Windows Server 2016.
You need to create an alert in Azure when more than two error events are logged to the System event log on VM1 within an hour.
Solution: You create an Azure storage account and configure shared access signatures (SASs). You install the Microsoft Monitoring Agent on VM1. You create an alert in Azure Monitor and specify the storage account as the source.
Does this meet the goal?
Click on the arrows to vote for the correct answer
A. B.B
Instead: You create an Azure Log Analytics workspace and configure the data settings. You install the Microsoft Monitoring Agent on VM1. You create an alert in
Azure Monitor and specify the Log Analytics workspace as the source.
https://docs.microsoft.com/en-us/azure/azure-monitor/platform/agents-overviewNo, the solution described does not meet the stated goal of creating an alert in Azure when more than two error events are logged to the System event log on VM1 within an hour.
The solution provided in the question involves creating an Azure storage account, configuring shared access signatures (SASs), and installing the Microsoft Monitoring Agent on VM1. However, it does not include any steps to actually monitor the event log and create an alert when the specified conditions are met.
To create an alert when more than two error events are logged to the System event log on VM1 within an hour, you would need to perform the following steps:
By following these steps, you can create an alert that will notify you when more than two error events are logged to the System event log on VM1 within an hour. The solution provided in the question does not include these steps, and therefore does not meet the stated goal.