Create response rules and configure webhook in Azure Monitor

Create response rules to automatically detect performance anomalies in your environment. Alerts are created by alert rules in Azure Monitor and can automatically monitor your application at regular intervals. You can create alerts based on specific performance metrics. Configure webhook endpoints so that Azure Monitor can use the endpoint to communicate with Incident Response.

Before you begin

  • Ensure you have created an account in Azure Monitor.
  • Ensure that you have created a resource and the resource is a part of a resource group.

Role required: Responder, Manager, or Administrator

About this task

Note: While this integration with a third-party product is supported, the documentation here is based upon information provided by that third-party. More current information about the operation of that third-party’s system may be available from them directly.

Procedure

  1. Log in to the Microsoft Azure console.
    The Microsoft Azure homepage.
  2. Open the resource for which you want to create alert rules.
    Open resource.
  3. From the navigation pane, click Alerts.
    The Alert option in the navigation pane.
  4. Click the New alert rule tab.
    The new alert option.

    The Create alert rule page appears.

    The Create alert rule page.
  5. Under Condition, click Add condition.

    The Configure signal logic page appears.

    The Configure signal logic page.
  6. On the Configure signal logic page, select the metric or signal type that you want to create an alert on.
    The Split by dimensions section.
  7. In the Split by dimensions section, select dimensions to monitor specific time series.
  8. In the Alert logic section, select the Threshold type, Operator, and Aggregation type to determine the logic that the metric alert rule will evaluate.
  9. Optional: Refine the condition by adjusting Aggregation granularity (Period) and Frequency of evaluation.
  10. Click Done.

    The alert condition gets added for the alert.

    The alert condition gets added.
  11. In the Create alert rule page, under the Actions section, click Add action groups.

    Action group ensures that the same actions are taken each time an alert is triggered and can be used for each rule you define.

    The select an action group page.
  12. On the Select an action group to attach to this alert rule page, click Create action group.

    Action group ensures that the same actions are taken each time an alert is triggered and can be used for each rule you define.

    The create action group page.
  13. Under Project details, select the Subscription and Resource group in which the action group is saved.
  14. Under Instance details, enter an action group name and a display name.
    The display name is used in place of a full action group name when notifications are sent using this group.
  15. To move to the Notifications tab, click Next: Notifications >.

    The Notifications section appears.

    The Notifications section.
  16. To define a list of notifications to send when an alert is triggered, provide the following information for each notification:
    • Notification type: Select the type of notification you want to send.
    • Name: Enter a unique name for the notification.
    • Details: Based on the selected notification type, enter channels for notification such as an email address or phone number.
    • Enable the common alert schema: Enable to get the advantage of having a single extensible and unified alert payload across all the alert services in Azure Monitor.
  17. To move to the Actions tab, click Next: Actions >.

    The Actions section appears.

    The Actions section.
  18. To define a list of actions to trigger when an alert is triggered, provide the following information for each action:
    • Action type: Select Webhook.
    • Name: Enter a unique name for the action.

      The Webhook page appears.

      The Webhook page appears.
    • Details: In the URI field, enter a webhook URL. For more information on how to generate a webhook URL, see Create a webhook endpoint for Azure Monitor.
    • Enable the common alert schema: Enable to get the advantage of having a single extensible and unified alert payload across all the alert services in Azure.
  19. Click OK.
  20. To move to the Tags tab, click Next: Tags >.
  21. Optional: Explore the Tags settings so that you can associate key/value pairs to the action group for your categorization.
  22. To move to the Review + create tab and review your settings, click Next: Review + create >.

    The Review + create section appears.

    The Review + create section.
  23. Do a quick validation of your inputs to make sure all the required fields are selected.
  24. Once you've reviewed the settings, click Create to provision the action group.
    An alert action is created.
  25. On the Create alert rule page, in the Alert rule details section, provide details on your alert as follows:
    The Alert rule details section.
    Field Action to be taken
    Alert rule name Enter a name for the alert rule.
    Description Enter a brief description about the alert rule.
    Save alert rule to resource group Select the resource group.
    Severity Select an alert severity.
    Enable alert rule upon creation Select the check box to enable the alert rule.
  26. Click Create alert rule.
    Alert rules are created and Azure events are forwarded to Incident Response.