Summary of Impact: Between 00:00 UTC on 16 Oct 2021 and 01:45 on 19 Oct 2021, you were identified as a customer using Log Analytics in Australia East who may have encounterd data gaps when querying Security_Event data within resources hosted in this region. This issue is limited to this specific data type, and all other data types are unaffected.
Preliminary Root Cause: We determined that a recent deployment contained a code bug affecting the agent which delivers Security_Event data to Log Analytics.
Mitigation: We deployed a configuration fix to update the service to the previously-known healthy state.
Current Status: We determined that a recent deployment contained a code bug affecting the agent which delivers Security_Event data to Log Analytics. We developed and deployed a configuration change to the service to return the service to a previously-known healthy state, however an additional fix is required to enable this configuration change for the affected agent. This fix will force the agent to refresh the configuration. Once the fix is validated and deployed, customer impact should be mitigated. We expect this process to complete within the next 2-4 hours.
The next update will be provided in 4 hours, or as events warrant.
-VarunYou must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.