Contains all Toolchain orchestrator API Server audit logs including the events generated as a result of interactions with any external system or toolchain. These events are useful for monitoring all the interactions with the Toolchain orchestrator API server and between Toolchain orchestrator and external orchestrated targets, e.g. Kubernetes. Requires Diagnostic Settings to use the Resource Specific destination table.
The Azure Edge custom location resource Id on which the operation happens.
_IsBillable
string
Specifies whether ingesting the data is billable. When _IsBillable is false ingestion isn't billed to your Azure account
Location
string
Azure region in which the Toolchain orchestrator diagnostic resource is located.
Message
string
The audit message.
OperatingResourceId
string
The operating resource id refers to the specific operational resource that the Toolchain orchestrator is managing when this event is triggered.
OperatingResourceK8SId
string
The operating resource K8s id refers to K8s resource id (namespace/name) of the specific operational resource that the Toolchain orchestrator is managing when this event is triggered.
OperationName
string
Operation name of the event.
Properties
dynamic
Properties of the event.
_ResourceId
string
A unique identifier for the resource that the record is associated with
SourceSystem
string
The type of agent the event was collected by. For example, OpsManager for Windows agent, either direct connect or Operations Manager, Linux for all Linux agents, or Azure for Azure Diagnostics
_SubscriptionId
string
A unique identifier for the subscription that the record is associated with
TenantId
string
The Log Analytics workspace ID
TimeGenerated
datetime
Event generation time.
TOServiceInstance
string
Toolchain orchestrator service pod name.
TOServiceName
string
Toolchain orchestrator service name.
Type
string
The name of the table
User
string
The Microsoft Entra ID object Id of the requester.