cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

AVD Insights - Read access for support techs

SeeInsideSpace
Copper Contributor

‎Feb 26 2024 01:05 AM

‎Feb 26 2024 01:05 AM

AVD Insights - Read access for support techs

Hi there. I'm trying to give our Support Techs reader access to AVD Insights to assist with troubleshooting and to do a bit of upskilling. They currently have Desktop Virtualization User Session Operator rights to enable them to view sessions and log users off, but see nothing when going to the host pool Insights or Legacy tab. I've tried giving them Reader access to the whole host pool, and Monitoring Reader also, but still no joy. Any ideas what I may be missing? Our admins see the Insights just fine. Thanks
400 Views
0 Likes
6 Replies
Reply
6 Replies
NKC25

‎Feb 26 2024 01:10 AM

‎Feb 26 2024 01:10 AM

Re: AVD Insights - Read access for support techs

https://learn.microsoft.com/en-us/azure/virtual-desktop/rbac#desktop-virtualization-host-pool-reader

probably hostpool reader access to view the sessionhosts and it's configuration, for monitoring below role should suffice.
https://learn.microsoft.com/en-us/azure/virtual-desktop/rbac#desktop-virtualization-reader
0 Likes
Reply
SeeInsideSpace

‎Feb 26 2024 02:40 AM

‎Feb 26 2024 02:40 AM

Re: AVD Insights - Read access for support techs

@NKC25 

 

No joy unfortunately, they just get a message that Azure Monitor is not configured for the host pool, even though it is. I am wondering if some permissions are needed to the Log Analytics Workspace.

0 Likes
Reply
Neil McLoughlin

‎Feb 26 2024 10:19 PM

‎Feb 26 2024 10:19 PM

Re: AVD Insights - Read access for support techs

@SeeInsideSpace have you tried the "Log Analytics Reader" role?? This should give them the necessary access - you can read more about that here - https://learn.microsoft.com/en-us/azure/azure-monitor/logs/manage-access?tabs=portal

0 Likes
Reply
EugeneH

‎Mar 04 2024 09:00 PM

‎Mar 04 2024 09:00 PM

Re: AVD Insights - Read access for support techs

@SeeInsideSpace Did you happen to get this resolved?  I have the same issue for support teams....

0 Likes
Reply
SeeInsideSpace

‎Mar 06 2024 03:06 AM

‎Mar 06 2024 03:06 AM

Re: AVD Insights - Read access for support techs

@EugeneH 

 

No unfortunately not. None of the reader roles when applied to both the host pool and to the log analytics workspace allow them to view Insights. It seems that contributor rights are required which is goes against rule of least privilege for our support desk technicians. Frustrating, as there is much useful data available in the Insights that would help them...  Not sure why Microsoft would make this a non read only function. 

0 Likes
Reply
EugeneH

‎Mar 06 2024 03:44 PM

‎Mar 06 2024 03:44 PM

Re: AVD Insights - Read access for support techs

@SeeInsideSpace I found a way to provide access to my users.

 

Assign them Reader access to the Log Analytics Workspace and respective Resource Groups containing the AVD resources they need to see Insights dashboards for.....  You can find more info here: 

 

https://github.com/MicrosoftDocs/azure-docs/blob/main/articles/virtual-desktop/troubleshoot-insights...

See the section "My data isn't displaying properly".... 

 

 

0 Likes
Reply