Azure Log Analytics · Capability

Azure Log Analytics Log Monitoring and Analysis

Unified workflow for log monitoring and analysis combining the Query API for KQL-based data exploration, the Management API for workspace and saved search administration, and the Ingestion API for custom log data collection. Used by DevOps engineers, SOC analysts, and platform administrators.

Run with Naftiko AzureLog AnalyticsMonitoringAnalyticsKQL

What You Can Do

POST

Execute query — Execute a KQL query.

/v1/queries

GET

List workspaces — List all workspaces.

/v1/workspaces

GET

Get workspace — Get a workspace.

/v1/workspaces/{workspaceName}

GET

List saved searches — List saved searches.

/v1/saved-searches

GET

List tables — List all tables.

/v1/tables

POST

Upload logs — Upload custom log entries.

/v1/ingest

MCP Tools

execute-query

Execute a KQL query against a Log Analytics workspace.

read-only

list-workspaces

List all Log Analytics workspaces in a subscription.

read-only

get-workspace

Get details of a specific Log Analytics workspace.

read-only

create-workspace

Create or update a Log Analytics workspace.

idempotent

delete-workspace

Delete a Log Analytics workspace.

idempotent

list-saved-searches

List saved searches in a workspace.

read-only

create-saved-search

Create or update a saved search in a workspace.

idempotent

list-tables

List all tables in a Log Analytics workspace.

read-only

upload-logs

Send custom log data to a workspace via data collection rule.

APIs Used

log-analytics-query log-analytics-management log-analytics-ingestion