count () (總計函數)

語法

count()

退貨

傳回每個摘要群組的記錄計數 (或總計，如果摘要已完成而沒有分組的話)。

範例

此範例只是依其 severity聚集 events 。

events 
    | project severity, original_time
    | where original_time > ago(24h)
    | where severity > 6 
    | summarize EventCount=count() by EventSeverity=severity
    | order by EventSeverity desc