Snapshots and Automating Backup using different ways in Azure.

Question

Snapshots and Automating Backup using different ways in Azure.

PIYUSH SOLANKI 60

I have been working on azure few days , I wanted to find out the older snapshots say more than 30 days which have not been used to create VM or any new managed disks. The snapshots have not been used to create any resources from the last 30 days .

Bharath Y P 8,495 Microsoft External Staff Moderator

Hello Piyush, it sounds like you want to identify all managed‐disk snapshots in your subscription that are older than 30 days and haven’t been used to create any new disks or VMs in the last 30 days. You can tackle this with a short PowerShell or CLI/Resource Graph workflow:

Use Azure PowerShell to pull snapshots older than 30 days


   # Log in and select your subscription

   Connect-AzAccount

   Select-AzSubscription -SubscriptionName "YourSubName"

   # Find snapshots older than 30 days

   $oldSnaps = Get-AzSnapshot | 

     Where-Object { $_.TimeCreated -lt (Get-Date).AddDays(-30) }

   # Of those, filter out any that were used as the source for a new disk

   $unusedSnaps = foreach ($snap in $oldSnaps) {

     $disk = Get-AzDisk | 

       Where-Object {

         $_.CreationData.SourceResourceId -eq $snap.Id `

         -or $_.CreationData.SourceUri -eq $snap.Id

       }

     if (-not $disk) { $snap }

   }

   # List the unused, old snapshots

   $unusedSnaps | Select-Object Name, ResourceGroupName, TimeCreated

Or use Azure CLI + Resource Graph for a single query


   # Log in and set subscription

   az login

   az account set --subscription "YourSubName"

   # Query snapshots older than 30 days that aren’t the source of any disk

   az graph query -q "

     Resources

     | where type =~ 'microsoft.compute/snapshots'

     | where properties.timeCreated < ago(30d)

     | join kind=leftouter (

         Resources

         | where type == 'Microsoft.Compute/disks'

       ) on $left.id == $right.properties.creationData.sourceResourceId

     | where isnull(right.id)

     | project snapshotName = name, resourceGroup, properties.timeCreated

   " -o table

Automate & schedule • Drop the script into an Azure Automation runbook or a scheduled Azure Function • Email or tag snapshots you plan to keep/delete • Optionally auto-delete using Remove-AzSnapshot -ResourceGroupName RG -SnapshotName Name

Reference List

• Configure and Manage Azure NFS File Share Snapshots (preview)

• Understand Azure NetApp Files snapshot-based data protection

• Azure VM backup – Database consistent snapshots

• Azure Backup services overview

• File-Snapshot Backups for Database Files in Azure

Hope this helps. and please feel free to reach out if you have any further questions.

PIYUSH SOLANKI 60 Reputation points

2026-04-27T05:47:47.0333333+00:00

Thank you , But Can you provide me steps to use only azure CLI to do that ? Like first list all the snapshots using CLI command and then from that select snapshot to find out that if that have been in use for the last 30 days. What specific attribute represents that the snapshot has not been used to create a new resource say managed disk or VM . Also other than azure automation runbook can i do that , with azure logic function , and using Azure backup service. If yes then what will be the steps . I would have used chat gpt , but I need some legit source like a professional to answer these .
PIYUSH SOLANKI 60 Reputation points

2026-04-27T08:41:23.2+00:00

Thank you so much for the help.
Bharath Y P 8,495 Reputation points Microsoft External Staff Moderator

2026-04-27T08:50:32.2466667+00:00

Hello Piyush, Hope this helps. If you need any further assistance, please feel free to reach out. If you find the information helpful, kindly accept the answer and consider upvoting it, as this may help other community members facing similar issues. Thank you.
PIYUSH SOLANKI 60 Reputation points

2026-04-27T10:16:48.1833333+00:00

One more question is that , Is there any documentation page available on Azure which can help understand the output generated by Azure CLI commands ?
PIYUSH SOLANKI 60 Reputation points

2026-04-27T10:17:13.4333333+00:00

One more question is that , Is there any documentation page available on Azure which can help understand the output generated by Azure CLI commands ?

Answer accepted by question author

1 additional answer

Your answer

PIYUSH SOLANKI 60 Reputation points

2026-04-27T05:47:47.0333333+00:00

Thank you , But Can you provide me steps to use only azure CLI to do that ? Like first list all the snapshots using CLI command and then from that select snapshot to find out that if that have been in use for the last 30 days. What specific attribute represents that the snapshot has not been used to create a new resource say managed disk or VM . Also other than azure automation runbook can i do that , with azure logic function , and using Azure backup service. If yes then what will be the steps . I would have used chat gpt , but I need some legit source like a professional to answer these .
PIYUSH SOLANKI 60 Reputation points

2026-04-27T08:41:23.2+00:00

Thank you so much for the help.
Bharath Y P 8,495 Reputation points Microsoft External Staff Moderator

2026-04-27T08:50:32.2466667+00:00

Hello Piyush, Hope this helps. If you need any further assistance, please feel free to reach out. If you find the information helpful, kindly accept the answer and consider upvoting it, as this may help other community members facing similar issues. Thank you.
PIYUSH SOLANKI 60 Reputation points

2026-04-27T10:16:48.1833333+00:00

One more question is that , Is there any documentation page available on Azure which can help understand the output generated by Azure CLI commands ?
PIYUSH SOLANKI 60 Reputation points

2026-04-27T10:17:13.4333333+00:00

One more question is that , Is there any documentation page available on Azure which can help understand the output generated by Azure CLI commands ?

Answer 1

Hello PIYUSH SOLANKI,

Welcome to the Microsoft Q&A and thank you for posting your questions here.

I understand that you would like to know more about the older Snapshots and Automating Backup using different ways in Azure.

This is a usage-history question, not just an age/inventory question. You can identify old snapshots and you can identify whether they are currently referenced by disks that were created from them, but you cannot retroactively prove historical “non-use” for deleted derived resources unless you retained the relevant control-plane logs. Azure keeps Activity Log data for 90 days by default, and Microsoft explicitly states that Activity Log records create, update, delete, and action operations, not reads; for longer or centralized retention, you must configure a diagnostic setting. - https://learn.microsoft.com/en-us/azure/azure-monitor/platform/activity-log, https://learn.microsoft.com/en-us/azure/azure-monitor/platform/activity-log-schema, https://learn.microsoft.com/en-us/azure/azure-monitor/platform/diagnostic-settings

However, you can solve your requirement as follows:

Use Azure Resource Graph to list all Microsoft.Compute/snapshots older than 30 days using properties.timeCreated.

   Resources
   | where type =~ 'microsoft.compute/snapshots'
   | extend snapshotTimeCreated = todatetime(properties.timeCreated)
   | where snapshotTimeCreated < ago(30d)
   | project snapshotId = id, snapshotName = name, resourceGroup, subscriptionId, location, snapshotTimeCreated
   | order by snapshotTimeCreated asc

https://learn.microsoft.com/en-us/azure/governance/resource-graph/, and https://docs.azure.cn/en-us/governance/resource-graph/first-query-portal shows you how to.

Use managed disk metadata to determine whether any current managed disk was created from a snapshot, because disks created with Copy expose properties.creationData.sourceResourceId, which can point to the snapshot ARM ID. Since Azure’s documented restore flow is snapshot → managed disk → VM, this is the correct linkage for “used to create a VM or disk.” https://learn.microsoft.com/en-us/azure/templates/microsoft.compute/disks, https://learn.microsoft.com/en-us/rest/api/compute/disks/create-or-update?view=rest-compute-2025-11-01, https://learn.microsoft.com/en-us/azure/virtual-machines/scripts/create-managed-disk-from-snapshot
If you need to know whether a snapshot was used historically in the last 30 days, including cases where the derived disk/VM was later deleted, you must rely on Azure Monitor Activity Log (90-day default retention) or on diagnostic settings that exported those logs to Log Analytics/Storage/Event Hubs. Without preserved control-plane logs, that historical answer cannot be reconstructed reliably after the fact. https://learn.microsoft.com/en-us/azure/azure-monitor/platform/activity-log, https://learn.microsoft.com/en-us/azure/azure-monitor/platform/activity-log-schema, and https://learn.microsoft.com/en-us/azure/azure-monitor/platform/diagnostic-settings
If your real objective is automatic snapshot retention and cleanup, do not treat manual snapshots as your backup platform; use Azure Disk Backup, which Microsoft documents as automating snapshot lifecycle management and retention for managed disks. https://learn.microsoft.com/en-us/azure/backup/disk-backup-overview and https://learn.microsoft.com/en-us/azure/backup/backup-managed-disks gibes more insight on how to.

I hope this is helpful! Do not hesitate to let me know if you have any other questions or clarifications.

Please don't forget to close up the thread here by upvoting and accept it as an answer if it is helpful.

PIYUSH SOLANKI 60 Reputation points

2026-04-28T04:13:56.67+00:00

Thank you .

Answer 2

You can absolutely do this end-to-end with Azure CLI. Here’s a 3-step pattern:

Set up your subscription and calculate the 30-day cutoff


   az login

   az account set --subscription "YourSubName"

   # ISO timestamp 30 days ago

   THIRTY_DAYS_AGO=$(date -u -d '30 days ago' +%Y-%m-%dT%H:%M:%SZ)

List snapshots older than 30 days


   az snapshot list \

     --query "[?properties.timeCreated<'$THIRTY_DAYS_AGO'].{Name:name, RG:resourceGroup, Created:properties.timeCreated, Id:id}" \

     -o table

From those old snaps, filter out any that have been used as the source of a new disk/VM You detect “used” by checking if any managed disk’s properties.creationData.sourceResourceId equals the snapshot’s id. If there’s no match, it’s unused. Option A – pure CLI + a little shell logic:


   # get all old snap IDs

   OLD_SNAPS=($(az snapshot list \

     --query "[?properties.timeCreated<'$THIRTY_DAYS_AGO'].id" \

     -o tsv))

   for SNAP_ID in "${OLD_SNAPS[@]}"; do

     COUNT=$(az disk list \

       --query "[?properties.creationData.sourceResourceId=='$SNAP_ID'] | length(@)" \

       -o tsv)

     if [[ $COUNT -eq 0 ]]; then

       az snapshot show --ids $SNAP_ID --query "{Name:name, RG:resourceGroup, Created:properties.timeCreated}"

     fi

   done

Option B – single Resource Graph query via CLI:


   az graph query -q "

     Resources

     | where type =~ 'microsoft.compute/snapshots'

     | where properties.timeCreated < ago(30d)

     | join kind=leftouter (

         Resources

         | where type == 'microsoft.compute/disks'

       ) on $left.id == $right.properties.creationData.sourceResourceId

     | where isnull($right.id)

     | project snapshotName=name, resourceGroup, timeCreated=properties.timeCreated

   " -o table

Attribute to check:

• properties.creationData.sourceResourceId on the disk resource.

If it’s never equal to your snapshot’s id, that snapshot wasn’t used to create a disk/VM in that period.

Automating & scheduling beyond Azure Automation Runbooks:

• Azure Logic Apps – use a Recurrence trigger + Azure Resource Graph connector (or an Azure CLI action) + built-in email/Teams connector to notify or invoke a deletion step.

• Azure Functions – write a small Python/PowerShell function that runs the same Resource Graph or Compute SDK code, schedule via a Timer trigger.

• Azure Backup Service – not for ad-hoc snapshots, but you can leverage backup policies (for VMs or File-shares) to manage snapshot frequency & retention automatically.

Hope that helps!

Reference List

• Azure VM backup – Database consistent snapshots

• Learn about Azure Backup services

• File-Snapshot Backups for Database Files in Azure

Bharath Y P 8,495 Reputation points Microsoft External Staff Moderator

2026-04-28T03:46:36.2233333+00:00

Hello Piyush, Hope the document provided by Sina Salam helpful regarding your ask, If the information shared was helpful, please accept the answer and upvote. Please feel free to reach out if you have any additional questions or need further clarification. Thanks

Share via

Snapshots and Automating Backup using different ways in Azure.

1 additional answer

Your answer