Reliability in Azure Logic Apps

Azure Logic Apps helps you more easily integrate and orchestrate data between apps, cloud services, and on-premises systems by reducing how much code that you have to write.

When you use Azure, reliability is a shared responsibility. Microsoft provides a range of capabilities to support resiliency and recovery. You're responsible for understanding how those capabilities work within all of the services you use, and selecting the capabilities you need to meet your business objectives and uptime goals.

This article describes how to make logic app workflows resilient to a variety of potential outages and problems, including transient faults, availability zone outages, and region outages. It also highlights some key information about the Azure Logic Apps service level agreement (SLA).

Production deployment recommendations for reliability

For production workloads, we recommend that you:

For enterprise and secure workflows with isolation or network security requirements, create and run Standard workflows in single-tenant Azure Logic Apps, rather than Consumption workflows in multitenant Azure Logic Apps. For more information, see Create and deploy to different environments.

For production deployments with single-tenant Azure Logic Apps, enable zone redundancy to spread your logic app resources across multiple availability zones.

Reliability architecture overview

This section describes some of the important aspects of how the service works that are most relevant from a reliability perspective. The section introduces the logical architecture, which includes some of the resources and features that you deploy and use. It also discusses the physical architecture, which provides details on how the service works under the covers.

Logical architecture

The primary resource you deploy is a logic app. Consumption logic apps have only one workflow, while Standard logic apps can have more than one workflow. Most workflows use one or more connections to access other apps, services, and systems.

If you access data in on-premises systems, you might deploy an on-premises data gateway. Each gateway resource represents a separate data gateway installation on a local computer. You can configure an on-premises data gateway for high availability by using multiple computers. For more information, see High availability support.

When you use Azure Logic Apps for business-to-business (B2B) enterprise integration scenarios, you might deploy integration accounts where you define and store the artifacts that logic app workflows use.

Physical architecture

For Consumption logic apps, Azure Logic Apps automatically manages the compute infrastructure, state storage, and other resources. You don't need to configure or manage any virtual machines (VMs). Consumption logic apps share compute infrastructure between many customers.

For Standard logic apps, Azure Logic Apps uses compute resources called Workflow Service Plans, or plans, which are dedicated to you. Each plan can have multiple instances, which you can optionally spread across multiple availability zones. Each instance roughly maps to a virtual machine (VM), but you don't see those VMs and you don't need to configure or manage them directly. Your workflows run on instances of your plan.

Standard logic apps require that you configure storage to maintain the state for stateful workflows. For more information, see Stateful and stateless workflows.

Standard logic apps use similar underlying infrastructure to Azure Functions and Azure App Service. However, some differences exist in the way you configure plans for logic apps compared to other services.

For more information, see Differences between Standard logic apps versus Consumption logic apps.

Resilience to transient faults

Transient faults are short, intermittent failures in components. They occur frequently in a distributed environment like the cloud, and they're a normal part of operations. Transient faults correct themselves after a short period of time. It's important that your applications can handle transient faults, usually by retrying affected requests.

All cloud-hosted applications should follow the Azure transient fault handling guidance when they communicate with any cloud-hosted APIs, databases, and other components. For more information, see Recommendations for handling transient faults.

In Azure Logic Apps, many workflow triggers and actions automatically support retry policies, which automatically retry requests that fail due to transient faults. For more information about how to change or disable retry policies, see Handle errors and exceptions in Azure Logic Apps.

If an action fails, you can customize the behavior of subsequent actions. You can also create scopes to group related actions that might fail or succeed together.

For more information, see Handle errors and exceptions in Azure Logic Apps.

Resilience to availability zone failures

Availability zones are physically separate groups of datacenters within an Azure region. When one zone fails, services can fail over to one of the remaining zones.

Azure Logic Apps supports zone redundancy, which spreads compute resources and state across multiple availability zones. When you distribute logic app workload resources across availability zones, you improve resiliency and reliability for your production logic app workloads.

New and existing Consumption logic app workflows in multitenant Azure Logic Apps automatically enable zone redundancy.

Azure Logic Apps supports zone redundancy, which spreads compute resources across multiple availability zones. You can optionally configure zone redundancy for the state that your logic app workflows store. When you distribute logic app workload resources across availability zones, you improve resiliency and reliability for your production logic app workloads.

For Standard workflows with the Workflow Service Plan hosting option in single-tenant Azure Logic Apps, you can optionally enable zone redundancy.

For Standard workflows with the App Service Environment v3 hosting option, you can optionally enable zone redundancy. For more information on how App Service Environment v3 supports availability zones, see Reliability in App Service Environment.

Requirements

Region support: Consumption logic apps deployed in any region that supports availability zones are automatically zone redundant. Japan West is the exception, which currently doesn't support zone-redundant logic apps because some dependent services don't yet support zone redundancy.

Region support: You can deploy zone-redundant Standard logic apps with Workflow Service Plans in any region that supports availability zones for Azure App Service. Japan West is the exception, which currently doesn't support zone-redundant logic apps because some dependent services don't yet support zone redundancy. For more information, see Reliability in Azure App Service.

Region support: To see which regions support availability zones for App Service Environment v3, see Regions.

Instance count: You must deploy at least two instances of your Workflow Service Plan. Each instance roughly corresponds to one VM, so to distribute these instances (VMs) across multiple availability zones, you must have two instances at minimum.

Considerations

Storage: When you configure external storage for stateful Standard workflows, you must configure your storage account for zone redundancy. For more information, see Storage considerations for Azure Functions.

Connectors: Built-in connectors are automatically zone redundant when your logic app is zone redundant.
Integration accounts: Premium SKU integration accounts are zone redundant by default.

Cost

No additional cost applies to use zone redundancy, which is automatically enabled for new and existing Consumption logic apps in multitenant Azure Logic Apps.

When you have Standard logic apps with the Workflow Service Plan in single-tenant Azure Logic Apps, no additional cost applies to enabling availability zones if you have two or more plan instances. You're charged based on your plan SKU, the specified capacity, and any instances that you scale up or down, based on your autoscale criteria. If you enable availability zones but specify fewer than two instances, the platform enforces the minimum two instances and charges you for these two instances.

App Service Environment v3 has a specific pricing model for zone redundancy. For pricing information for App Service Environment v3, see Pricing.

Configure availability zone support

Consumption logic app workflows automatically support zone redundancy, so no configuration is required.

Create a new zone-redundant logic app: To enable zone redundancy for Standard logic apps, see Enable zone redundancy for your logic app.
Enable zone redundancy on an existing logic app: You can't enable zone redundancy after you create a service plan. Instead, you need to create a new plan with zone redundancy enabled and delete the old one.
Disable zone redundancy: You can't disable zone redundancy after you create a Workflow Service Plan. Instead, you need to create a new plan with zone redundancy disabled and delete the old one.

Capacity planning and management

To prepare for availability zone failure, consider over-provisioning the capacity of your plan. Over-provisioning allows the solution to tolerate some degree of capacity loss and still continue to function without degraded performance. For more information, see Manage capacity with over-provisioning.

Behavior when all zones are healthy

This section describes what to expect when logic app resources are configured for zone redundancy and all availability zones are operational.

Traffic routing between zones: During normal operations, workflow invocations can use compute resources from any availability zone in the region.
Data replication between zones: For stateful workflows, workflow state is synchronously replicated between availability zones by using zone-redundant storage (ZRS).

Traffic routing between zones: During normal operations, workflow invocations are spread among all your available plan instances across all availability zones.
Data replication between zones: For stateful workflows, workflow state is stored based on the state storage you configured. When you use Azure Storage as your external storage system, you need to use zone-redundant storage (ZRS), which synchronously replicates the workflow state between availability zones.

Behavior during a zone failure

This section describes what to expect when an availability zone outage occurs while logic app resources are configured for zone redundancy.

Detection and response: Azure Logic Apps is responsible for detecting a failure in an availability zone. You don't need to do anything to initiate a zone failover.

Notification: Microsoft doesn't automatically notify you when a zone is down. However, you can use Azure Service Health to understand the overall health of the service, including any zone failures, and you can set up Service Health alerts to notify you of problems.

Active requests: If an availability zone becomes unavailable, Azure Logic Apps terminates any in-progress workflow executions that run on a VM in the faulty availability zone. The platform automatically resumes the workflow on another VM in a different availability zone. Due to this behavior, active workflows might experience some transient faults or higher latency as new VMs are added to the remaining availability zones.
Expected downtime: No downtime is expected in Azure Logic Apps. However, if dependencies exist on other services that experience downtime, your logic app might also be affected.
Expected data loss: No data loss is expected.

Traffic rerouting: Incoming traffic is automatically distributed to infrastructure in healthy zones.

Traffic rerouting: Incoming traffic is automatically distributed to new plan instances in healthy zones when they're available. For more information, see Reliability in Azure App Service - Behavior during a zone failure.

Nonruntime behaviors: Logic app workflows in a zone-redundant plan continue to run even if an availability zone experiences an outage. However, nonruntime behaviors might be affected during an availability zone outage. For details and a list of these behaviors, see Reliability in Azure App Service - Behavior during a zone failure.

Nonruntime behaviors: Logic app workflows in a zone-redundant plan continue to run even if an availability zone experiences an outage. However, nonruntime behaviors might be affected during an availability zone outage. For details and a list of these behaviors, see Reliability in Azure App Service Environment - Behavior during a zone failure.

Zone recovery

When the availability zone recovers, Azure Logic Apps automatically restores instances in the availability zone, removes any temporary instances created in the other availability zones, and reroutes traffic between your instances as normal.

Test for zone failures

Azure Logic Apps manages traffic routing, failover, and failback for zone-redundant logic app resources. You don't need to initiate anything. This feature is fully managed, so you don't need to validate availability zone failure processes.

Resilience to region-wide failures

Each logic app is deployed into a single Azure region. If the region becomes unavailable, your logic app is also unavailable.

Custom multi-region solutions for resiliency

For higher resiliency, you can deploy a standby or backup logic app in a secondary region and fail over to that other region if the primary region is unavailable. To enable this capability, complete the following tasks:

Deploy your logic app in both primary and secondary regions.
Reconfigure connections to resources as needed.
Configure load balancing and failover policies.
Plan to monitor the primary instance health and initiate failover.

For more information on multi-region deployments for your logic app workflows, see:

Service-level agreement

The service-level agreement (SLA) for Azure services describes the expected availability of each service and the conditions that your solution must meet to achieve that availability expectation. For more information, see SLAs for online services.

Feedback

Was this page helpful?

Last updated on 2025-12-14