Integration Logic Apps premium

Built-in connector

A built-in connector is an Azure Logic Apps connector that runs natively with the Logic Apps runtime instead of through a separately hosted managed connector service. It gives workflow designers triggers and actions for schedules, requests, data operations, control flow, service providers, and common integration tasks. In plain English, it is the connector type closest to the workflow engine. Teams choose it when they want lower integration overhead, private-network support in Standard workflows, or behavior that fits the Logic Apps runtime directly.

Back to glossary browser Open Microsoft Learn source
Aliases
No aliases mapped yet
Difficulty
intermediate
CLI mappings
4
Last verified
2026-05-12

Microsoft Learn

A built-in connector is an Azure Logic Apps connector that runs natively with the Logic Apps runtime instead of through a separately hosted managed connector service. Microsoft Learn places it in Built-in connectors in Azure Logic Apps; operators confirm scope, configuration, dependencies, and production impact.

Microsoft Learn: Built-in connectors in Azure Logic Apps2026-05-12

Technical context

Technically, built-in connectors are available in the Logic Apps designer and runtime, with different behavior depending on Consumption or Standard workflow architecture. In Standard logic apps, many built-in service-provider connectors run in the same single-tenant runtime and can use app settings, managed identities, virtual network integration, and local workflow configuration. Operators inspect workflow JSON, connections, app settings, host logs, run history, and connector-specific settings. Built-in does not mean unrestricted; authentication, networking, throttling, and connector limits still apply.

Why it matters

Built-in connector matters because connector choice affects security, latency, troubleshooting, network design, and supportability. A workflow that uses a built-in connector may avoid the extra hop and regional dependency of a managed connector, and in Standard workflows it can better align with private network access. That can improve sensitive integrations such as storage, Service Bus, SQL, or internal APIs. The mistake is assuming built-in connectors are always better or always available for every system. Architects should compare connector capabilities, authentication options, runtime plan, retry behavior, observability, and regional support before committing a business process to a connector pattern. That evidence keeps accountability clear.

Where you see it

Signals, screens, and Azure surfaces where this term usually becomes operational.

Signal 01

In Logic Apps designer, built-in connectors appear in the In app or built-in groups for triggers, actions, control flow, and service providers. for governance and incident response.

Signal 02

In workflow JSON and app settings, built-in connectors appear as operation types, connection references, authentication settings, host configuration, and environment-specific values. for governance and incident response.

Signal 03

In run history and diagnostics, connector evidence appears through action duration, retry attempts, failed authentication, target service errors, and workflow tracking records. for governance and incident response.

When this becomes relevant

Specific situations where this term helps solve real Azure design, operations, migration, security, reliability, cost, or governance problems.

  • Export workflow definitions to confirm which connectors production actually uses.
  • Compare app settings and connection references between staging and production.
  • Collect failed run and host log evidence before changing connector configuration.

Real-world case studies

Different enterprise-style examples that show the term being used to hit measurable objectives.

Case study 01

Built-in connector for private claims workflow

Scenario, objectives, solution, measured impact, and takeaway.

Scenario

Contoso Mutual, an insurance carrier, needed a Logic Apps workflow to process claims documents from private storage and write validated events to Service Bus without exposing connectors publicly.

Business/Technical Objectives
  • Keep document processing inside approved virtual networks
  • Reduce connector latency for high-volume claims intake
  • Use managed identity instead of shared secrets where possible
  • Give operators clear run-history evidence for failed claims
Solution Using Built-in connector

Architects moved the workflow to a Standard logic app and chose built-in connectors for storage access, Service Bus messaging, request handling, and data operations. The app used virtual network integration, private endpoints, managed identity role assignments, and app settings for environment-specific values. Workflow definitions were deployed from source control so connector types and connection names were reviewable. Operators watched run history, host logs, storage metrics, and Service Bus dead-letter counts to distinguish connector failures from downstream service issues. Security reviewed callback URLs and retained only the payload data required for claims audit. The team reviewed results with application owners before closing the change record.

Results & Business Impact
  • Average workflow action latency improved by 31 percent
  • Shared storage keys were removed from the integration path
  • Private connectivity review passed without remediation findings
  • Failed-claim triage time dropped from 45 minutes to 12 minutes
Key Takeaway for Glossary Readers

A built-in connector can simplify secure Logic Apps integration when runtime, identity, and network design are handled deliberately.

Case study 02

Built-in connector for retail order routing

Scenario, objectives, solution, measured impact, and takeaway.

Scenario

UrbanCart Retail, an online merchant, needed to route order events from an internal API to fulfillment queues while keeping weekend traffic spikes predictable.

Business/Technical Objectives
  • Process 50,000 order events per hour during promotions
  • Avoid managed-connector regional dependency for critical actions
  • Capture retries and failed actions in workflow diagnostics
  • Deploy connector settings consistently across environments
Solution Using Built-in connector

The integration team used a Standard logic app with built-in Request, Control, Data Operations, and Service Bus connectors. The workflow validated the incoming order, enriched routing fields, and wrote messages to regional queues with managed identity. App settings held queue names and endpoints, while Bicep deployed the workflow, diagnostic settings, and role assignments. Operators compared run duration, action failures, and queue depth during campaign simulations. A rollback plan kept the previous workflow version disabled but ready, and connector configuration was reviewed during every release gate. The team reviewed results with application owners before closing the change record. Support notes documented rollback ownership and business approval.

Results & Business Impact
  • Promotion order routing completed with 99.96 percent successful workflow runs
  • Managed-connector timeout incidents were eliminated for the critical path
  • Environment drift findings dropped by 80 percent
  • Queue backlog during peak sale events fell below the five-minute target
Key Takeaway for Glossary Readers

Built-in connectors are practical when a workflow needs native runtime behavior, clear diagnostics, and repeatable deployment controls.

Case study 03

Built-in connector for public health notifications

Scenario, objectives, solution, measured impact, and takeaway.

Scenario

Harbor State Health, a public-sector agency, needed a Logic Apps workflow to receive secure partner submissions and notify internal teams without adding custom integration code.

Business/Technical Objectives
  • Accept partner submissions through a controlled request endpoint
  • Normalize payloads before sending internal notifications
  • Limit workflow access to approved managed identities and operators
  • Provide audit-ready run history for each submission
Solution Using Built-in connector

Engineers implemented a Standard logic app that used built-in Request, Compose, Condition, and built-in service-provider connectors for internal queues and storage. The request endpoint was protected through upstream API Management, and all downstream actions used managed identity where supported. Workflow JSON was reviewed in Git so auditors could see the connector types, trigger contract, and app setting names. Diagnostics sent run events to Log Analytics, where operators built a query showing submission ID, action state, connector errors, and message output location. The team reviewed results with application owners before closing the change record. Support notes documented rollback ownership and business approval.

Results & Business Impact
  • Partner onboarding time dropped from 21 days to 8 days
  • Custom integration code was reduced by four small services
  • Audit report preparation fell from one week to one day
  • Submission failure resolution improved from hours to under 20 minutes
Key Takeaway for Glossary Readers

A built-in connector lets teams express integration behavior inside Logic Apps while keeping security and operations visible.

Why use Azure CLI for this?

Use CLI, ARM, workflow JSON, and diagnostics for built-in connectors when you need repeatable proof of connector type, settings, and run behavior.

CLI use cases

  • Export workflow definitions to confirm which connectors production actually uses.
  • Compare app settings and connection references between staging and production.
  • Collect failed run and host log evidence before changing connector configuration.

Before you run CLI

  • Confirm tenant, subscription, scope, resource group, region, and environment before collecting or changing production evidence.
  • Use least-privileged access and avoid exposing keys, tokens, personal data, billing details, or confidential topology in output.
  • Know whether the command is read-only, mutating, cost-impacting, or security-impacting before running it in production.

What output tells you

  • Output confirms whether the live configuration exists at the expected Azure scope and matches the approved design.
  • Returned properties, metrics, or logs help separate healthy service behavior from drift, missing configuration, or workload symptoms.
  • Differences between environments provide evidence for rollback, tuning, support escalation, audit review, or owner follow-up.

Mapped Azure CLI commands

Logicapp operations

direct
az logicapp list --resource-group <resource-group>
az logicappdiscoverIntegration
read-only Microsoft docs
az logicapp show --name <logic-app-name> --resource-group <resource-group>
az logicappdiscoverIntegration
read-only Microsoft docs
az logicapp create --name <logic-app-name> --resource-group <resource-group> --location <region>
az logicappprovisionIntegration
cost-impacting Microsoft docs
az logicapp start --name <logic-app-name> --resource-group <resource-group>
az logicappoperateIntegration
mutating Microsoft docs

Architecture context

Built-in connector matters because connector choice affects security, latency, troubleshooting, network design, and supportability. A workflow that uses a built-in connector may avoid the extra hop and regional dependency of a managed connector, and in Standard workflows it can better align with private network access. That can improve sensitive integrations such as storage, Service Bus, SQL, or internal APIs. The mistake is assuming built-in connectors are always better or always available for every system. Architects should compare connector capabilities, authentication options, runtime plan, retry behavior, observability, and regional support before committing a business process to a connector pattern. That evidence keeps accountability clear.

Security

Security for a built-in connector centers on how the workflow authenticates and where the operation executes. Prefer managed identity when supported, protect app settings and connection secrets, and verify role assignments on target services. In Standard logic apps, virtual network integration can help private connectivity, but it also requires careful DNS, firewall, and subnet design. Review who can edit workflow definitions, connections, app settings, and deployment slots. Avoid exposing request triggers or callback URLs without controls. Logs and run history can contain payload data, so configure retention and access accordingly. Built-in connector security is a shared design responsibility. Review exceptions after each change.

Cost

Cost impact depends on the Logic Apps plan, execution volume, connector type, network design, and downstream calls. Built-in connectors can reduce some managed connector charges or latency, but Standard workflows have hosting costs and scaling choices that must be sized correctly. A high-volume workflow can also drive storage, database, Service Bus, or API costs through repeated retries or polling. Cost review should include trigger frequency, action counts, payload size, diagnostics retention, private networking, and idle capacity. The cheapest connector is not always the safest choice; compare total operating cost, support complexity, and business risk before choosing. Review outcomes after each billing cycle.

Reliability

Reliability depends on connector capability, workflow retry policy, runtime health, and downstream service behavior. Built-in connectors reduce some managed-connector dependencies, but they still depend on the Logic Apps host, network path, identity, and target service. Operators should test failures such as expired secrets, denied roles, DNS issues, throttling, malformed payloads, and downstream outages. Run history, tracked properties, diagnostics, and alerts should show where a workflow failed. Reliable designs use idempotent actions, retry limits, dead-letter or compensation patterns, and clear recovery steps. A connector that works in development can fail in production if network or identity assumptions differ. Test the recovery path regularly.

Performance

Performance for a built-in connector depends on runtime placement, connector implementation, target service latency, network path, retry behavior, and payload size. In Standard workflows, running closer to the Logic Apps runtime can reduce overhead compared with some managed connector paths, especially when private networking is used well. Still, slow downstream APIs, large messages, chatty loops, or high concurrency can dominate performance. Operators should monitor run duration, action latency, failures, throttling, and host resource pressure. Performance testing should include realistic payloads and peak schedules. Tune concurrency, batching, retries, and trigger frequency without overwhelming dependent services. Document baseline measurements before tuning. Document baseline measurements before tuning.

Operations

Operationally, a built-in connector should be documented as part of the workflow contract. Record which connector type is used, why it was chosen, how it authenticates, which app settings it needs, and how operators confirm successful runs. Deployment pipelines should validate workflow JSON, connection references, app settings, and target resource permissions. During incidents, compare run history, host logs, connector errors, and downstream service metrics before changing code. Operators also need rollback guidance because switching between built-in and managed connectors can change behavior. Good operations make connector decisions visible instead of hiding them inside designer screenshots. Keep owners and evidence current.

Common mistakes

  • Assuming every managed connector has an equivalent built-in connector with identical behavior.
  • Ignoring app settings and identity requirements because the connector appears inside the designer.
  • Switching connector types without retesting retries, payload handling, and private connectivity.