Containers Azure Container Apps premium

Consumption workload profile

Consumption workload profile means the Azure Container Apps workload profile for serverless container workloads that should scale based on demand and incur cost only while running. Teams use it to run containerized apps or jobs without dedicated workload-profile instances while preserving Container Apps features such as revisions, ingress, scaling rules, and environment-level networking. In Azure work, operators usually see it in portal settings, deployment output, metrics, logs, access records, SDK configuration, and runbooks. The practical question is who owns it, what scope it affects, and what evidence proves it is working.

Back to glossary browser Open Microsoft Learn source
Aliases
No aliases mapped yet
Difficulty
intermediate
CLI mappings
3
Last verified
2026-05-12

Microsoft Learn

A Consumption workload profile in Azure Container Apps provides serverless compute for container apps with scale-to-zero behavior and usage-based billing in a workload profiles environment.

Microsoft Learn: Workload profiles in Azure Container Apps2026-05-12

Technical context

Technically, Consumption workload profile is a workload profile type in Azure Container Apps environments that provides consumption-based compute distinct from Dedicated and Flex profiles. Engineers verify it with service configuration, IDs, logs, metrics, request records, and deployment evidence. Important configuration includes environment type, workload profile name, CPU and memory requests, min and max replicas, scale rules, ingress, identity, networking, and revision traffic. Production reviews should capture owner, scope, region, identity, limits, recent changes, and diagnostics before changing behavior.

Why it matters

Consumption workload profile matters because teams can put latency-sensitive or resource-heavy containers on consumption capacity without testing startup time, scaling limits, networking, or cost under bursts. The business impact is rarely abstract: users see slower workflows, missing data, failed automation, audit gaps, support delays, or unexpected cost when the term is misunderstood. A strong glossary entry gives architects, developers, security reviewers, and operators the same language for design reviews and incident handoffs. It connects Azure configuration to measurable objectives, ownership, rollback paths, and evidence, so teams treat it as an operational control rather than a portal label. That discipline helps teams make safer changes under pressure.

Where you see it

Signals, screens, and Azure surfaces where this term usually becomes operational.

Signal 01

You see Consumption workload profile in Container Apps environments, workload profiles, revisions, and billing records when confirming serverless profile selection, replica scale, resource limits, and environment capacity for release, audit, or incident evidence.

Signal 02

You see Consumption workload profile during troubleshooting when apps scale unexpectedly or bills differ by workload profile and operators must connect portal state, CLI output, logs, metrics, owners, and rollback notes.

Signal 03

You see Consumption workload profile in architecture reviews when teams decide which Container Apps workloads should run consumption capacity, how evidence is gathered, and how it affects security, reliability, operations, cost, and performance.

When this becomes relevant

Specific situations where this term helps solve real Azure design, operations, migration, security, reliability, cost, or governance problems.

  • Deploy applications as images instead of server-specific installs.
  • Manage scaling, ingress, environment variables, secrets, and runtime isolation.
  • Separate build artifacts, cluster capacity, app revisions, and traffic routing.
  • Troubleshoot image pulls, identity, networking, probes, or rollout failures.

Real-world case studies

Different enterprise-style examples that show the term being used to hit measurable objectives.

Case study 01

Insurance quote API bursts

Scenario, objectives, solution, measured impact, and takeaway.

Scenario

Woodgrove Insurance containerized a quote precheck API that spiked after advertising campaigns but sat idle overnight.

Business/Technical Objectives
  • Handle campaign spikes without dedicated idle nodes
  • Keep precheck latency under 500 milliseconds after warm-up
  • Track cost by quote channel
  • Preserve blue-green revision rollback
Solution Using Consumption workload profile

Architects deployed the API to Azure Container Apps on a Consumption workload profile with HTTP scaling rules and zero minimum replicas outside campaign hours. Container images were slimmed to reduce startup time, and traffic was shifted through revisions during rollout. Application Insights and Log Analytics tracked request latency, replica count, image-pull time, and channel tags. A runbook defined when to temporarily raise minimum replicas during planned campaigns. The runbook captured owner, environment, approval link, rollback condition, and the exact Azure evidence operators had to collect before and after each change. A dashboard tracked adoption, exceptions, and operational signals so support, security, and finance teams could review outcomes without relying on informal notes. The team reviewed results after the pilot and kept the design in the standard platform checklist for future deployments.

Results & Business Impact
  • Idle compute cost fell by 62 percent
  • Warm request latency stayed below 280 milliseconds
  • Campaign cost was reported by channel
  • Revision rollback completed in under six minutes
Key Takeaway for Glossary Readers

A Consumption workload profile is practical for container APIs when startup time and planned bursts are measured.

Case study 02

Manufacturing file conversion jobs

Scenario, objectives, solution, measured impact, and takeaway.

Scenario

Proseware Plants needed containerized CAD file conversion jobs for suppliers that uploaded files unpredictably.

Business/Technical Objectives
  • Scale conversion workers only when files arrive
  • Avoid managing Kubernetes nodes
  • Keep failed jobs retryable
  • Control log and compute cost
Solution Using Consumption workload profile

Engineers deployed Container Apps jobs on the Consumption workload profile with queue-based scaling. Managed identity accessed Storage and Key Vault, and Container Registry permissions were scoped to the job environment. Large image layers were removed to speed startup. Azure Monitor tracked job executions, retries, CPU time, and log ingestion. Failed files were moved to a review queue so supplier support could act without rerunning every conversion. The runbook captured owner, environment, approval link, rollback condition, and the exact Azure evidence operators had to collect before and after each change. A dashboard tracked adoption, exceptions, and operational signals so support, security, and finance teams could review outcomes without relying on informal notes. The team reviewed results after the pilot and kept the design in the standard platform checklist for future deployments.

Results & Business Impact
  • Idle worker infrastructure was eliminated
  • Average conversion started in under 45 seconds
  • Failed files were isolated automatically
  • Monthly job cost was 48 percent below the VM design
Key Takeaway for Glossary Readers

Consumption workload profiles let containerized batch jobs stay economical when triggers and failure handling are designed first.

Case study 03

Public health portal seasonal load

Scenario, objectives, solution, measured impact, and takeaway.

Scenario

Contoso Health hosted a seasonal vaccination eligibility service that needed container features but not year-round dedicated capacity.

Business/Technical Objectives
  • Scale during registration windows
  • Avoid idle off-season capacity
  • Keep ingress and identity controls consistent
  • Define promotion path to dedicated capacity
Solution Using Consumption workload profile

The team deployed the portal backend to a Consumption workload profile and used revision traffic splitting for releases. Managed identity called Cosmos DB and Communication Services, while private environment settings limited exposed paths. Load tests measured cold start, peak replicas, and downstream database limits. The platform standard documented thresholds for moving to a Dedicated profile if sustained daily demand exceeded the consumption design. The runbook captured owner, environment, approval link, rollback condition, and the exact Azure evidence operators had to collect before and after each change. A dashboard tracked adoption, exceptions, and operational signals so support, security, and finance teams could review outcomes without relying on informal notes. The team reviewed results after the pilot and kept the design in the standard platform checklist for future deployments.

Results & Business Impact
  • Off-season compute spend dropped 71 percent
  • Registration windows handled expected peak traffic
  • Identity controls matched dedicated environments
  • Promotion criteria were approved before launch
Key Takeaway for Glossary Readers

Consumption workload profiles give teams serverless container economics while preserving a path to dedicated capacity when demand becomes steady.

Why use Azure CLI for this?

Use CLI checks to confirm workload profile placement, app scale rules, and revision settings before diagnosing cold starts or unexpected Container Apps charges.

CLI use cases

  • Show the Container Apps environment workload profiles before placing a new app.
  • Inspect an app revision to confirm it uses the intended workload profile.
  • Review replica and scale rule settings during burst-cost investigations.

Before you run CLI

  • Confirm the active tenant, subscription, resource group, workspace, account, or region before running commands.
  • Use least-privileged access and avoid storing secrets, tokens, contact data, connection strings, or personal data in command output.
  • Know whether the command is read-only, mutating, cost-impacting, security-impacting, or destructive before production use.

What output tells you

  • Output confirms whether the live Azure configuration exists at the expected scope and matches the approved design.
  • Returned IDs, settings, metrics, timestamps, or logs help separate configuration drift from application behavior.
  • Differences between expected and actual state create evidence for rollback, escalation, audit, or owner follow-up.

Mapped Azure CLI commands

Containerapp operations

direct
az containerapp list --resource-group <resource-group>
az containerappdiscoverContainers
read-only Microsoft docs
az containerapp show --name <container-app> --resource-group <resource-group>
az containerappdiscoverContainers
read-only Microsoft docs
az containerapp up --name <container-app> --image <image>
az containerappprovisionContainers
cost-impacting Microsoft docs
az containerapp update --name <container-app> --resource-group <resource-group> --image <image>
az containerappconfigureContainers
mutating Microsoft docs
az containerapp logs show --name <container-app> --resource-group <resource-group>
az containerapp logsdiscoverContainers
read-only Microsoft docs

Architecture context

Technically, Consumption workload profile is a workload profile type in Azure Container Apps environments that provides consumption-based compute distinct from Dedicated and Flex profiles. Engineers verify it with service configuration, IDs, logs, metrics, request records, and deployment evidence. Important configuration includes environment type, workload profile name, CPU and memory requests, min and max replicas, scale rules, ingress, identity, networking, and revision traffic. Production reviews should capture owner, scope, region, identity, limits, recent changes, and diagnostics before changing behavior.

Security

Security for Consumption workload profile starts with understanding container images, managed identities, secrets, ingress exposure, environment networking, registry permissions, log content, and who can deploy revisions. Review identities, roles, secrets, network paths, data classification, logs, and who can change the setting. Prefer least privilege, private access when available, managed identity or protected credentials, and audit evidence. Watch for broad permissions, sensitive data in logs, shared keys, public endpoints, stale owners, and exceptions without expiry. Production use should include an approved owner, access boundary, alert routing, and a revocation process operators can execute during an incident. Security reviewers should tie every exception to risk acceptance and expiry.

Cost

Cost for Consumption workload profile comes from running replicas, execution duration, log ingestion, image pulls, retries, background jobs, overactive scale rules, and accidental always-on minimum replicas. Direct costs may be obvious, but indirect costs can appear as retries, duplicate processing, idle capacity, failed deployments, excessive logs, data movement, investigation time, or support effort. Review budgets, tags, usage metrics, quota, retention, SKU, and forecasts before enabling or scaling it. Tie every cost increase to a business objective, owner, and measurement window so finance can distinguish planned investment from waste. This prevents small platform choices from becoming unexplained monthly variance. It also helps teams defend capacity when spend is intentional.

Reliability

Reliability for Consumption workload profile depends on replica scaling, cold starts, image pulls, revision rollout, health probes, dependency readiness, environment limits, and recovery from downstream outages. Operators should know the expected failure mode, dependency chain, recovery target, and whether retries, failover, reprocessing, reauthentication, or manual approval are required. Monitor health, latency, quota, backlog, error rates, stale state, and downstream failures. Test the failure path, not just the happy path, and keep rollback instructions near the deployment record. If the setting affects data or access, rehearse recovery before the next incident. That rehearsal protects users when normal automation is unavailable. It also helps teams separate platform faults from application mistakes.

Performance

Performance for Consumption workload profile is about container startup time, scale-out speed, CPU and memory requests, concurrency, ingress latency, image size, KEDA trigger delay, and downstream throttling. Measure signals that reflect user or workload experience, such as latency, throughput, request units, connection counts, response time, queue depth, cache behavior, lag, or throttled operations. Avoid tuning one setting in isolation when identity, network path, partitioning, model size, region, client code, or downstream services also influence results. Keep baseline measurements before and after changes so improvements are visible and regressions are caught early. That evidence helps teams optimize the real bottleneck instead of the most visible setting.

Operations

Operationally, Consumption workload profile needs clear ownership, naming, tagging, change records, and repeatable verification. Teams should know where it appears, which commands or queries prove state, which dashboard shows health, and what is safe to change during business hours. Keep examples, approvals, rollback notes, and exception records with the service runbook rather than personal notes. For production changes, capture before-and-after evidence, including resource IDs, region, tenant, policy assignment, metric window, and any downstream service affected, plus owner, escalation path, and review date. This turns troubleshooting from guesswork into a repeatable support process. It also gives auditors and new operators the same source of truth.

Common mistakes

  • Assuming consumption containers behave like always-warm dedicated instances.
  • Setting minimum replicas above zero without explaining the cost tradeoff.
  • Using large images and then blaming the platform for slow cold starts.