@Ofer_Sheza “I have been delivering level 400 Azure Sentinel for a while, and over time most of the training modules were recorded as webinars. In this blog post, I try to walk you through Azure Sentinel level 400 training and help you become Azure Sentinel master. Already did the Ninja training, focus only on…”
Windows Virtual Desktop can be a good fit for organizations seeking to enable remote work scenarios. As a result, the new Windows Virtual Desktop Azure Resource Manager (ARM)-based model is now available as a public preview and available to all customers. In this article, I’d like to cover the deepe…
General Study Resources
Skill Area Study Topics (non-exhaustive)
Manage Identity and Access
Implement Platform Protection
Secure Data and Applications
Manage Security Operations
…Microsoft Azure provides several features in Azure Storage for storing and accessing your data in the cloud. This article covers Azure Files, Blobs, and Disks, and is designed to help you choose between these features…
#InANutshell…VSTS is the cloud offering…#TFS is the On-Prem offering ….
VSTS and Team Foundation Server (TFS) both provide an integrated, collaborative environment that supports Git, continuous integration, and Agile tools for planning and tracking work.
Fundamental differences between TFS and VSTS
When you plan a move, there are a few fundamental differences between TFS and VSTS that are important for you to understand….. Read more
The SQL Deployment Model illustrated in a Nutshell….
Microsoft Documentation Articles:
Choose a cloud SQL Server option: Azure SQL (PaaS) Database or SQL Server on Azure VMs (IaaS):
Frequently asked questions for SQL Server running on Windows Azure Virtual Machines (SQL as IaaS):
Frequently asked questions for Azure SQL (SQL as PaaS):
…Microsoft Azure platform allows customers to seamlessly extend their infrastructure into the cloud and build multi-tier architectures. Additionally, third parties can enable enhanced capabilities by offering security services and virtual appliances. This white paper provides an overview of security and architectural issues that customers should consider … It also covers creating more secure services in Azure virtual networks…
Read more here...
“…The following logic chart can direct you to a specific example of the many security techniques available with the Azure platform. For quick reference, find the example that best fits your case. For expanded explanations, continue reading through the paper….”
Example 1: Build a perimeter network (also known as DMZ, demilitarized zone, or screened subnet) to help protect applications with network security groups (NSGs).
Example 2: Build a perimeter network to help protect applications with a firewall and NSGs.
Example 3: Build a perimeter network to help protect networks with a firewall, user-defined route (UDR), and NSG.
Example 4: Add a hybrid connection with a site-to-site, virtual appliance virtual private network (VPN).
Example 5: Add a hybrid connection with a site-to-site, Azure VPN gateway.
Example 6: Add a hybrid connection with ExpressRoute.
Over the last 2 years, since the 3 core Microsoft Azure certification exams were originally published there have been a tremendous amount of changes to the Microsoft Azure platform and ecosystem. These 3 core exams targeted towards Architecture, Infrastructure, and Developer roles were originally published before Azure Resource Manager (ARM) existed and fully covered Azure Service Manager (ASM). Not only has ARM been released since then, but also a very large number of new Microsoft Azure services have been released too! Newer services like Azure Functions, Logic Apps, DocumentDB, and others weren’t covered on these original exams.
However, these core Azure certification exams have been updated a couple times over the last 2 years. This has kept them relevant over the years, but the most recent previous update was published in March 2016, and it didn’t even full cover Azure Resource Manager (ARM) as well as a few other features and…
View original post 297 more words
Since the initial release of the Virtual Machine (VM) hosting service within Microsoft Azure there’s been a limitation on achieving the minimum requirements for the 99.9% SLA guarantee. This limitation has been that you needed to provision at least 2 VMs to get the SLA guarantee. That is until now. Now, there is an option to provision a single instance VM and have the 99.9% SLA guarantee too!
Microsoft is constantly working to improve and add new features / services to the Microsoft Azure platform. Among the latest of these changes is to support a 99.9% SLA with SINGLE instance VMs. While this isn’t a replacement for multi-instance VM configurations, this offers enhanced reliability for workloads where a single VM instance works.
Single Instance VM SLA Requirement
There are a few requirements that need to be met in order to achieve the 99.9% SLA guarantee for a single instance VM…
View original post 230 more words
All seats filled for the second day of our Cloud and Proud Azure technical training at the solutions labs today with #AzureArchitect #SteveMiles aka #FutureIsCloudy .#CSP
Are you having difficulty keeping up to date on all the frequent changes and updates in the Microsoft Azure space? Then the Build Azure Weekly has the solution you’re looking for. Build Azure Weekly is a weekly blog post that includes all the latest Microsoft Azure Service Updates from the week in addition to links to many other blog articles, podcasts and videos from all over the Internet.
If you want to receive these in your email, then don’t forget to Subscribe!
Here’s a list of the Microsoft Azure Service Updates from over the past week:
- Azure Automation will begin redirecting users to the new portal in September
- Azure CDN from Akamai supports HTTP/2
- DocumentDB: SDK support for automatic retries, parallel query execution, and performance improvements
- Service update: August 10, 2016
- Monetizing your APIs in API Management
- Send runback job status and job streams from Automation to Log…
View original post 771 more words
” … Customers have provided us consistent feedback that they want a comprehensive, end-to-end, cloud-based solution for delivering Windows apps. The best way for us to deliver this is with Citrix through XenApp “express”, currently under development. XenApp “express” combines the simplicity of application remoting and the scalability of Azure with the security, management, and performance benefits of XenApp, to deliver Windows applications to any employee on any device…”
“…Given this, we will gradually wind down the delivery of Azure RemoteApp over the next year. We are absolutely committed to ensuring our existing Azure RemoteApp customers have a smooth transition. Additional options for customers include moving to a hosted solution through one of our many hosting partners, as well as Remote Desktop Services deployed on Azure IaaS…”
Microsoft distributes some really nice looking Azure architecture diagrams / blueprints (like the one on the right) in various materials and even includes them in keynotes, presentations and other places. These really seem like they must be created with Photoshop by a graphic designer. However, this is not the case.
These architecture diagrams are created using Visio! If you have Visio, you too can get your hands on the various assets necessary to create your own awesome architecture diagrams like these!
View original post 145 more words
…Lots of great stuff that people have been calling out for on the Azure Services Roadmap…shame I am under NDA
“…VNet Peering provides the ability to link two Virtual Networks in the same geo region directly. It allows Virtual Machine resources in both the VNets to connect directly through private IP addresses as if it were part of the same network. VNet peering achieves this by routing packets between the Virtual Networks through the internal Azure backbone network and thus does not involve any gateway in the path. This allows for a low latency, high bandwidth connection between the Virtual Machines in the VNets. VNet peering also allows transit through the peered VNets, thus a Network Virtual Appliance or a VPN gateway in one VNet can be used by a Virtual Machine in another peered VNet. Peering will work across VNets in different subscriptions and between an ARM (V2) and ASM (V1) VNet. It does not work between two ASM VNets….” http://bit.ly/2awjIRe
Join the conversation at the Azure Cloud Architect Boot Camp Yammer group
“…Course content has been developed, and will be presented, by senior Microsoft Solution Architects, Engineering, Azure Circle of Excellence (CoE) team and Customer Advisory Team (CAT). There will be a mix of presentations, case study workshops, hackathons, and Q&A panels…”
Follow best practices when you design your application for high availability….
To reduce the impact of downtime due to one or more of these events, we recommend the following high availability best practices for your virtual machines:
- Configure multiple virtual machines in an availability set for redundancy
- Configure each application tier into separate availability sets
- Combine the Load Balancer with availability sets
In a nutshell Azure AD Connect is what will be required to integrate on-premises directories with Azure Active Directory, which is the identity and access management service used by Office365 Services; this will allow users to access Office365 services using their on-premises AD credentials.
There are several more advanced topics to cover different on-prem directory scenarios, but below are almost the basic min level of understanding required; everything else will build on these base concepts … advanced topics will be covered in another post.
- Parent Level topic…. Integrating your on-premises identities with Azure Active Directory
- Hybrid Identity directory integration tools comparison
- Prerequisites for Azure AD Connect
- Azure AD Connect User Sign on options
- Supported topologies for Azure AD Connect
- Azure AD Connect: Design concepts
- Azure AD Connect: Accounts and permissions used for installation
- Azure AD Connect sync: Operational tasks and consideration
Delicious Breakfast… Dead Pig
“…On-premise software, is a common, although incorrect name for on-premises software. On-premises software is installed and run on computers on the premises (in the building) of the person or organisation using the software, rather than at a remote facility, such as at a server farm somewhere on the internet…
…. Grammatically, the correct term is ‘on-premises’ software, because the word premises does not have different singular and plural forms. Irrespective of correctness, however, ‘on-premise’ is sometimes used…”