34,79 €
Azure is one of the leading public cloud service providers. Thanks to a number of Azure service updates, it continues to make advances in the realm of cloud computing.
Learn Microsoft Azure starts with the fundamentals of cloud computing. You will learn to configure and set up the Azure infrastructure. As you make your way through the book, you'll explore Azure services, along with working on virtual memory systems (VMS) and deployment models. You will understand various services in the Azure ecosystem, such as Azure IoT and Azure Analytics, among others. An easy-to-follow introduction to various cloud design patterns will also add to your efficiency in designing cloud solutions. In the concluding chapters, you'll secure your virtual networks using Network security groups and configure Azure Active Directory (Azure AD) to set a custom domain name and company profile.
By the end of this book, you will have learned to secure and troubleshoot your Azure cloud environment and be fully aware of best practices for Azure cloud administration.
Das E-Book können Sie in Legimi-Apps oder einer beliebigen App lesen, die das folgende Format unterstützen:
Seitenzahl: 234
Copyright © 2018 Packt Publishing
All rights reserved. No part of this book may be reproduced, stored in a retrieval system, or transmitted in any form or by any means, without the prior written permission of the publisher, except in the case of brief quotations embedded in critical articles or reviews.
Every effort has been made in the preparation of this book to ensure the accuracy of the information presented. However, the information contained in this book is sold without warranty, either express or implied. Neither the author, nor Packt Publishing or its dealers and distributors, will be held liable for any damages caused or alleged to have been caused directly or indirectly by this book.
Packt Publishing has endeavored to provide trademark information about all of the companies and products mentioned in this book by the appropriate use of capitals. However, Packt Publishing cannot guarantee the accuracy of this information.
Commissioning Editor: Pavan RamchandaniAcquisition Editor: Akshay JethaniContent Development Editor: Nithin George VargheseTechnical Editor: Komal KarneCopy Editor: Safis EditingProject Coordinator: Drashti PanchalProofreader: Safis EditingIndexer: Pratik ShirodkarGraphics: Tom ScariaProduction Coordinator: Pratik Shirodkar
First published: December 2018
Production reference: 1241218
Published by Packt Publishing Ltd. Livery Place 35 Livery Street Birmingham B3 2PB, UK.
ISBN 978-1-78961-758-0
www.packtpub.com
Mapt is an online digital library that gives you full access to over 5,000 books and videos, as well as industry leading tools to help you plan your personal development and advance your career. For more information, please visit our website.
Spend less time learning and more time coding with practical eBooks and Videos from over 4,000 industry professionals
Improve your learning with Skill Plans built especially for you
Get a free eBook or video every month
Mapt is fully searchable
Copy and paste, print, and bookmark content
Did you know that Packt offers eBook versions of every book published, with PDF and ePub files available? You can upgrade to the eBook version at www.packt.com and as a print book customer, you are entitled to a discount on the eBook copy. Get in touch with us at [email protected] for more details.
At www.packt.com, you can also read a collection of free technical articles, sign up for a range of free newsletters, and receive exclusive discounts and offers on Packt books and eBooks.
Mohamed Wali is a cloud DevOps engineer based in Amsterdam who has been working with Microsoft technologies for around seven years. He has been working with Azure since 2013. In July 2014, Mohamed became recognized as the youngest Microsoft MVP in the world. He has already authored and co-authored multiple books about Microsoft Azure. He shares his knowledge and expertise through blogging, authoring books, and speaking at events.
Sjoukje Zaal is a Principal Expert Microsoft and Microsoft Azure MVP with over 15 years of experience of providing architecture, development, consultancy and design expertise. She works at Ordina, a system integrator based in the Netherlands. She is active in the Microsoft community as a co-founder of SP&C NL and MixUG, a writer, a public speaker, and is also active on MSDN.
If you're interested in becoming an author for Packt, please visit authors.packtpub.com and apply today. We have worked with thousands of developers and tech professionals, just like you, to help them share their insight with the global tech community. You can make a general application, apply for a specific hot topic that we are recruiting an author for, or submit your own idea.
Title Page
Copyright and Credits
Learn Microsoft Azure
About Packt
Why subscribe?
Packt.com
Contributors
About the author
About the reviewer
Packt is searching for authors like you
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the color images
Conventions used
Get in touch
Reviews
Microsoft Azure 101
Microsoft Azure overview
Evolution of cloud computing
Azure as a cloud platform
Cloud deployment models
Private cloud
Advantages
Disadvantages
Public cloud
Advantages
Disadvantages
Hybrid cloud
Azure regions
Public regions
Azure Government
Azure Germany
Azure China
Azure subscriptions
Cloud services
Azure portal experience
Signing up for a free Azure subscription
The portal
The dashboard
The hub
Notifications
Azure cloud shell
Azure portal settings
More to do in the portal
Azure Resource Manager model
ARM key points
Azure automation tools
Azure PowerShell
Installing the Azure PowerShell module
Installing the Azure PowerShell module from the PowerShell Gallery
Azure CLI
Installing Azure CLI 2.0
Summary
Questions
Further reading
Understanding Azure Storage
Introduction to Microsoft Azure Storage
Why use Azure Storage?
Azure Storage types
Durability
Replication types
Locally redundant storage
Zone redundant storage
Geo-redundant storage
Read-access geo-redundant storage
Performance
Standard storage
Premium storage
Persistency
Persistent storage
Non-persistent storage
Azure storage accounts
General-purpose storage account v1
Blob storage account
Hot access tier
Cool access tier
Archive access tier
Premium access tier
General-purpose storage account v2
Azure Storage account tips
Creating an Azure storage account
Azure Storage services
Blob storage
Creating Blob storage
Blob storage key points
Table storage
PartitionKey
RowKey
Timestamp
Creating Table storage
Table storage key points
Queue storage
Creating Queue storage
Queue storage key points
File storage
File storage advantages
Creating file storage
File storage key points
Azure Storage architecture
Frontend layer
Partition layer
Stream layer
Sparse storage and TRIM in Azure
Summary
Questions
Further reading
Getting Familiar with Azure Virtual Networks
An introduction to Azure Virtual Networks
What is Azure VNet?
Why use Azure VNets?
Creating an Azure VNet
Adding subnets to the VNet
Adding a normal subnet to the VNet
Adding a gateway subnet to the VNet
Adding an address space to the Azure VNet
Azure VNet related services
Public IPs
Creating a public IP address
Creating a public IP prefix
NICs
Azure service endpoints
Summary
Questions
Further reading
Understanding Azure Virtual Machines
Introducing Azure virtual machines
Azure VM statuses
Azure VM service level agreements
Azure VM series
Creating an Azure VM
Azure VM storage
Managed versus unmanaged disks
Managed Disks-key points
VM disks
Adding a data disk to an Azure VM
Data disk-key points
Expanding disks
Host caching
Host caching-key points
Azure VM networking
Adding inbound and outbound rules
Adding an additional network interface card to the VM
Configuring the NICs
Azure VNet considerations for Azure VMs
Summary
Questions
Further reading
Azure Web Apps Basics
Introduction to Azure App Service
Azure Web Apps
App Service plans
Azure App Service Environments
App Service Environment types
Creating an App Service Environment
Creating an App Service plan
Creating an App Service
Summary
Questions
Further reading
Managing Azure Web Apps
Deployment slots
Deployment slots key points
App Service application settings
Application settings key points
Azure App Service scalability
Scaling up
App Service plan scaleup key points
Scaling out
Scaling out the App Service plan manually
Scaling out the App Service plan automatically
Key points for autoscaling your App Service plan
Azure App Service backup
App Service backup key points
Summary
Questions
Further reading
Basics of Azure SQL Database
Introduction to Azure SQL Database
Why Azure SQL Database?
SQL Database (IaaS/PaaS)
Azure SQL Database (PaaS)
Scenarios that would fit Azure SQL Database
SQL on Azure VMs (IaaS)
Scenarios that would suit SQL on Azure VMs
Azure SQL Database types
Elastic database pools
Single databases
SQL database managed instance
Service tier types
DTU service tiers
vCore service tiers
Creating an Azure SQL Database
Connecting to Azure SQL Database
Server-level firewall
Connecting to Azure SQL Database using SQL SSMS
Summary
Questions
Further reading
Managing Azure SQL Database
Azure SQL elastic database pools
Benefits of using elastic database pools
Creating an elastic database pool
Adding a database to an elastic pool
Setting Azure Active Directory authentication
Azure SQL Database business continuity
How business continuity works in Azure SQL Database
Hardware failure
Point-in-time restore
Point-in-time restoration key points
Restoring a deleted database
Active geo-replication
Auto-failover groups
Azure SQL Managed Instances
Azure SQL Managed Instance types
Creating an Azure SQL Managed Instance
Connecting to an Azure SQL Managed Instance
Azure SQL Managed Instance key points
Summary
Questions
Further reading
Understanding Azure Active Directory
Introduction to Azure AD
Azure AD benefits
Azure AD flavors
Free
Basic
Premium P1
Premium P2
Working with users in Azure AD
Creating an Azure AD user
User password reset
Deleted users
Working with groups in Azure AD
Creating an Azure AD group
Azure AD common tasks
Self-service password reset
Azure AD user sign-in activities
Multi-Factor Authentication
Configuring a custom domain name in Azure AD
Summary
Questions
Further reading
Monitoring and Automating Azure Services Using OMS
Introduction to OMS
OMS terminologies
Introduction to Azure Log Analytics
Azure Log Analytics deployment models
Onboarding OMS agents
Creating the workspace
Onboarding the agents
Adding solutions to the workspace
Azure Automation
Benefits of Azure Automation
Azure Automation runbook types
Creating an automation account
Azure runbooks
Azure Automation hybrid integration
Summary
Questions
Further reading
Data Protection and Business Continuity Using OMS
Introducing Azure Recovery Services
Introducing to Azure Backup
Why Azure Backup?
Introducing to Azure Site Recovery
ASR supportability
Hyper-V servers
VMware vSphere and physical servers
Implementing Azure Backup
Creating an Azure Recovery Services vault
Backing up an Azure VM
Implementing Azure Site Recovery
Preparing the infrastructure for replication
Enabling the replication
Summary
Questions
Further reading
Assessments
Chapter 1: Microsoft Azure 101
Chapter 2: Understanding Azure Storage
Chapter 3: Getting Familiar with Azure Virtual Networks
Chapter 4: Understanding Azure Virtual Machines
Chapter 5: Starting with Azure Web Apps Basics
Chapter 6: Managing Azure Web Apps
Chapter 7: Basics of Azure SQL Database
Chapter 8: Managing Azure SQL Database
Chapter 9: Understanding Azure Active Directory
Chapter 10: Monitoring and Automating Azure Services Using OMS
Chapter 11: Data Protection and Business Continuity Using OMS
Other Books You May Enjoy
Leave a review - let other readers know what you think
Cloud computing has been a buzzphrase for a while. Now, companies are moving to the cloud in droves, and learning one of the most commonly used cloud platforms is becoming a necessity for anyone working in IT.
Within this book, you will learn about the most common used services in Azure, such as Azure Storage, Azure Networks, Azure VMs, Azure Web Apps, Azure SQL Databases, Azure Active Directory, and OMS.
Learn Microsoft Azure is for system administrators, cloud engineers, and developers who want to get started with using Azure as their cloud platform and build cloud-based applications for their enterprises.
Chapter 1, Microsoft Azure 101, introduces you to Azure, giving you a quick introduction to cloud computing, its types, and the Azure portal.
Chapter 2, Understanding Azure Storage, covers Azure Storage, looking at its importance, architecture, its types and the differences between them, and how and when to use it.
Chapter 3, Getting Familiar with Azure Virtual Networks, goes through Azure Virtual Networks, its components, and how to work with theme.
Chapter 4, Understanding Azure Virtual Machines, explains how to work with Azure VMs and establish a complete IaaS solution.
Chapter 5, Starting with Azure Web Apps Basics, covers one of Azure App Service, its different types, and how to work with them.
Chapter 6, Managing Azure Web Apps, covers some of the highly available solutions for Azure Web Apps in this chapter.
Chapter 7, Basics of Azure SQL Database, explores the Azure SQL Database, its types, and how to deploy it in Azure.
Chapter 8, Managing Azure SQL Database, covers other Azure SQL Database types and explains how to provide a highly available solution for them.
Chapter 9, Understanding Azure Active Directory, introduces Azure AD and explains how to work with it as an identity solution to manage your environment.
Chapter 10, Monitoring and Automating Azure Services Using OMS, introduces OMS and walks through two of its types: Azure Log Analytics and Azure Automation.
Chapter 11, Data Protection and Business Continuity Using OMS, explains how to provide data protection and business continuity to your infrastructure using Azure Backup and Azure Site Recovery, which are part of OMS.
A basic knowledge of virtualization, networks, web development, databases, and active directory is required to get the most out of this book.
We also provide a PDF file that has color images of the screenshots/diagrams used in this book. You can download it here: https://www.packtpub.com/sites/default/files/downloads/9781789617580_ColorImages.pdf.
There are a number of text conventions used throughout this book.
CodeInText: Indicates code words in text, database table names, folder names, filenames, file extensions, pathnames, dummy URLs, user input, and Twitter handles. Here is an example: "In the search bar, write storage account."
Feedback from our readers is always welcome.
General feedback: If you have questions about any aspect of this book, mention the book title in the subject of your message and email us at [email protected].
Errata: Although we have taken every care to ensure the accuracy of our content, mistakes do happen. If you have found a mistake in this book, we would be grateful if you would report this to us. Please visit www.packt.com/submit-errata, selecting your book, clicking on the Errata Submission Form link, and entering the details.
Piracy: If you come across any illegal copies of our works in any form on the internet, we would be grateful if you would provide us with the location address or website name. Please contact us at [email protected] with a link to the material.
If you are interested in becoming an author: If there is a topic that you have expertise in and you are interested in either writing or contributing to a book, please visit authors.packtpub.com.
Please leave a review. Once you have read and used this book, why not leave a review on the site that you purchased it from? Potential readers can then see and use your unbiased opinion to make purchase decisions, we at Packt can understand what you think about our products, and our authors can see your feedback on their book. Thank you!
For more information about Packt, please visit packt.com.
Azure is one of the leading public cloud service providers. Microsoft Azure is a cloud computing platform that helps you build, deploy, and manage applications to overcome your business challenges. This journey starts with the fundamentals of cloud computing and moves on to explaining the configuration of Azure infrastructure, exploring Azure services, and working on virtual memory systems (VMS) and deployment models in Azure. You will also see how to secure and troubleshoot your Azure cloud environment and many more exciting features, in order to be fully aware of best practices for Azure cloud administration. Let's cut to the chase and see what we have in this introductory chapter, Microsoft Azure 101. This chapter will introduce cloud computing to you and describe its evolution, the types of cloud deployment models, and the cloud services that Azure provides. After that, we'll walk through the Azure portal, introducing its components. Then, we'll discuss the Azure Resource Manager model used by Azure. Finally, you will learn about the different tools you can use to automate your tasks with Azure.
Briefly, the following topics will be covered in this chapter:
Microsoft Azure overview
Cloud service types
Azure portal experience
Azure Resource Manager model
Azure automation tools
In this section, you will be introduced to cloud computing and Microsoft Azure.
Modern computing technology has been around since the 1950s. We have witnessed many changes so far.
The journey started when we had physical servers that we used to operate our enterprise applications on, but companies were getting bigger and the requirements of the applications were getting greater. That meant buying more and more physical servers to keep up with technology changes and company expansion. As a result, we started to face the following problems:
More space was needed for physical servers.
The cost of power usage for the physical servers and air conditioning.
You were not fully utilizing your environment, because every server was acting with one or two server roles, which meant some of each server's resources were wasted.
The IT operations were not as efficient as they should have been. As a result, you had to hire more system engineers to manage the infrastructure.
These major problems have been targeted by another technology called virtualization. This technology has totally changed the game and let us enter a new era of computing. It technology allowed us to run different operating servers on the same server simultaneously and with total isolation.
In a nutshell, this technology made our world better and provided the following advantages:
Utilizing hardware resources
: Instead of installing a server that is acting with one role only (that is, a domain controller), you can create another server to act with another role (a SQL server) on the same physical server, until you fully utilize your hardware resources.
Saving cost
: You no longer have to buy many new physical servers, since you can use the same physical server for many different purposes. As a result, you will pay less for power, and air-conditioning.
Saving space
: You will be able to save space in your company for other purposes, such as using a floor that you used in the past for your physical servers to take on board a new team.
Hardware failure resiliency
: If you faced a major issue with the hardware of the physical servers, it would take a long time to get the solution up and running again, but with virtualization, you can have your applications on another server. They are stored in files on the physical servers and can be reused on another physical server to continue operating normally. If you used high availability for your virtualization platform, you will see almost no downtime.
The next step was based on virtualization technology and it was the move to the cloud.
You do not have to care about the hardware, system infrastructure, middleware, and so on, only the stuff you want to use.
Cloud computing offers solutions that will fit every role in an organization. Here are some of its features:
Hardware
: Hardware installation and maintenance was a big problem, because even after embracing virtualization technology, we still had our own hardware that we needed to take care of. But with cloud computing, this provide a low-latency is the responsibility of the cloud service provider.
Global presence
: Microsoft has many data centers across the globe, which means it can provide low-latency services.
On-demand service
: You no longer have to wait for the hardware purchase, the infrastructure preparation, and the application installation, which would take a long time. With cloud computing, you can request the service you wish and it should be up and running in a matter of minutes.
Scalability
: When you have load on your cloud services, you can scale them in and out according to your usage.
Broad network access
: You can connect to your cloud resources from anywhere in the world using any device with an internet connection and any operating system.
Pay as you go
: You only pay for the services that you use.
Hybrid compatibility
: Using Azure does not mean you need to give up your on-premises solutions. You can have a hybrid solution that spans on-premises and Azure.
Microsoft Azure was announced in October 2008 with the code name Red Dog and was officially released in February 2010 with the name Windows Azure. It offered web roles and SQL databases. In March 2014, Microsoft rebranded its cloud platform from Windows Azure to Microsoft Azure.
The general availability of Azure and Microsoft has added many services to its platform to fit most customers' needs. It has expanded its data centers to the continents across the globe. The services that Azure supports at the moment include, but are not limited to, the following:
Mobile services
Web services
Compute services
Storage services
Messaging
Network services
Media services
Machine learning
Internet of Things
The cloud is available in different types. The following types are the most common.
In this model, the cloud is exclusively used by a single organization, using its own computing resources. It manages and maintains every piece of the cloud in its own data centers.
This model has the following advantages:
Customizability
: You can do whatever you want with the services offered via this model, as long as it is technically feasible
because you own and manage everything yourself
.
Not shared
: Sharing the same host that serves your applications and VMs might be a concern for many companies. Some of them may consider it as a security threat. Since you are following the private cloud deployment model, it means you are not sharing anything with anyone.
This model also has some disadvantages:
High costs
: Buying your own hardware/software, managing it, and hiring engineers to take care of that comes with a high price
Under-utilization
: Running your own private cloud in a highly available environment means that your environment will be fully utilized and you are paying for more than you actually use
In this model, you are using your services from a cloud service provider that handles the underlying infrastructure of the service you are using. These services are provided via the internet.
This model has the following advantages:
Unburdening you from most of the operational headache
: You no longer have to operate everything by yourself, because most of the operations are handled by the cloud service provider
Scalability
: You can scale your services whenever you wish within a short time with no downtime
Lower cost
: You are only paying for what you are using
This model also has some disadvantages:
Security
: Some financial and governmental organizations do not like to host their data in the cloud for security reasons
Unpredictable cost
: If you do not have a well-designed cloud solution, you might end up paying too much
As the name of this deployment model indicates, it is a combination of the private cloud and public cloud. In this model, you can span your solutions across your data centers and Azure and get the best of both.
It's quite clear that it has the best of both previous models, but note that the complexity of your solutions will be greater.
As mentioned earlier, Azure has a global presence covering every continent with its data centers. At the time of writing, Azure data centers are available in 54 regions worldwide.
The regions are classified as follows:
Public regions
: Available for use by everyone around the globe
Azure Government
: Available only for the US government
Azure Germany
: Trusted regions by Germany, as it follows the data privacy regulations of Germany
Azure China
: Trusted regions by China, as it adheres to Chinese policies and data handling regulations
The following table shows all the Azure public regions that Microsoft covers:
Region
Location
East US
Virginia
East US 2
Virginia
Central US
Iowa
North Central US
Illinois
South Central US
Texas
West Central US
Wyoming
West US
California
West US 2
Washington
Canada East
Quebec
Canada Central
Toronto
Brazil South
Sao Paulo
North Europe
Ireland
West Europe
Netherlands
France Central
Paris
France South
Marseille
UK West
Cardiff
UK South
London
Southeast Asia
Singapore
East Asia
Hong Kong
Australia East
New South Wales
Australia Southeast
Victoria
Australia Central
Canberra
Australia Central 2
Canberra
Central India
Pune
West India
Mumbai
South India
Chennai
Japan East
Tokyo, Saitama
Japan West
Osaka
Korea Central
Seoul
Korea South
Busan
Microsoft Azure is expanding its data centers year on year. The following table includes new public regions that are expected to be generally available in the next 1-2 years:
Region
Location
Germany North
Germany North
Germany West Central
Germany West Central
Switzerland North
Zurich
Switzerland West
Geneva
Norway East
Norway
Norway West
Norway
South Africa West
Cape Town
South Africa North
Johannesburg
UAE Central
Abu Dhabi
UAE North
Dubai
The following table shows all the Azure Government regions that Microsoft covers:
Region
Location
US Gov Virginia
Virginia
US Gov Iowa
Iowa
US Gov Arizona
Arizona
US Gov Texas
Texas
US DoD East
Virginia
US DoD Central
Iowa
Microsoft Azure is expanding its data centers year after year. The following table includes new government regions that are expected to be generally available in the next 1-2 years:
Region
Location
US Sec East
Undisclosed
US Sec West
Undisclosed
The following table shows all the Azure Germany regions that Microsoft covers:
Region
Location
Germany Central
Frankfurt
Germany Northeast
Magdeburg