O'Reilly logo

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Implementing Azure Solutions

Book Description

A practical guide that enhances your skills in implementing Azure solutions for your organization

About This Book

  • Confidently configure, deploy, and manage cloud services and virtual machines
  • Implement a highly-secured environment and respond to threats with increased visibility
  • This comprehensive guide is packed with exciting practical scenarios that enable you to implement Azure solutions with ease

Who This Book Is For

This book is for IT architects, system and network admins, and DevOps engineers who are aware of Azure solutions and want to implement them for their organization.

What You Will Learn

  • Implement virtual networks, network gateways, Site-to-Site VPN, ExpressRoute, routing, and network devices
  • Understand the working of different storage accounts in Azure
  • Plan, deploy, and secure virtual machines
  • Deploy and manage Azure Containers
  • Get familiar with some common Azure usage scenarios

In Detail

Microsoft Azure has numerous effective solutions that shape the future of any business. However, the major challenge that architects and administrators face are implementing these solutions appropriately.

Our book focuses on various implementation scenarios that will help overcome the challenge of implementing Azure’s solutions in a very efficient manner and will also help you to prepare for Microsoft Architect exam. You will not only learn how to secure a newly deployed Azure Active Directory but also get to know how Azure Active Directory Synchronization could be implemented.

To maintain an isolated and secure environment so that you can run your virtual machines and applications, you will implement Azure networking services. Also to manage, access, and secure your confidential data, you will implement storage solutions. Toward the end, you will explore tips and tricks to secure your environment.

By the end, you will be able to implement Azure solutions such as networking, storage, and cloud effectively.

Style and approach

This step-by-step guide focuses on implementing various Azure solutions for your organization. The motive is to provide a comprehensive exposure and ensure they can implement these solutions with ease.

Downloading the example code for this book. You can download the example code files for all Packt books you have purchased from your account at http://www.PacktPub.com. If you purchased this book elsewhere, you can visit http://www.PacktPub.com/support and register to have the code file.

Table of Contents

  1. Preface
    1. What this book covers
    2. What you need for this book
    3. Who this book is for
    4. Conventions
    5. Reader feedback
    6. Customer support
      1. Downloading the color images of this book
      2. Errata
      3. Piracy
      4. Questions
  2. Getting Started with Azure Implementation
    1. Service models
    2. Deployment models
    3. Cloud characteristics
    4. Microsoft Azure
      1. Azure services overview
    5. Azure basics
      1. Azure Resource Manager
      2. Resources
      3. Azure regions
      4. Azure Portal
      5. Azure automation
      6. Azure Automation tools
      7. REST APIs
    6. Summary
  3. Azure Resource Manager and Tools
    1. Understanding the Azure resource manager
    2. Functionalities provided by the Azure resource manager
    3. Working with the Azure resource manager
    4. Creating an Azure resource group
    5. Adding a resource to an Azure resource group
      1. First approach - adding a storage account to your Azure resource group
      2. Second approach - adding a storage account to your Azure resource group
      3. Third approach - adding a storage account to your Azure resource group
    6. Tagging in the Azure resource manager
    7. Locking Azure resources
      1. Azure resource locks
    8. Working with ARM templates
      1. Exporting a deployment as an ARM template (for IT pros)
        1. Example 1: exporting a resource group to an ARM template
        2. Example 2: exporting a resource (from the deployment history) to an ARM template
        3. Example 3: exporting a resource (classic) to an ARM template
      2. Modifying an ARM template
      3. Authoring an ARM template
      4. Creating your own ARM template (for developers)
    9. Azure resource explorer
    10. Summary
  4. Deploying and Synchronizing Azure Active Directory
    1. Azure Active Directory
      1. Azure Active Directory options
        1. Azure AD free
        2. Azure AD basic
        3. Azure AD premium P1
    2. Deploying a custom Azure AD
    3. Adding accounts and groups to Azure AD
      1. Azure AD Connect high available infrastructure
    4. Summary
  5. Implementing Azure Networks
    1. Azure networking limits
    2. Azure networking components
      1. Azure virtual networks (VNet)
      2. VNet peering
      3. Azure VPN gateways
      4. Azure local gateway
      5. Azure ExpressRoute
        1. Azure global Points of Presence
        2. National Azure Points of Presence
      6. Azure connections
      7. Azure routes
      8. Azure third-party network devices
      9. Azure load balancer
        1. Hash-based distribution
        2. Port forwarding
        3. Automatic reconfiguration
        4. Service monitoring
      10. Azure application gateways
      11. Azure Traffic Manager
      12. Azure DNS
    3. Setting up Azure networks
      1. Setting up Azure VNet
      2. Setting up Azure virtual network site-to-site VPN
        1. Configuring local network gateway
        2. Configuring Azure virtual network gateway
        3. Configuring connection between local and virtual network gateways
      3. Setting up Azure virtual network with MPLS and ExpressRoute
        1. Configuring Azure virtual network gateway
        2. Configuring Azure ExpressRoute circuit
        3. Configuring connection between ExpressRoute circuit and Azure virtual gateway
      4. Setting up Azure VNet peering
        1. Preparing the deployment
        2. Configuring VNet peering
      5. Configuring custom routes
      6. Configuring third-party network appliances
    4. Common Azure network architectures
    5. Summary
  6. Implementing and Securing Azure Storage Accounts
    1. Storage accounts
      1. General purpose Storage account
      2. Blob Storage account
    2. Replication and redundancy
      1. Locally redundant storage
      2. Zone-redundant storage
      3. Geo-redundant storage
      4. Read-access geo-redundant storage
    3. Azure Storage services
      1. Blob Storage services
      2. Table storage services
      3. Queue storage services
      4. File storage services
      5. Access keys
      6. Exploring Azure Storage with Azure Storage Explorer
    4. Premium Storage account
      1. Premium storage requirements
    5. Pricing
    6. Summary
  7. Planning and Deploying Virtual Machines in Azure
    1. Azure virtual machine types
      1. A-series virtual machines
      2. D-series and DS-series virtual machines
      3. F-series and FS-series virtual machines
      4. G-series and GS-series virtual machines
      5. H-series virtual machines
      6. NV-series and NC-series virtual machines
        1. NV virtual machines
        2. NC virtual machines
      7. Ls-series virtual machines
    2. Virtual machine extensions
    3. Managed Disks
    4. Availability sets
    5. Deploying a virtual machine in Azure
    6. Accessing a virtual machine in Azure
    7. Changing IP and DNS settings
    8. Common scenarios for virtual machines
      1. Optimization of Azure related communication traffic
      2. On-demand usage for calculations
      3. Disaster recovery for on-premises servers
    9. Summary
  8. Implementing Azure Cloud Services
    1. What is an Azure Cloud Service?
    2. Understanding the Cloud Service architecture
      1. Roles
      2. The service endpoint
    3. Going deeper into the Cloud Services
      1. Service Definition File
        1. LoadBalancerProbes
        2. WebRole
        3. WorkerRole
        4. NetworkTrafficRules
      2. Service configuration file
        1. Role
        2. NetworkConfiguration
    4. Azure Cloud Services versus other Azure PaaS offerings, such as Azure App Services
      1. Selection of a Guest OS and an update level
      2. Selection of an Azure series
        1. series A
        2. series D
        3. series F
        4. series G
        5. series N
        6. series H
        7. In a nutshell
    5. Creating your first Azure cloud service
      1. Part 1
      2. Part 2
    6. Summary
  9. Implementing Azure Container Service
    1. What is an Azure Container Service?
      1. Understanding containers
        1. Cluster
        2. Orchestrator
          1. Mesosphere DC/OS
          2. Docker swarm
          3. Kubernetes
    2. Creating your first Azure Container Service
    3. How to work with your Azure container service cluster
    4. Summary
  10. Implementing Azure Security
    1. Azure Identity Security
      1. Azure Active Directory
        1. Azure Active Directory editions
        2. Privileged Identity Management
        3. Identity protection
        4. Detection of vulnerabilities and potential risky accounts
        5. Investigation of potential suspicious events
        6. Multi-factor authentication
        7. Conditional access
    2. Resource security
      1. Role-based Access Control
      2. Resource tags and policies
    3. Azure network security
      1. Network security groups
        1. Priority
        2. Source
        3. Destination
      2. Network virtual appliances
    4. Azure Storage security
      1. Key management
      2. Shared access signatures
        1. Service-level SAS
        2. Account-level SAS
      3. Storage Encryption
        1. Storage account encryption
        2. Azure disk encryption
    5. Logging and monitoring
      1. Azure Logs
      2. Azure Security Center
    6. Summary
  11. Skill Wrap Up and Migration Scenario
    1. On-premises infrastructure scenario
      1. Background network infrastructure
      2. Background information on Microsoft Active Directory
      3. Background information on Microsoft Exchange Server
      4. Background information on Microsoft SharePoint Server
      5. Background information on Microsoft Skype for Business Server
      6. Background information one document management system based on SMB shares
      7. Background information on public website based on TYPO3 CMS
      8. Background information on backup services
      9. Background information on file servers
    2. Customer requirements
    3. Solution in Azure
      1. Solution for a wide area network
      2. Solution for point-to-site VPN and GeoIP/DNS
      3. Solution for Azure LAN integration
      4. Solution for identity and access management
      5. Solution for SharePoint services
      6. Solution for Exchange services
      7. Solution for document management system
      8. Solution for file services
        1. Personal homeshares
        2. No ACL shares
        3. Classic shares
      9. Solution for a public website with TYPO3 CMS
      10. Solution for backup services
    4. Summary
      1. Azure Price Calculator
      2. Azure TCO and RIO Calculator