Book description
Enhance your Azure administration and Azure DevOps skills and get up and running with networking, security, automation, and effective cost management
Key Features
- Explore a variety of administration patterns used for different cloud architectures
- Discover best practices for administering various IT systems hosted in Azure
- Administer, automate, and manage your Azure cloud environment effectively
Book Description
Microsoft Azure is one of the upcoming cloud platforms that provide cost-effective solutions and services to help businesses overcome complex infrastructure-related challenges. This book will help you scale your cloud administration skills with Microsoft Azure.
Learn Azure Administration starts with an introduction to the management of Azure subscriptions, and then takes you through Azure resource management. Next, you'll configure and manage virtual networks and find out how to integrate them with a set of Azure services. You'll then handle the identity and security for users with the help of Azure Active Directory, and manage access from a single place using policies and defined roles. As you advance, you'll get to grips with receipts to manage a virtual machine. The next set of chapters will teach you how to solve advanced problems such as DDoS protection, load balancing, and networking for containers. You'll also learn how to set up file servers, along with managing and storing backups. Later, you'll review monitoring solutions and backup plans for a host of services. The last set of chapters will help you to integrate different services with Azure Event Grid, Azure Automation, and Azure Logic Apps, and teach you how to manage Azure DevOps.
By the end of this Azure book, you'll be proficient enough to easily administer your Azure-based cloud environment.
What you will learn
- Explore different Azure services and understand the correlation between them
- Secure and integrate different Azure components
- Work with a variety of identity and access management (IAM) models
- Find out how to set up monitoring and logging solutions
- Build a complete skill set of Azure administration activities with Azure DevOps
- Discover efficient scaling patterns for small and large workloads
Who this book is for
This book is for cloud administrators, system administrators, and IT professionals who want to scale up their skillset and enter the world of cloud computing. IT professionals and engineers who are already familiar with the basics of the Azure services and are looking for a step-by-step guide to solving the most common Azure problems will also find this book useful. Basic understanding of cloud concepts such as IaaS, PaaS, virtualization, networking, and common Azure services is required.
Table of contents
- Title Page
- Copyright and Credits
- Dedication
- About Packt
- Contributors
- Preface
- Section 1: Understanding the Basics
-
Getting Started with Azure Subscriptions
- Technical requirements
- Getting an Azure subscription
- PAYG
- CSP
- Enterprise Agreement
- Understanding different subscription models
- Implementing subscription policies
- Getting started with Azure Policy
- Policy validation results
- Examples of Azure policies
- Using Azure Blueprints for repeatable deploy and update operations
- Getting started with Blueprint assignment
- Assigning an Azure blueprint
- Checking usage and managing quotas
- Cost monitoring and analysis
- Cost analysis
- Budgets
- Azure Advisor
- Implementing management automation
- Summary
- Further reading
-
Managing Azure Resources
- Technical requirements
- Managing resource providers
- Managing resource groups
- Browsing resource groups
- Listing the available resources
- Moving resources
- Understanding resource providers
- Performing deployments using ARM with templates
- Writing a template from scratch
- Automation scripts
- Other tools
- Implementing resource locks
- Subscription locks
- Resource group locks
- Automating resource group management with Azure Event Grid
- Creating an event subscription
- Analyzing the gathered data
- Implementing proper resource naming conventions
- Subscription
- Resource group
- Resources
- Summary
-
Configuring and Managing Virtual Networks
- Technical requirements
- Creating and configuring VNet peering
- The Azure portal
- The Azure CLI
- Creating and configuring VNet-to-VNet connection
- Single region
- Multiple regions
- Connecting the networks
- The same resource group
- Different resource groups
- Creating and configuring subnets
- Creating a VNet
- Creating a subnet
- Understanding subnet configuration
- Securing critical Azure services with service endpoints
- Creating a VNet and Azure Storage account
- Creating a service endpoint
- Configuring a service endpoint
- Configuring a naming resolutions
- Creating a DNS zone
- Configuring the DNS within a VNet
- Creating and configuring network security groups (NSGs)
- Creating a VNet with a subnet
- Adding an NSG to a subnet
- Reviewing NSG rules
- Adding an NSG rule
- Summary
- Section 2: Identity and Access Management
-
Identity Management
- Technical requirements
- Creating users in Azure AD
- Getting started with user creation
- Creating a user in an Azure Active Directory tenant
- Creating a guest user
- Describing the user creation process
- Assigning a role to a user
- Registering an application in Azure AD
- Creating a new application
- Creating groups
- Group creation
- Managing groups
- Managing directory roles
- Monitoring and auditing users
- Enabling MFA authentication
- Securing an Azure Service Fabric cluster
- Summary
- Access Management
-
Managing Virtual Machines
- Technical requirements
- Adding data disks
- Creating a data disk
- Adding network interfaces
- Using Desired State Configuration
- Scaling VMs up/out
- Scaling caveats
- Configuring monitoring
- Configuring guest-level monitoring
- Extending monitoring capabilities
- Enabling connection monitor
- Configuring high availability
- Deploying VMs
- Browsing the solutions
- Deploying resources using various tools
- Securing access to VMs
- Connecting to a VM
- Connecting to a VM
- Using RDP and SSH to connect
- Summary
- Section 3: Advanced Topics
-
Advanced Networking
- Technical requirements
- Implementing load balancing
- Monitoring and diagnosing networks
- IP flow verify
- Next hop
- Effective security rules
- VPN troubleshoot, Packet capture, and Connection troubleshoot
- Configuring DDoS protection
- Enabling VNets in AKS
- Enabling VNets for ACI
- Enabling VNets in Redis Cache
- Summary
-
Implementing Storage and Backup
- Technical requirements
- Configuring network access for Azure Storage accounts
- Enabling monitoring and finding logs for Azure Storage accounts
- Managing the replication of Azure Storage accounts
- Selecting the replication mode
- Setting up Azure file shares
- Transferring large datasets with low or no network bandwidth
- Understanding your case – low or no bandwidth
- Transferring data from on-premises to Azure
- Transferring large datasets with medium or high network bandwidth
- Understanding your case – medium or high bandwidth
- The available options
- Exploring periodic data transfer
- Enabling security for Azure Storage
- Summary
-
High Availability and Disaster Recovery Scenarios
- Technical requirements
- Monitoring Azure VMs
- Creating a VM
- Enabling monitoring
- Understanding the details
- Monitoring Azure Storage services
- Monitoring Azure App Service
- Exploring capabilities of Azure Application Insights
- Implementing Azure SQL backup
- Creating our SQL server and database
- Backing up your databases
- Implementing Azure Storage backup
- Backing up your storage account data
- Implementing Availability Zones for VMs and HA
- Availability Sets versus Availability Zones
- Implementing AZs
- Understanding how AZs work
- Monitoring and managing global routing for web traffic with Azure Front Door
- Understanding Azure Front Door
- Creating an Azure Front Door instance
- Designing backup plans for VMs
- Summary
- Further reading
-
Automating Administration in Azure
- Technical requirements
- Starting/stopping Azure VMs during off-hours
- Getting started with a VM
- Creating an Automation account
- Monitoring Blob storage with Azure Event Grid
- Extending your setup
- Monitoring ACR with Azure Event Grid
- Integrating ACR with Azure Event Grid
- Integrating FTP/SFTP servers with Azure Logic Apps
- Creating an Azure Logic App instance
- Understanding the setup
- Integrating Office 365 with Azure Logic Apps
- Integrating Azure SQL Server with Azure Logic Apps
- Getting started with Azure Logic Apps
- Managing updates for VMs
- Getting started with the Update Management feature
- Enabling the feature for multiple machines
- Tracking changes in VMs
- Summary
- Further reading
- Other Books You May Enjoy
Product information
- Title: Learn Azure Administration
- Author(s):
- Release date: September 2020
- Publisher(s): Packt Publishing
- ISBN: 9781838551452
You might also like
book
Learn Microsoft Azure
Explore various Azure services to build solutions that leverage effective design patterns Key Features Create, deploy, …
book
The Definitive Guide to Azure Data Engineering: Modern ELT, DevOps, and Analytics on the Azure Cloud Platform
Build efficient and scalable batch and real-time data ingestion pipelines, DevOps continuous integration and deployment pipelines, …
book
Implementing Azure DevOps Solutions
A comprehensive guide to becoming a skilled Azure DevOps engineer Key Features Explore a step-by-step approach …
book
Learn Azure in a Month of Lunches, Second Edition
You can be incredibly productive with Azure without mastering every feature, function, and service. Learn Azure …