Learn Azure Administration

Book description

Enhance your Azure administration and Azure DevOps skills and get up and running with networking, security, automation, and effective cost management

Key Features

  • Explore a variety of administration patterns used for different cloud architectures
  • Discover best practices for administering various IT systems hosted in Azure
  • Administer, automate, and manage your Azure cloud environment effectively

Book Description

Microsoft Azure is one of the upcoming cloud platforms that provide cost-effective solutions and services to help businesses overcome complex infrastructure-related challenges. This book will help you scale your cloud administration skills with Microsoft Azure.

Learn Azure Administration starts with an introduction to the management of Azure subscriptions, and then takes you through Azure resource management. Next, you'll configure and manage virtual networks and find out how to integrate them with a set of Azure services. You'll then handle the identity and security for users with the help of Azure Active Directory, and manage access from a single place using policies and defined roles. As you advance, you'll get to grips with receipts to manage a virtual machine. The next set of chapters will teach you how to solve advanced problems such as DDoS protection, load balancing, and networking for containers. You'll also learn how to set up file servers, along with managing and storing backups. Later, you'll review monitoring solutions and backup plans for a host of services. The last set of chapters will help you to integrate different services with Azure Event Grid, Azure Automation, and Azure Logic Apps, and teach you how to manage Azure DevOps.

By the end of this Azure book, you'll be proficient enough to easily administer your Azure-based cloud environment.

What you will learn

  • Explore different Azure services and understand the correlation between them
  • Secure and integrate different Azure components
  • Work with a variety of identity and access management (IAM) models
  • Find out how to set up monitoring and logging solutions
  • Build a complete skill set of Azure administration activities with Azure DevOps
  • Discover efficient scaling patterns for small and large workloads

Who this book is for

This book is for cloud administrators, system administrators, and IT professionals who want to scale up their skillset and enter the world of cloud computing. IT professionals and engineers who are already familiar with the basics of the Azure services and are looking for a step-by-step guide to solving the most common Azure problems will also find this book useful. Basic understanding of cloud concepts such as IaaS, PaaS, virtualization, networking, and common Azure services is required.

Table of contents

  1. Title Page
  2. Copyright and Credits
    1. Learn Azure Administration
  3. Dedication
  4. About Packt
    1. Why subscribe?
  5. Contributors
    1. About the author
    2. About the reviewers
    3. Packt is searching for authors like you
  6. Preface
    1. Who this book is for
    2. What this book covers
    3. To get the most out of this book
    4. Code in Action
    5. Download the color images
    6. Conventions used
    7. Get in touch
    8. Reviews
  7. Section 1: Understanding the Basics
  8. Getting Started with Azure Subscriptions
    1. Technical requirements
    2. Getting an Azure subscription
    3. PAYG
    4. CSP
    5. Enterprise Agreement
    6. Understanding different subscription models
    7. Implementing subscription policies
    8. Getting started with Azure Policy
    9. Policy validation results
    10. Examples of Azure policies
    11. Using Azure Blueprints for repeatable deploy and update operations
    12. Getting started with Blueprint assignment
    13. Assigning an Azure blueprint
    14. Checking usage and managing quotas
    15. Cost monitoring and analysis
    16. Cost analysis
    17. Budgets
    18. Azure Advisor
    19. Implementing management automation
    20. Summary
    21. Further reading
  9. Managing Azure Resources
    1. Technical requirements
    2. Managing resource providers
    3. Managing resource groups
    4. Browsing resource groups
    5. Listing the available resources
    6. Moving resources
    7. Understanding resource providers
    8. Performing deployments using ARM with templates
    9. Writing a template from scratch
    10. Automation scripts
    11. Other tools
    12. Implementing resource locks
    13. Subscription locks
    14. Resource group locks
    15. Automating resource group management with Azure Event Grid
    16. Creating an event subscription
    17. Analyzing the gathered data
    18. Implementing proper resource naming conventions
    19. Subscription
    20. Resource group
    21. Resources
    22. Summary
  10. Configuring and Managing Virtual Networks
    1. Technical requirements
    2. Creating and configuring VNet peering
    3. The Azure portal
    4. The Azure CLI
    5. Creating and configuring VNet-to-VNet connection
    6. Single region
    7. Multiple regions
    8. Connecting the networks
    9. The same resource group
    10. Different resource groups
    11. Creating and configuring subnets
    12. Creating a VNet
    13. Creating a subnet
    14. Understanding subnet configuration
    15. Securing critical Azure services with service endpoints
    16. Creating a VNet and Azure Storage account
    17. Creating a service endpoint
    18. Configuring a service endpoint
    19. Configuring a naming resolutions
    20. Creating a DNS zone
    21. Configuring the DNS within a VNet
    22. Creating and configuring network security groups (NSGs)
    23. Creating a VNet with a subnet
    24. Adding an NSG to a subnet
    25. Reviewing NSG rules 
    26. Adding an NSG rule
    27. Summary
  11. Section 2: Identity and Access Management
  12. Identity Management
    1. Technical requirements
    2. Creating users in Azure AD
    3. Getting started with user creation
    4. Creating a user in an Azure Active Directory tenant
    5. Creating a guest user
    6. Describing the user creation process
    7. Assigning a role to a user
    8. Registering an application in Azure AD
    9. Creating a new application
    10. Creating groups
    11. Group creation
    12. Managing groups
    13. Managing directory roles
    14. Monitoring and auditing users
    15. Enabling MFA authentication
    16. Securing an Azure Service Fabric cluster
    17. Summary
  13. Access Management
    1. Technical requirements
    2. Creating a custom role
    3. Configuring access to Azure resources
    4. Configuring MSI
    5. Securing Azure App Services
    6. Using and revoking Shared Access Policies
    7. Creating and managing Shared Access Policies
    8. Generating SAS tokens for different services
    9. Summary
  14. Managing Virtual Machines
    1. Technical requirements
    2. Adding data disks
    3. Creating a data disk
    4. Adding network interfaces
    5. Using Desired State Configuration
    6. Scaling VMs up/out
    7. Scaling caveats
    8. Configuring monitoring
    9. Configuring guest-level monitoring
    10. Extending monitoring capabilities
    11. Enabling connection monitor
    12. Configuring high availability
    13. Deploying VMs
    14. Browsing the solutions
    15. Deploying resources using various tools
    16. Securing access to VMs
    17. Connecting to a VM
    18. Connecting to a VM
    19. Using RDP and SSH to connect
    20. Summary
  15. Section 3: Advanced Topics
  16. Advanced Networking
    1. Technical requirements
    2. Implementing load balancing
    3. Monitoring and diagnosing networks
    4. IP flow verify
    5. Next hop
    6. Effective security rules
    7. VPN troubleshoot, Packet capture, and Connection troubleshoot
    8. Configuring DDoS protection
    9. Enabling VNets in AKS
    10. Enabling VNets for ACI
    11. Enabling VNets in Redis Cache
    12. Summary
  17. Implementing Storage and Backup
    1. Technical requirements
    2. Configuring network access for Azure Storage accounts
    3. Enabling monitoring and finding logs for Azure Storage accounts
    4. Managing the replication of Azure Storage accounts
    5. Selecting the replication mode
    6. Setting up Azure file shares
    7. Transferring large datasets with low or no network bandwidth
    8. Understanding your case – low or no bandwidth
    9. Transferring data from on-premises to Azure
    10. Transferring large datasets with medium or high network bandwidth
    11. Understanding your case – medium or high bandwidth
    12. The available options
    13. Exploring periodic data transfer
    14. Enabling security for Azure Storage
    15. Summary
  18. High Availability and Disaster Recovery Scenarios
    1. Technical requirements
    2. Monitoring Azure VMs
    3. Creating a VM
    4. Enabling monitoring
    5. Understanding the details
    6. Monitoring Azure Storage services
    7. Monitoring Azure App Service
    8. Exploring capabilities of Azure Application Insights
    9. Implementing Azure SQL backup
    10. Creating our SQL server and database
    11. Backing up your databases
    12. Implementing Azure Storage backup
    13. Backing up your storage account data
    14. Implementing Availability Zones for VMs and HA
    15. Availability Sets versus Availability Zones
    16. Implementing AZs 
    17. Understanding how AZs work
    18. Monitoring and managing global routing for web traffic with Azure Front Door
    19. Understanding Azure Front Door
    20. Creating an Azure Front Door instance
    21. Designing backup plans for VMs
    22. Summary
    23. Further reading
  19. Automating Administration in Azure
    1. Technical requirements
    2. Starting/stopping Azure VMs during off-hours
    3. Getting started with a VM
    4. Creating an Automation account
    5. Monitoring Blob storage with Azure Event Grid
    6. Extending your setup
    7. Monitoring ACR with Azure Event Grid
    8. Integrating ACR with Azure Event Grid
    9. Integrating FTP/SFTP servers with Azure Logic Apps
    10. Creating an Azure Logic App instance
    11. Understanding the setup
    12. Integrating Office 365 with Azure Logic Apps
    13. Integrating Azure SQL Server with Azure Logic Apps
    14. Getting started with Azure Logic Apps
    15. Managing updates for VMs
    16. Getting started with the Update Management feature
    17. Enabling the feature for multiple machines
    18. Tracking changes in VMs
    19. Summary
    20. Further reading
  20. Other Books You May Enjoy
    1. Leave a review - let other readers know what you think

Product information

  • Title: Learn Azure Administration
  • Author(s): Kamil Mrzyglod
  • Release date: September 2020
  • Publisher(s): Packt Publishing
  • ISBN: 9781838551452