Book Image

The Ins and Outs of Azure VMware Solution

By : Dr. Kevin Jellow D.H.L (h.c)
Book Image

The Ins and Outs of Azure VMware Solution

By: Dr. Kevin Jellow D.H.L (h.c)

Overview of this book

Organizations over the world are migrating partially or fully to the cloud, but with the whole slew of providers, tools, and platforms available, knowing where to start can be quite challenging. If you know Microsoft Azure VMware Solution, you know it is the quickest way to migrate to the cloud without needing application modernization or rework. You can retain the same VMware tools to manage your environment while moving to Azure. But how does it work? The Ins and Outs of Azure VMware Solution has the answer. This high-level, comprehensive yet concise guide to Azure VMware Solution starts by taking you through the architecture and its applicable use cases. It will help you hit the ground running by getting straight to the important steps: planning, deploying, configuring, and managing your Azure VMware Solution instance. You’ll be able to extend your existing knowledge of Azure and VMware by covering advanced topics such as SRM and governance, setting up a hybrid connection to your on-premises datacenter, and scaling up using disk pools. By the end of the VMware book, you’ll have gone over everything you need to transition to the cloud with ease using Azure VMware Solution.

Related Content you might be interested in

Current Title:

Small book image
The Ins and Outs of Azure VMware Solution
Dr. Kevin Jellow D.H.L (h.c)
Jan, 2023 | 328 pages
Small book image
VMware Cloud on AWS Blueprint
Oleg Ulyanov | Michael Schwartzman | Sreeharsha Sanku
Feb, 2024 | 388 pages
Small book image
Designing and Implementing Microsoft Azure Networking Solutions
David Okeyode
Aug, 2023 | 524 pages
Small book image
Implementing VxRail HCI Solutions
Victor Wu
Jun, 2021 | 364 pages
Table of Contents (20 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Conventions used
Get in touch
Share Your Thoughts
Download a free PDF copy of this book
1
Part 1: Getting Started with Azure VMware Solution (AVS)
Part 1: Getting Started with Azure VMware Solution (AVS)
Free Chapter
2
Chapter 1: Introduction to Azure VMware Solution
Chapter 1: Introduction to Azure VMware Solution
Network connectivity to AVS
AVS high-level architecture
Use cases for AVS in an enterprise
Enterprise-scale for AVS
Network and connectivity topologies
Identity and access management
Business continuity and disaster recovery
Security, governance, and compliance
Management and monitoring
Summary
3
Chapter 2: Enterprise-Scale for AVS
Chapter 2: Enterprise-Scale for AVS
Network and connectivity topology for AVS
Identity and access management for AVS
Business continuity and disaster recovery
Summary
4
Part 2: Planning and Deploying AVS
Part 2: Planning and Deploying AVS
5
Chapter 3: Planning for an Azure VMware Solution Deployment
Chapter 3: Planning for an Azure VMware Solution Deployment
Subscription identification
Resource group identification
Azure region
AVS resource name
VMware HCX
Why use VMware HCX?
HCX appliance IP requirements
Summary
6
Chapter 4: Deploying an Azure VMware Solution Cluster
Chapter 4: Deploying an Azure VMware Solution Cluster
Prerequisites to deploy AVS
Connecting AVS to your Azure infrastructure
Connecting AVS to your on-premises environment
Summary
7
Chapter 5: Deploying and Configuring HCX in Azure VMware Solution
Chapter 5: Deploying and Configuring HCX in Azure VMware Solution
Prerequisites for deploying HCX Advanced
Deploying HCX Advanced using the Azure portal
Downloading and deploying the VMware HCX Connector OVA
Activating VMware HCX
Configuring the on-premises HCX Connector
Summary
8
Chapter 6: Networking in AVS using NSX-T
Chapter 6: Networking in AVS using NSX-T
Configuring DHCP for AVS
Adding an NSX-T segment using the Azure portal
Adding an NSX-T segment using NSX-T Manager
Verifying the newly created network segment
Configuring DNS for AVS
Deploying a test VM and connecting it to the newly created segment
Summary
9
Part 3: Configuring Your AVS
Part 3: Configuring Your AVS
10
Chapter 7: Creating and Configuring a Secure vWAN Hub for Internet Connectivity
Chapter 7: Creating and Configuring a Secure vWAN Hub for Internet Connectivity
Azure vWAN in Azure
Creating a vWAN in Azure
Deploying Azure Firewall to secure the vWAN
Creating an Azure Firewall policy for the AVS internet connection
Summary
11
Chapter 8: Inspecting Traffic for AVS
Chapter 8: Inspecting Traffic for AVS
Internet consideration design options for AVS
Implementing an NVA solution for traffic inspection
Configuring the Route Server peering
Summary
12
Chapter 9: Storage Concepts in AVS
Chapter 9: Storage Concepts in AVS
Fault tolerance and storage policies
Configuring a storage policy
Azure NetApp Files
Summary
13
Chapter 10: Working with VMware Site Recovery Manager
Chapter 10: Working with VMware Site Recovery Manager
Understanding what SRM in AVS is
Installing SRM in your primary and secondary AVS environments
Configuring site pairing for vCenter
Connecting the SRM instances on both the protected and recovery sites
Summary
14
Part 4: Governance and Management for AVS
Part 4: Governance and Management for AVS
15
Chapter 11: Managing an Azure VMware Solution Environment
Chapter 11: Managing an Azure VMware Solution Environment
AVS business alignment
Configuring Azure Alerts for AVS
VMware Syslogs configuration for AVS
Summary
16
Chapter 12: Leveraging Governance for Azure VMware Solution
Chapter 12: Leveraging Governance for Azure VMware Solution
A unified security and compliance approach
Integrating Azure-native tools/services with AVS
Security for your AVS environment
Compliance
Governance
Azure-native solutions integration
Summary
17
Chapter 13: Summary of Azure VMware Solution, Roadmap, and Best Practices
Chapter 13: Summary of Azure VMware Solution, Roadmap, and Best Practices
AVS overview
Use cases for AVS in an enterprise
Network and connectivity topology for AVS
AVS roadmap
Best practices for planning, deploying, and managing AVS
Summary
18
Index
Index
Why subscribe?
19
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share Your Thoughts
Download a free PDF copy of this book

Identity and access management

There are different identity requirements for AVS based on how it’s set up in Azure. AVS comes with a built-in user called cloudadmin in the new environment’s vCenter. This user has been given the CloudAdmin role, which gives them a lot of power in vCenter. It’s also possible to set up new roles in your AVS environment using the principle of least privilege:

  • Active Directory Domain Services (AD DS): It is highly recommended to deploy an AD DS domain controller in your identity subscription in Azure. This will help with users’ authentication in Azure instead of this request being made back in the customer’s on-premises environment.
  • Least-privilege roles: Allow only a small number of people to have the CloudAdmin role. When assigning users to AVS, use custom roles and as few permissions as possible.
  • Resource-based access control: People who need to manage AVS should only have Role-Based Access Control (RBAC) permissions for the resource group where AVS is installed, and for delegated users who need to manage it.
  • vSphere permissions: Only set up vSphere permissions with custom roles at the top level if you need to. It’s better to give permissions to the right VM folder or resource pool. In general, do not apply any kind of vSphere permissions at or above the level of the data center.
  • Active Directory sites and services: Ensure that Active Directory sites and services are configured with the appropriate and respective client IP subnets to provide a better authentication experience when attempting to locate the nearest domain controller.
  • Active Directory groups: When you set up groups in Active Directory, you can use RBAC to manage vCenter and NSX-T. You can make your own roles and assign them to Active Directory groups.
Previous Section
End of Section 7
Next Section