Book Image

Building Hybrid Clouds with Azure Stack

Book Image

Building Hybrid Clouds with Azure Stack

Overview of this book

Azure Stack is all about creating fewer gaps between on-premise and public cloud application deployment. Azure Stack is the logical progression of Microsoft Cloud Services to create a true hybrid cloud-ready application. This book provides an introduction to Azure Stack and the cloud-first approach. Starting with an introduction to the architecture of Azure Stack, the book will help you plan and deploy your Azure Stack. Next, you will learn about the network and storage options in Azure Stack and you'll create your own private cloud solution. Finally, you will understand how to integrate public cloud using the third-party resource provider. After reading the book, you will have a good understanding of the end-to-end process of designing, offering, and supporting cloud solutions for enterprises or service providers.
Table of Contents (19 chapters)
Title Page
Credits
About the Authors
About the Reviewer
www.PacktPub.com
Customer Feedback
Preface

Securing Azure Stack


If you are planning to implement Azure Stack in your infrastructure, you should make sure you have a security concept for it. If your customers will run their company's workloads in your environment, you will have to show them that your environment is secure. Therefore, we need to take care of some important points that should be part of your security concept for Azure Stack.

Secure by default

As Azure Stack is delivered as an integrated system, it will be secure by default, which means every VM has integrated hardening by default. And even though everything is a VM of either Windows Server 2016 Full Server Edition or Core Server Edition, you are unable to install anything on the VMs themselves. This means that no antivirus or backup solution can be installed as you can only use the Microsoft integrated solutions (Windows Defender and InMage) with it. The ways to deal with this are described in a later chapter.

Certificates

As the Azure Stack portal is the customer-facing...