Book Image

Azure for Architects - Third Edition

By : Ritesh Modi, Jack Lee, Rithin Skaria
Book Image

Azure for Architects - Third Edition

By: Ritesh Modi, Jack Lee, Rithin Skaria

Overview of this book

Thanks to its support for high availability, scalability, security, performance, and disaster recovery, Azure has been widely adopted to create and deploy different types of application with ease. Updated for the latest developments, this third edition of Azure for Architects helps you get to grips with the core concepts of designing serverless architecture, including containers, Kubernetes deployments, and big data solutions. You'll learn how to architect solutions such as serverless functions, you'll discover deployment patterns for containers and Kubernetes, and you'll explore large-scale big data processing using Spark and Databricks. As you advance, you'll implement DevOps using Azure DevOps, work with intelligent solutions using Azure Cognitive Services, and integrate security, high availability, and scalability into each solution. Finally, you'll delve into Azure security concepts such as OAuth, OpenConnect, and managed identities. By the end of this book, you'll have gained the confidence to design intelligent Azure solutions based on containers and serverless functions.

Related Content you might be interested in

Current Title:

Small book image
Azure for Architects - Third Edition
Ritesh Modi | Jack Lee | Rithin Skaria
Jul, 2020 | 698 pages
Small book image
Azure Integration Guide for Business
Trevoir Williams | Joshua Garverick | Meacutelony Qin | Jack Lee
Sep, 2023 | 268 pages
Small book image
Azure Resource Manager Templates Quick Start Guide
Ritesh Modi
Feb, 2019 | 234 pages
Small book image
DevOps with Windows Server 2016
Ritesh Modi
Mar, 2017 | 558 pages
Table of Contents (21 chapters)
Preface
Preface
About Azure for Architects, Third Edition
1
1. Getting started with Azure
1. Getting started with Azure
Cloud computing
Understanding Azure
Azure as an intelligent cloud
Azure Resource Manager
Virtualization
Containers
Docker
Interacting with the intelligent cloud
Summary
Free Chapter
2
2. Azure solution availability, scalability, and monitoring
2. Azure solution availability, scalability, and monitoring
High availability
Azure high availability
Architectural considerations for high availability
Scalability
VM scale sets
Upgrades and maintenance
Monitoring
Summary
3
3. Design pattern – Networks, storage, messaging, and events
3. Design pattern – Networks, storage, messaging, and events
Azure Availability Zones and Regions
Virtual networks
Virtual network design
Storage
Cloud design patterns
Summary
4
4. Automating architecture on Azure
4. Automating architecture on Azure
Automation
Azure Automation
Azure Automation architecture
Concepts related to Azure Automation
Runbook authoring and execution
Using Az modules
Webhooks
Azure Automation State Configuration
Azure Automation pricing
Comparison with serverless automation
Summary
5
5. Designing policies, locks, and tags for Azure deployments
5. Designing policies, locks, and tags for Azure deployments
Azure management groups
Azure tags
Azure Policy
Azure locks
Azure RBAC
Azure Blueprints
An example of implementing Azure governance features
Summary
6
6. Cost management for Azure solutions
6. Cost management for Azure solutions
Azure offer details
Understanding billing
Invoicing
Usage and quotas
Resource providers and resource types
Usage and Billing APIs
Azure pricing calculator
Best practices
Summary
7
7. Azure OLTP solutions
7. Azure OLTP solutions
OLTP applications
Azure cloud services
Deployment models
Azure SQL Database
Single Instance
Elastic pools
Managed Instance
SQL database pricing
Azure Cosmos DB
Summary
8
8. Architecting secure applications on Azure
8. Architecting secure applications on Azure
Security
IaaS security
Application security
Azure Sentinel
PaaS security
Azure Storage
Azure SQL
Azure Key Vault
Authentication and authorization using OAuth
Security monitoring and auditing
Summary
9
9. Azure Big Data solutions
9. Azure Big Data solutions
Big data
Big data tools
Data integration
ETL
A primer on Azure Data Factory
A primer on Azure Data Lake
Migrating data from Azure Storage to Data Lake Storage Gen2
Creating a solution using Databricks
Summary
10
10. Serverless in Azure – Working with Azure Functions
10. Serverless in Azure – Working with Azure Functions
Serverless
The advantages of Azure Functions
FaaS
Creating an event-driven function
Function Proxies
Durable Functions
Creating a connected architecture with functions
Azure Event Grid
Summary
11
11. Azure solutions using Azure Logic Apps, Event Grid, and Functions
11. Azure solutions using Azure Logic Apps, Event Grid, and Functions
Azure Logic Apps
Creating an end-to-end solution using serverless technologies
Summary
12
12. Azure Big Data eventing solutions
12. Azure Big Data eventing solutions
Introducing events
Event Hubs architecture
A primer on Stream Analytics
A sample application using Event Hubs and Stream Analytics
Provisioning a new resource group
Summary
13
13. Integrating Azure DevOps
13. Integrating Azure DevOps
DevOps
The essence of DevOps
DevOps practices
Azure DevOps
Preparing for DevOps
DevOps for PaaS solutions
DevOps for IaaS
DevOps with containers
Azure DevOps and Jenkins
Azure Automation
Tools for DevOps
Summary
14
14. Architecting Azure Kubernetes solutions
14. Architecting Azure Kubernetes solutions
Introduction to containers
Kubernetes fundamentals
Kubernetes architecture
Kubernetes primitives
AKS architecture
Deploying an AKS cluster
AKS networking
Access and identity for AKS
Virtual kubelet
Virtual nodes
Summary
15
15. Cross-subscription deployments using ARM templates
15. Cross-subscription deployments using ARM templates
ARM templates
Deploying resource groups with ARM templates
Deploying resources across subscriptions and resource groups
Deploying cross-subscription and resource group deployments using linked templates
Virtual machine solutions using ARM templates
PaaS solutions using ARM templates
Data-related solutions using ARM templates
Creating an IaaS solution on Azure with Active Directory and DNS
Summary
16
16. ARM template modular design and implementation
16. ARM template modular design and implementation
Problems with the single template approach
Understanding the Single Responsibility Principle
Linked templates
Nested templates
Free-flow configurations
Known configurations
Understanding copy and copyIndex
Securing ARM templates
Using outputs between ARM templates
Summary
17
17. Designing IoT solutions
17. Designing IoT solutions
IoT
IoT architecture
Azure IoT
Azure IoT Hub
High availability
Azure IoT Central
Summary
18
18. Azure Synapse Analytics for architects
18. Azure Synapse Analytics for architects
Azure Synapse Analytics
A common scenario for architects
An overview of Azure Synapse Analytics
Migrating from existing legacy systems to Azure Synapse Analytics
Common SQL incompatibilities and resolutions
Security considerations
Tools to help migrate to Azure Synapse Analytics
Summary
19
19. Architecting intelligent solutions
19. Architecting intelligent solutions
The evolution of AI
Azure AI processes
Azure Cognitive Services
Understanding Cognitive Services
Building an OCR service
Building a visual features service using the Cognitive Search .NET SDK
Safeguarding the Cognitive Services key
Consuming Cognitive Services
Summary
20
Index
Index

Containers

Containers are also a virtualization technology; however, they do not virtualize a server. Instead, a container is operating system–level virtualization. What this means is that containers share the operating system kernel (which is provided by the host) among themselves along with the host. Multiple containers running on a host (physical or virtual) share the host operating system kernel. Containers ensure that they reuse the host kernel instead of each having a dedicated kernel to themselves.

Containers are completely isolated from their host or from other containers running on the host. Windows containers use Windows storage filter drivers and session isolation to isolate operating system services such as the file system, registry, processes, and networks. The same is true even for Linux containers running on Linux hosts. Linux containers use the Linux namespace, control groups, and union file system to virtualize the host operating system.

The container appears as if it has a completely new and untouched operating system and resources. This arrangement provides lots of benefits, such as the following:

  • Containers are fast to provision and take less time to provision compared to virtual machines. Most of the operating system services in a container are provided by the host operating system.
  • Containers are lightweight and require fewer computing resources than VMs. The operating system resource overhead is no longer required with containers.
  • Containers are much smaller than VMs.
  • Containers can help solve problems related to managing multiple application dependencies in an intuitive, automated, and simple manner.
  • Containers provide infrastructure in order to define all application dependencies in a single place.

Containers are an inherent feature of Windows Server 2016 and Windows 10; however, they are managed and accessed using a Docker client and a Docker daemon. Containers can be created on Azure with a Windows Server 2016 SKU as an image. Each container has a single main process that must be running for the container to exist. A container will stop when this process ends. Additionally, a container can either run in interactive mode or in detached mode like a service:

The container architecture showing all the technical layers that enable containers, including the infrastructure, the operating system, HCSShim, Docker Engine, containers, and applications.
Figure 1.3: Container architecture

Figure 1.3 shows all the technical layers that enable containers. The bottom-most layer provides the core infrastructure in terms of network, storage, load balancers, and network cards. At the top of the infrastructure is the compute layer, consisting of either a physical server or both physical and virtual servers on top of a physical server. This layer contains the operating system with the ability to host containers. The operating system provides the execution driver that the layers above use to call the kernel code and objects to execute containers. Microsoft created Host Container System Shim (HCSShim) for managing and creating containers and uses Windows storage filter drivers for image and file management.

Container environment isolation is enabled for the Windows session. Windows Server 2016 and Nano Server provide the operating system, enable the container features, and execute the user-level Docker client and Docker Engine. Docker Engine uses the services of HCSShim, storage filter drivers, and sessions to spawn multiple containers on the server, with each containing a service, application, or database.

Previous Section
End of Section 7
Next Section