Book Image

Professional Azure SQL Managed Database Administration - Third Edition

By : Ahmad Osama, Shashikant Shakya
Book Image

Professional Azure SQL Managed Database Administration - Third Edition

By: Ahmad Osama, Shashikant Shakya

Overview of this book

Despite being the cloud version of SQL Server, Azure SQL Database and Azure SQL Managed Instance stands out in various aspects when it comes to management, maintenance, and administration. Updated with the latest Azure features, Professional Azure SQL Managed Database Administration continues to be a comprehensive guide for becoming proficient in data management. The book begins by introducing you to the Azure SQL managed databases (Azure SQL Database and Azure SQL Managed Instance), explaining their architecture, and how they differ from an on-premises SQL server. You will then learn how to perform common tasks, such as migrating, backing up, and restoring a SQL Server database to an Azure database. As you progress, you will study how you can save costs and manage and scale multiple SQL databases using elastic pools. You will also implement a disaster recovery solution using standard and active geo-replication. Finally, you will explore the monitoring and tuning of databases, the key features of databases, and the phenomenon of app modernization. By the end of this book, you will have mastered the key aspects of an Azure SQL database and Azure SQL managed instance, including migration, backup restorations, performance optimization, high availability, and disaster recovery.

Related Content you might be interested in

Current Title:

Small book image
Professional Azure SQL Managed Database Administration - Third Edition
Ahmad Osama | Shashikant Shakya
Mar, 2021 | 724 pages
Small book image
Azure Data Engineering Cookbook
Nagaraj Venkatesan | Ahmad Osama
Sep, 2022 | 608 pages
Small book image
Professional SQL Server High Availability and Disaster Recovery
Ahmad Osama
Jan, 2019 | 564 pages
Small book image
SQL Server on Azure Virtual Machines
Tim Radney | Anthony Nocentino | John Martin | Randolph West | Joey DAntoni | Louis Davidson | Allan Hirt
Jun, 2020 | 200 pages
Table of Contents (14 chapters)
Preface
Preface
About Professional Azure SQL Managed Database Administration, Third Edition
Acknowledgement
1
1. Introduction to Azure SQL managed databases
1. Introduction to Azure SQL managed databases
Who manages what?
The Azure SQL Database architecture
Provisioning an Azure SQL Database
Introduction to Azure SQL Managed Instance
Connecting to Azure SQL Managed Instance
Differences between SQL Database, SQL Managed Instance, and SQL Server
Activity: Provisioning Azure SQL Server and SQL Database using PowerShell
Summary
Free Chapter
2
2. Service tiers
2. Service tiers
The DTU model
DTU service tiers
vCore service tiers
Determining an appropriate performance tier
Exercise: Provisioning a Hyperscale SQL database using PowerShell
Choosing between vCore and DTU-based purchasing options
Summary
3
3. Migration
3. Migration
Migration methodology
Choosing between Azure SQL Database and SQL Managed Instance
Tools for determining compatibility issues
Choosing a migration tool and performing migration
Summary
4
4. Backups
4. Backups
Automatic backups
Optimize backup storage costs for Azure SQL Database and Azure SQL Managed Instance
Activity: Configure LTR Backups for Azure SQL Managed Instance using PowerShell
Manual Backups for Azure SQL Database
Activity: Perform Manual Backups Using PowerShell
Summary
5
5. Restoration
5. Restoration
Restore types
Restoring deleted databases
Geo-restoring databases
Importing a database (Azure SQL Database only)
Activity: Performing a PITR for an Azure SQL Database with PowerShell
Activity: Performing a geo-restore of an Azure SQL Database with PowerShell
Activity: Performing Point-In-Time restore for SQL Managed Instance with PowerShell
Activity: Geo-restoring a database hosted on SQL Managed Instance using the Az PowerShell module
Activity: Restoring a deleted database on SQL Managed Instance using PowerShell
Summary
6
6. Security
6. Security
Network security
Managing server-level firewall rules using the Azure portal
Authentication
Authorization
Activity: Audit COPY_ONLY backup events on SQL Managed Instance using audit logs
Transparent Data Encryption
Azure Defender for SQL
Securing data traffic
Activity: Setting a minimum TLS version using the Azure portal and PowerShell for SQL Managed Instance
Configuring and securing public endpoints in SQL Managed Instance
Activity: Implementing RLS
Activity: Implementing DDM
Activity: Implementing Azure Defender for SQL to detect SQL injection and brute-force attacks
Summary
7
7. Scalability
7. Scalability
Vertical scaling
Activity: Creating alerts
Horizontal scaling
Scaling a managed instance
Alternate ways of scaling SQL Managed Instance
Summary
8
8. Elastic and instance pools
8. Elastic and instance pools
Introducing elastic database pools in SQL Database
Activity: Exploring elastic database pools
Elastic database jobs
Introducing instance pools in SQL Managed Instance
Deploying an instance pool using PowerShell commands
Summary
9
9. High availability and disaster recovery
9. High availability and disaster recovery
High availability
Accelerated database recovery (ADR)
Disaster recovery
Summary
10
10. Monitoring and tuning
10. Monitoring and tuning
Monitoring an Azure SQL Database and SQL Managed Instance using the Azure portal
Analyzing diagnostic logs using Azure SQL Analytics
Activity: Monitoring Azure SQL Database with Log Analytics and Power BI
Monitoring queries using the Query Performance Insight pane
Monitoring an Azure SQL Database and SQL Managed Instance using DMVs
Tuning an Azure SQL database
Summary
11
11. Database features
11. Database features
Azure SQL Data Sync
Online and resumable DDL operations
SQL Graph queries and improvements
Machine Learning Services
Distributed transactions in Azure SQL Managed Instance
Summary
12
12. App modernization
12. App modernization
Migrating an SQL Server workload to SQL Managed Instance
SQL Database serverless
Creating a serverless database
Scaling to the Hyperscale service tier
Summary
13
Index
Index

Transparent Data Encryption

Transparent Data Encryption (TDE) encrypts the user data at rest and therefore protects the database from offline malicious activity. TDE is enabled by default in newly deployed SQL databases and managed instances. TDE encrypts/decrypts the database, transaction log, and database backups in real time without any change in the application.

TDE works by encrypting each page before writing it to disk and decrypting each page when reading it from the disk. The encryption is done using a symmetric key known as a database encryption key (DEK). The DEK is protected by a TDE protector, which is either a service-managed certificate or a customer-managed asymmetric key stored in a key vault.

For more details on TDE, refer to https://docs.microsoft.com/azure/azure-sql/database/transparent-data-encryption-tde-overview.

Previous Section
End of Section 7
Next Section