Book Image

Learn Azure Administration - Second Edition

By : Kamil Mrzygłód
5 (1)
Book Image

Learn Azure Administration - Second Edition

5 (1)
By: Kamil Mrzygłód

Overview of this book

Complete with the latest advancements in Azure services, this second edition of Learn Azure Administration is a comprehensive guide to scaling your cloud administration skills, offering an updated exploration of Azure fundamentals and delving into the intricacies of Azure Resource Manager and Azure Active Directory. Starting with infrastructure as code (IaC) basics, this book guides you through the seamless migration to Azure Bicep and ARM templates. From Azure virtual networks planning to deployment, you’ll get to grips with the complexities of Azure Load Balancer, virtual machines, and configuring essential virtual machine extensions. You'll handle the identity and security for users with the Microsoft Entra ID and centralize access using policies and defined roles. Further chapters strengthen your grasp of Azure Storage security, supplemented by an overview of tools such as Network Watcher. By the end of the book, you’ll have a holistic grasp of Azure administration principles to tackle contemporary challenges and expand your proficiency to administer your Azure-based cloud environment using various tools like Azure CLI, Azure PowerShell, and infrastructure as code.

Related Content you might be interested in

Current Title:

Small book image
Learn Azure Administration - Second Edition
Kamil Mrzygłód
Dec, 2023 | 346 pages
Small book image
Exam Ref AZ-104 Microsoft Azure Administrator Certification and Beyond
Donovan Kelly | Riaan Lowe
Jul, 2022 | 776 pages
Small book image
Microsoft Azure Administrator ??? Exam Guide AZ-103
Sjoukje Zaal
May, 2019 | 452 pages
Small book image
Azure for Developers.
Kamil Mrzygłód
Aug, 2022 | 632 pages
Table of Contents (23 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Conventions used
Get in touch
Share Your Thoughts
Download a free PDF copy of this book
1
Part 1:Introduction to Azure for Azure Administrators
Part 1:Introduction to Azure for Azure Administrators
Free Chapter
2
Chapter 1: Azure Fundamentals
Chapter 1: Azure Fundamentals
Technical requirements
Exploring Azure Resource Manager
Microsoft Entra ID
Authorization using RBAC and ABAC
Basic toolset – the Azure CLI, Azure PowerShell, and Cloud Shell
Summary
3
Chapter 2: Basics of Infrastructure as Code
Chapter 2: Basics of Infrastructure as Code
Technical requirements
What is IaC?
Exploring ARM templates
Migrating to Azure Bicep
Using ACR as a repository of modules
Summary
4
Part 2: Networking for Azure Administrator
Part 2: Networking for Azure Administrator
5
Chapter 3: Understanding Azure Virtual Networks
Chapter 3: Understanding Azure Virtual Networks
Technical requirements
Planning and deploying virtual networks
Understanding NSGs
Working with virtual network peerings
Network routing and endpoints
Summary
6
Chapter 4: Exploring Azure Load Balancer
Chapter 4: Exploring Azure Load Balancer
Technical requirements
Overview of Azure Load Balancer
The differences between public and internal load balancers
Delving into backend pools
Understanding load balancer rules
Comprehending health probes
Summary
7
Part 3: Administration of Azure Virtual Machines
Part 3: Administration of Azure Virtual Machines
8
Chapter 5: Provisioning Azure Virtual Machines
Chapter 5: Provisioning Azure Virtual Machines
Technical requirements
Exploring the sizes and families of Azure VMs
Delving into Azure VM storage
Deploying a VM
Connecting to a VM
The availability of Azure VMs
Summary
9
Chapter 6: Configuring Virtual Machine Extensions
Chapter 6: Configuring Virtual Machine Extensions
Technical requirements
Using virtual machine extensions
Implementing the Custom Script Extension
What is the Desired State Configuration?
Summary
10
Chapter 7: Configuring Backups
Chapter 7: Configuring Backups
Technical requirements
Protecting VM data
Understanding backup and restore for Azure VMs
Using Azure Backup Server
Exploring Azure Site Recovery
Summary
11
Chapter 8: Configuring and Managing Disks
Chapter 8: Configuring and Managing Disks
Technical requirements
Expanding on OS and data disks
Exploring ephemeral OS disks
Adding, detaching, and expanding disks
Swapping OS disks
Summary
12
Part 4: Azure Storage for Administrators
Part 4: Azure Storage for Administrators
13
Chapter 9: Configuring Blob Storage
Chapter 9: Configuring Blob Storage
Technical requirements
Exploring storage accounts, containers, and blobs
Configuring access tiers in Blob Storage
Configuring lifecycle and replication in Blob Storage
Uploading blobs to Blob Storage
Summary
14
Chapter 10: Azure Files and Azure File Sync
Chapter 10: Azure Files and Azure File Sync
Technical requirements
Managing Azure Files (File Service)
Working with file share snapshots
Working with Azure File Sync
Summary
15
Chapter 11: Azure Storage Security and Additional Tooling
Chapter 11: Azure Storage Security and Additional Tooling
Technical requirements
Configuring soft delete in Blob Storage
Using Azure AD for authorization
Using managed identities
Considering various options for automation
Using the Azure Import/Export service
Summary
16
Part 5: Governance and Monitoring
Part 5: Governance and Monitoring
17
Chapter 12: Using Azure Policy
Chapter 12: Using Azure Policy
Technical requirements
The basics of Azure Policy
Deploying policies
Creating custom policies
Simplifying the deployment of policies using initiatives
Reviewing example policies
Summary
18
Chapter 13: Azure Monitor and Alerts
Chapter 13: Azure Monitor and Alerts
Technical requirements
Chapter materials
Getting started – an overview of Azure Monitor
Understanding logs in Azure Monitor
Understanding data types and events in Azure Monitor
Querying activity logs
Implementing custom alerts for Azure infrastructure
Summary
19
Chapter 14: Azure Log Analytics
Chapter 14: Azure Log Analytics
Technical requirements
Getting started – an overview of Azure Log Analytics
Using workspaces
Querying data
Visualizing results
Summary
20
Chapter 15: Exploring Network Watcher
Chapter 15: Exploring Network Watcher
Technical requirements
Getting started – an overview of Network Watcher
Verifying flows
Diagnosing next hops
Visualizing the network topology
Summary
21
Index
Index
Why subscribe?
22
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share Your Thoughts
Download a free PDF copy of this book

Using managed identities

When deploying services to Azure, you can utilize a variety of different resources that will eventually interact with each other. You can have a virtual machine hosting an application connecting to a database, data orchestrators interacting with storage services, and many, many other possibilities. When designing such solutions, one often thinks about authentication and authorization mechanisms that will be used to determine what one service can and cannot do when connecting to another one. Most of the time, this can be solved by using concepts such as connection strings, access policies, or an in-built RBAC mechanism. This, however, is not always an ideal way of handling that challenge. In this section, we’ll talk more about using managed identities when connecting with Azure Storage to see how they make the whole setup simple.

Definition of managed identity

A managed identity in Azure is a concept for assigning an identity to a service that normally...

Previous Section
End of Section 5
Next Section