Book Image

Implementing Azure Solutions

By : Florian Klaffenbach, Oliver Michalski, Jan-Henrik Damaschke
Book Image

Implementing Azure Solutions

By: Florian Klaffenbach, Oliver Michalski, Jan-Henrik Damaschke

Overview of this book

Microsoft Azure has numerous effective solutions that shape the future of any business. However, the major challenge that architects and administrators face are implementing these solutions appropriately. Our book focuses on various implementation scenarios that will help overcome the challenge of implementing Azure’s solutions in a very efficient manner and will also help you to prepare for Microsoft Architect exam. You will not only learn how to secure a newly deployed Azure Active Directory but also get to know how Azure Active Directory Synchronization could be implemented. To maintain an isolated and secure environment so that you can run your virtual machines and applications, you will implement Azure networking services. Also to manage, access, and secure your confidential data, you will implement storage solutions. Toward the end, you will explore tips and tricks to secure your environment. By the end, you will be able to implement Azure solutions such as networking, storage, and cloud effectively.

Related Content you might be interested in

Current Title:

Small book image
Implementing Azure Solutions
Florian Klaffenbach | Oliver Michalski | Jan-Henrik Damaschke
May, 2017 | 518 pages
Small book image
Implementing Azure Cloud Design Patterns
Oliver Michalski | Stefano Demiliani
Jan, 2018 | 300 pages
Small book image
Learn Microsoft Azure
Mohamed Waly
Dec, 2018 | 354 pages
Small book image
Implementing Microsoft Azure Infrastructure Solutions: Exam Guide 70-533
Meacutelony Qin
Aug, 2018 | 516 pages
Table of Contents (17 chapters)
Title Page
Title Page
Credits
Credits
About the Authors
About the Authors
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Customer Feedback
Customer Feedback
Preface
Preface
Free Chapter
1
Getting Started with Azure Implementation
Getting Started with Azure Implementation
Service models
Deployment models
Cloud characteristics
Microsoft Azure
Azure basics
Summary
2
Azure Resource Manager and Tools
Azure Resource Manager and Tools
Understanding the Azure resource manager
Functionalities provided by the Azure resource manager
Working with the Azure resource manager
Creating an Azure resource group
Adding a resource to an Azure resource group
Tagging in the Azure resource manager
Locking Azure resources
Working with ARM templates
Azure resource explorer
Summary
3
Deploying and Synchronizing Azure Active Directory
Deploying and Synchronizing Azure Active Directory
Azure Active Directory
Deploying a custom Azure AD
Adding accounts and groups to Azure AD
Azure AD Connect high available infrastructure
4
Implementing Azure Networks
Implementing Azure Networks
Azure networking limits
Azure networking components
Setting up Azure networks
Common Azure network architectures
Summary
5
Implementing and Securing Azure Storage Accounts
Implementing and Securing Azure Storage Accounts
Storage accounts
Replication and redundancy
Azure Storage services
Premium Storage account
Pricing
Summary
6
Planning and Deploying Virtual Machines in Azure
Planning and Deploying Virtual Machines in Azure
Azure virtual machine types
Virtual machine extensions
Managed Disks
Availability sets
Deploying a virtual machine in Azure
Accessing a virtual machine in Azure
Changing IP and DNS settings
Common scenarios for virtual machines
Summary
7
Implementing Azure Cloud Services
Implementing Azure Cloud Services
What is an Azure Cloud Service?
Understanding the Cloud Service architecture
Going deeper into the Cloud Services
Azure Cloud Services versus other Azure PaaS offerings, such as Azure App Services
Creating your first Azure cloud service
Summary
8
Implementing Azure Container Service
Implementing Azure Container Service
What is an Azure Container Service?
Creating your first Azure Container Service
How to work with your Azure container service cluster
Summary
9
Implementing Azure Security
Implementing Azure Security
Azure Identity Security
Resource security
Azure network security
Azure Storage security
Logging and monitoring
Summary
10
Skill Wrap Up and Migration Scenario
Skill Wrap Up and Migration Scenario
On-premises infrastructure scenario
Customer requirements
Solution in Azure
Summary

Azure Storage security

Azure Storage is the base for nearly all IaaS services. It's a high scalable, available, and fully virtualized cloud storage solution that can be used to provide storage space in many ways.

When talking about storage security it's very important to remember that all earlier discussed security measures such as RBAC or strict identity management should already be deployed.

After that is ensured, it's useful to leverage the special security abilities of Azure Storage. These include:

  • Shared access signatures
  • Data encryption in transit
  • Storage account encryption at rest
  • Virtual Hard Disk encryption
  • Advanced analytics

Key management

Azure uses 512 bit strings as storage account keys. Paired with the storage account name it enables the user to access the objects in the storage account, for example, blobs, entities within a table, queue messages, and files on an Azure Files share. The access to the data plane of an Storage account is based on the controlling of the access to the Storage...

Previous Section
End of Section 5
Next Section