Azure Resource Policies – What they are and how to use them

In a previous post I was talking and demonstrating how to create Custom Role Based Access Controls which could be tailored comply with a company’s requirements. Another company requirement is compliance regarding data governance. Say you have one or multiple Azure Subscriptions and one of the company policies is that nobody should be able to create Azure resources outside a specific region. Some / all of the company’s contracts have a mandatory clause that all the data they produce and keep in the cloud should only reside in a specific geographical region. Microsoft has gone to great lengths to ensure that their cloud services (Azure or Office 365) comply with national, regional, and industry-specific requirements governing the collection and use of individual’s data.
(more…)

ARM Template – Creating NGINX Webfarm with Custom Script Extension

A friend of mine recently started working with Azure and loved it once he got the hang of it. I encouraged him to start using PowerShell to automate various Azure operations but it didn’t quite stick with him on the first try. He started automating Azure operations using the Azure CLI and while it’s not a bad tool, it’s quite lacking in features compared to PowerShell and I’m pretty sure that it will not be maintained much longer since Microsoft open sourced PowerShell and gave the Linux / Mac community a taste. The funny part of this story is that he’s a Windows user, uses Windows 10 and yet he’s still using Azure CLI.

Where am I going with this? While giving him some tips on how to deploy some production / staging environments in Azure, I saw how he was automating resource creation in Azure using the CLI. He basically created a golden image in a storage account and with 35 lines of Azure CLI code, he was provisioning the environments. That made me cringe and motivated me to teach him how to do it using ARM templates and custom scripts.
(more…)

Creating custom RBAC roles in Azure Resource Manager

clip_image001
These days I was doing some Azure work for a customer and I was asked if it was possible to create multiple custom RBAC roles for their Azure subscription because the existing ones don’t suit their needs. So I rubbed my hands together and said to client that’s a definite yes and to let me know the requirements so I can start working on the new roles 🙂
(more…)

Operations Management Suite / Log Analytics: What is it?

image_thumb8
This blog post will start off a series of blog posts about Operations Management Suite (OMS or Log Analytics) which is as the latter name suggests is a log analytics engine that ingests events from data sources that you provide and provides a very nice searchable interface where you can do auditing on your infrastructure where ever it is.
(more…)

Backing up your Azure Resource Manager VMs

azurebackup
Azure Backups has been GA for a long time now but not long ago, the folks at Azure just removed the preview tag from the service that handles backing up Resource Manager VMs. I’ve been testing Azure Backup on RM deployments since it was announced in preview and I can say that almost all my tests showed promising results. I’ve encountered a couple of quirk during tests but those were ironed out fast and now that the service is out of preview I can say that Resource Manager VM deployments are the way to go.

In this blog post I will show you how to configure the Azure Recovery Services to back up your Azure VMs and recover them when required.
(more…)

Pin It on Pinterest