MICROSOFT AZURE - AZ 900 O41 #_QvLICK INTCO DUCTION. . * —— QUICK INTLO DUCTION *___MickosoFT AZURE, commonly referred as Azure, (Cot pare center ) *® | DEFINATION :- AZURE Is a cloud fom puttha Servicer created by micveosoFt tor building. Testing , Deploying and manging appli cation and servieen through microsott -managed data center Developers — MicucoFt Intral Release - 2% ocTORE, 2008 Opevahing System — LINOK, WIN DoWs, 105, Andvoid License — closed source, oper source, SDKs. GLOBAL (OmTA CentER )— 1,65,000 miler Heer + I40 County. w CONTAINERS — Azuve Used (Resouvee Group) to host resouny KKH He EK TYPE OF MiausoFt AZURE SEEVICES~ R | SaaS - (soeroare ac a Service) — 374 Party Sofhoare over Internet # | PaaS — (Platform as a Service) Tools over Mternet # | Laas ~ (infrastructure as a service) cloud based seavices (Storage) Kistoey TimeriNe- 2, Jove ;20m~ VIRTURL MACHINE APR, 20 1y—(W hspald ARLLE)—Te (MA) to DEC, 2zel- HPC SCHEDULE A JULY, 201y- MSH -Lom > OUTAGE w 7 Oct) 2010- PLATFORM ENHACEMENTY Sepirois- SuatTEH SONIC by JUNE /2010- | NET, OS VERSIONING YF Maen -2016- SERVICE FABLIC a) FEE,2olo- COMELERL ALLY AVAUASLES Ste,act7- NEW Logo \y Nov, 2009- PHP, JAVA, CON CTO oct, 2018- LINLY OLIENTER Ggour Mage, 2009- SOL Databare NRL I20B- AZURE FLONT Doak Seve OCTOBER, 2008 > Announced Azure Maeiti2es0- 44 Millio. Daily Renee Unkedin«hetps/ fw ahedn conn sua sngh-61645522/Content Introduction Azure Services Virtual Machine Virtual Network Storage Services Core Azure Solution Azure Security Identity, Privacy & Compliance Service SLA and Pricing nbs / tikes igh 8445522)* | | MICROSOFT AZURE - AZ 900 Mopule # OL UNATIS CLouP ComPUTINa? Is a delay oF Computing Services over tne Internet. , enablii Faster Innovahon , Herible resources and economies oF Seale C) | Compote Provide the Compute Power. (memory and processor) a) METWORKIWA- Connection of Computtr togemer oF VM. (ity STORAGe- Store OF dake | Information Gy | AvacyTics- & IMPoRTAWT # KIND OF Coad, hows much memory required ete - BK seevice peopek (miceotorT FUE) HOLTING AS ‘A SEEVICE. Phonbég-* (CALL SELVICE PRoviDE By INTeQneT *) A PUBLIC §=cLoub~. |. RUIVATE CLOUD | wm HYBRID GLOUO & General public car # organizahon create | organizahon toda host they services Q Aoud envevonement adopting fda hyond tM thelr Aare Cenier Coud- whieh Come %® Purlic cloud omed combmation of Public by Goud seemcen | organaation i & trovate both: or hosted prowder Tesponsible for Opernhna tre Service| > Connecting !xchng # Provide resources they provide dotacentey to Ayure and service +o data center vig Interner rath ple organization |W does not pronde woth help of VPN Tunnel. And uper. acess to user z outside of me CExample-> App Ucaon hort * Recess Viaw intemal organi zahon. on Ayure. ana datacenter, BH And the Database in (tevanece> nzu ee.) (#disnovaranes cost $) | quent damm Center.) \Unkedin - ftps eva linkedin comn/tn/vural-sngh-61445522/MICROSOFT AZURE - AZ 900 02 TYPE oF cLouD % ¥ + PUBLIC CLOVE PRIVATE CtouDd Hy grip Clove Public cloud setuon ave| Are declicated to One Hybrd soll ave a blend Yeady availiable From | organigahen and often OF puslic & private Azure, Reure prande | have. much mere specific] Cloud. InPrastructuye @ Services | Secu Cont en to tee public public cloud. w AZURE USER ACCOUNT? open Free Azure account from Ink Cw azure. microsott com /en-us/ tree) that ge you 12 monty | Free populay seaviceo + 200 § Credit fer 30 dos + 28 senviceo He LAZLRE CERTIFICATION !— ww A2-900 (AZURE FUNDAMEN TALC) AZ-S500 Seepnly Engmeer, Msotroked EVORS ENGINEER Expert eveert Linkedin - heaps: frank. com/in/sure-sngh-61845522/za ¥ ® * * MICROSOFT AZURE - AZ 900 04 eLouo BENEFITS HIGH AVAILIBILITY!~ Application hosted to one dala center and “ory ensting Mtoe another bain Center > Replicate of Paka into hwo difterenr mackwre (DataCenter) SCALABILITY!- Tod type ot ehababiltta: (vern cog 0 Honam te) Veet CAT | HOtizon TAL ¥ SCALELP/ DOWN BIR ONE UM CULETUAL MACHINE) F INCREAS ING /DE CREA ING- | HIGLY LTILIZE, THEN Te Atee — CompuTe Butity (RAM 4 Snitteo To pNOTHER UM mod PLoceccot) maneae By (LOAD SarANced ) LBLASTIUTY:— Only addtng te Sealing \Ss called euskal AGILITY t= (On-demand Services) » fast to deploy vm + Conbo| paune? | Porta} easy to Create Virtual Machine defne te pvopernits - DIASTER, Recov Eey:— Replicate tne date mto anomer to prevent dunng diaster hme- Easy to vecovery. Dt part of Ayalutioiy: CONSUNPTION- BASEN MOOEL!— pay as per the Use. Cost OPTIMIZATION — CAP EM & Oey OPmi2ATION. ee ema | | [GLOBAL Reacn—— ArvalWeiliby oF data Cenky across globe. SECURITY:- Secure to access and Use the application Unhedin «htc fewer diahedincomVinfoar singh GANE522)o @ @ w (s @ MICROSOFT AZURE - AZ 900 oo CLOUD— eApey 2 OP EX CAP EY - Capitey Expenditure _ Orex - Opevarionap Ep pens iture * The up- Front Spending oF money on | # spends on products ama sevviceo Physical (nfrastructure- Os needed , pay as yourp. ¥ Costs From Carex have a value # ge willed wamediatedg: that reduces overtined - |_COMsumenion — Basep— MOPEL!™ Aauve er any cloud Service prouder Congumphon— operate on Giadissagtran— based model. which mean end user only pay for tne wesourceS that ney use: WHATEVER, ‘Tney Use IT, Is WHAT Tney Pay roe] 7 Bettey Cost prediction. 7 Price for Mndwidual resources and Services are povided. > Billing ls based on actual Usame- SE @@m CLouo Seevices:— (owEecTIVE Doman). See Coup s bev ices: | | TaaS ~( \nfaswucture -as-a- Service) Paas — ( PlaHiorm- a1- a— seavice) SaaS — ( Sottware—as- a -sewiie). Identity A Services type based on voe-care- Describe tne shoved respensitlity moder. describe — Servertess computing a Linkedin - http: fora inkndin comin sure-sngh-61445522/MICROSOFT AZURE - Az 900 06 W | Useeastevetuee - as— 4-service (TaaS)- Bn this cloud service Infrastructuve (build pay-as- yo-ge) by venting Servers, Vivtusd— ~machine , storage ,netisori® and operahrs, system From cloud providers: © ® & skever NETOORKING Data CentER . Pieewacrs/ POWER Mem agement STORAGE Stetvtity MAINTENANCE ® | Puatfoem — as- a - Ceeuices (Paas)~ Provides environement for building , Testing and deploying sotreare applicaton , otmout focusing on managing undérying Infrastructure. 1 SERVERS & STORAGE OPERATING SYSTEM +! 2 = —Cti(‘i‘S—....S NETWOREIN , FRELRLLE/ LecuRtty T | peveropment “Too.s* > | fea DATABASE ManacemenT | DATPCEMTER / Powee MAnAgemMeNT Rusimegs AV ALY TOS (Laas) CPaas) (B |_ Soetw ace -as- A- Service (SaaS) - user connets to and Use Cloud-basged applicahor (app) over Ane mternets: Example otice 365, emails, Teams sotroare | (Laas) + (faas) + HOSTED APPLICATIONS / pps: (saas) | Unkedin - httpd Aur Sinhadin.comvin/ eure-singhe-S8A05522/MICROSOFT AZURE - Az 900 oF SHARED RESPOMSIBILITY MoveL:- PRivATE cous | Laas PaaS Saas DATA k ACCESS ak ae me meg APPLICATION ae +e FR PRORE RON TIME He te A2vee Anvee OPECATiNG SYSTEM aE oe aZU ee ARORE VIRTUAL MAtH INE eR Re AZvee mZuRe Comrute ae Azvee azvee AZULE NETLOORK ING ¥e AZvRe Anoe ROLE STORAGE eR ARLE AZURE PEeee a ** KK -F cent ave manage the respons’ Ey 4 KR REseeve-cecs ComeoTinge CIMPOETANT) - Bn general client + Shaved vequirement of Infrastructure ( ex> Capa oF RAMs processor), bur In Cate no-load en your Server but Still we have to pay becauge we vesevved ine Capneaty: to host applicahon ty Datm- Center *-F Modem Way to werlK on Mu Opproad. ts Change. tere (6 no reserved server fox workload, when requ est Come tt wil) nimeabealy allocated +e vesource en-need basts and yeleage the veXource once No -Ugage. In oure keboo below hoo enhty ave Important — * AZvkRE FUNCTLOWS!- IS Q Code Yennt ne underlying platforms or based on an events: your services and not Infrastructure: T+ Creates infrashucture, w Azvee Loar Is @ Cloud Service tnat help you ab avtomate and Orchastale tasks, business process and workMocws women you needed to integrate applicahon » bata, Systems and Services - nadine: fwart nadie. comn/n/sura singh 41448522)Content Introduction Azure penulces Virtual Machine Virtual Network Storage Services Core Azure Solution Azure Security Identity, Privacy & Compliance Service SLA and Pricing Linketo- tps aad con/in/srsngh64852/MICROSOFT AZURE - Az 900 os _* | Mopoce #: 62 CLoup Azuke SEevICES!— Azure Services are~ divided into too parts: AZLLE Cloup seevices ® AU ee Cote re sovece'’s Regione and Aevailibit ity zones 17 Compute ;” Netoork | Subsert ptio; Re: ree . a | pion and Resource Sroug Storage I 7 Dateace. ()| AZURE ARCHITECTURAL components: — Azure 1s an Operahwn [ABO R Bis ARCHITECTURAL cOnponEn Tr perahing Systern pohich manage a date center of micvosoft. Te manage below ave key archittctrual componen & — TP Regions g Region’ Pairs [P Availrbility Zone TP Azure Resources AZORE Age) TECTULAL ComeoNewTs “TP Resource Qmoug- “TP Agere Resource Managers. > Subserrp hong TY Agere Management grouf't- Uediadah tngualirereilichalicimafiefenagitauaiiianss© MICROSOFT AZURE - Az 900 03 _Reqiows:- Azuve offers more growal yegions that aay wetwer Cloud, provider Lath 6o* Regions vepresenting over | 40+ Counties - = Regions ave madéup of one or more ola centen + pronide Eten and scate to reduce Customer lakency. Pr Preserve clata vesidency withy a Comprehensve Compliance offer. Ht REGION > MIGuT BE A coUEection OF zones | REGION PAI’s:- For Availibillty 1 saan Woorst Case scenario. a complete region might be outage. Comat be due to nature provlem or some diasier happer , Hood, power outage - To avoid Wh problem Statement a veaor ~ pairs ts done wohere mmicrosott Create a pa—zone {> prevent clade clan such dlasier. Re Chom Region> Should be mm same Geographic lecatien ) K> CAt least 300 miles of Separanon beeen Yegion paws) > (Avtomatic yeplicate for some sevvices- A> (feels priorihzed yegon recovery tne event outage) *> Mair awe debmed fou cael ( Mx eaarctir) —POInTs — PAIRING ARE MIXED, DEFINED By > micRoSoF ony REGIONS | REGiows — PAR — Norm Cental US — Souty Cenpar us ~ East us ~ Wesrus — west vs2 - Wear Central Ut ~ UL Eager ~ Cembey U-+ India soutw - Tadta-Centyal | ~ Canda centrt ~ Canda task - "Japan cart - Japan weet inked «hep: fer inkedin.com/in/oura-ingh-61445522/MICROSOFT AZURE - AZ 900 jo Yr) AVALLABILITY OPTIONS:- Availibility is a Factor Uelct. deuide pee 5 | how much Hime & our applicaton—Up and vonnng: Ex> 100% mean ho down-time , wlusay working | Porailibihity ts defined oy > Sta C Service Level Napare mew ) SJ BR SINGLE Vy HOST owry. *® Dependent on, Smpe vm % Each Zone have independant} Pousey Backup , phy ical Sepovalid . Cpe Sr): ta> 99-:397. DIASTER RECOvEtY vm vm | [vm J vm vu Zowes Lowe Regwon-} Regen-2 REGION-L Regionep protecttsn wih. Data Resideney Roundanes - SINQLE-VM AVALIBILITY— Zowes REG Iom— Paths fH AVAL IBILITY ZONE — One Zone ‘treated as a One Date Center. Multiple zone lead for veqins, Each data Center te equipped toy independent power, cooling and ne hoorkingy, each Zone are IMierconnecitd via Fiber-optics nehdories [eearon-y | [essusers KEqon-d — Linkedin - tga: fora Hehedin.con/in/sur}-sngh 61445522)MICROSOFT AZURE - AZ 900 qe | AZURE Ceenice. There are vartous Services oteved i Kzure Service 7 feo pomt are Capture laetous. A GENERAL % Compute %_ Storage! NETWORK ING ~ Management Groupe —Nirtual machine [— Storage account | virtual Nehsore, ~ Retource Groups ~ Kubernetes ~ Recoveng bypress Routt, ~ Martet place. — OS image ~ Data lake ~ Pubic-(P ~ Subsert phon ~ Vie seale sete | ~ Storage Expisrer | Nehoork Inky face ~ Templates — Cloud Service, | ~- Data Gor ~ CON Profile - ~ Tag ~ Hosts [- Bata shaver | Route tavies [= Recourse txptere | ~ ~ Hee caches |” Nehoore Secunty 4 He | MAY AGEMENT & Kove?! * Management groups Can include multiple Azure Subsea phon, age grour. ay P * 10/900 management aproug Con cuppartd in a Single dwveetony. GY Management Grove AZ he SUSUR etiON-L Azo ee (2) Azure Subsertphon, SvsscRiPtion-2- | Rescuece | Rego ROE Resource z Unk «heap Parr lnk din.com/in/ surl-sngh 61445822)MICROSOFT AZURE - AZ 900 12 AZURE RESOUFE!- ® Kev Setechng “7 Region and Zone oF Data Center. * Below are tne Important Services as part oF Azure— | Virtual Machine- | 2 | Storage Accounts | 3 | Virtual Netusone CORE Seevicec | * | App Services | S | SQL varabases | ® | funchons RESOURCE GOLP!— Tr ic very Important to grup the yesource mtd a Single vnit. So Every resource need to be parr of vegource qr ~> APTER AZULE RCCOUNT 7 WE NEED To creme A ADE gemod ales * Every Resource Group have a Locakon “kX * Resource can exist in only One resource qroue. —E ® (Resource) > Can exist th tre diferent Region, La Bis poscicte (Resource @ regun3) k (Kesource roup@ RX) R A Resource Resource- Group Con be moved From One resource rou to ander Nesour ce — groux loop one inne ohbey ascoduted In J besource Opeur | REsoOuece— Gtovor Wee DATA as vn %K IF DELETE , RESOURCE Geour TF ite mertomaTicnyy) DELETE ALL RECOvLE CEC isla ipedinitellacerniterdiiin nieceContent Introduction Azure Services Virtual Machine Virtual Network Storage Services Core Azure Solution Azure Security Identity, Privacy & Compliance Service SLA and Pricing Loken ipa fae comin srg 888522)iE) MICROSOFT AZURE - Az 900 os MoDULE #02 Hh | Nampa i AZURE VIRTUAL MACHINE *# ee y K2ure Virtual Machice (AVM) (5 one of Several ty pes of on-demand , Scalacie comp a hing resources that Agues Otters - Azure Virtual Machine CAVM) give you tre Flexicilidy of Virtualization — Lattyout having to boy and maintain the P hist Coal hardware than vunite. THINK ABOUT BEFOLE CREATING a VM (VIRTUAL MACHINE) t | Appucation Resource Name S| operating Syskem run on vA > Locahey Loheve resowce Store |6 Con Fri guration ater Vm Start Size of Vm TI] vM Need vesource . s | « | Mayimiuus number of VM LOCATIONS - Theve are multiple locahdy, in many qeeqraphical vegions around tye world. These are the veqion ts called lecehens which Specifiéo Ine Locahon OF virtual Machine: The Wa to get the availlable locotin are — oO ® © @. Azuve parte? | Azuve Powersvel| | REST nes | AbvRE cut AVALCBILITY > A2ure Announced an Industy leading Single Instance = Vinal machine. Service level gq agrement of 99-97. provide you ale ploy ime VM tory premium Storage OF al) daicks . (BELOW SLA) 99-97 — Two or more Instances deployed acrets too or more hey 2 er move inctance deployed tn same Avatliby ty Set- 949-97 = Singe Instame Vm Using prem wm SSD/UlirA DUEL Pall ose 99-S¥. ~ Smrgte Instance VM wit, standard SSD Managed disks Ssy- Single Instance VM witw Standard HDD Mayme tic Dia kes | “Unkein - tps:f/wmw linkedin.com/in/sura-singh-s1445522/MICROSOFT AZURE - AZ 900 ay HE |_ AZURE RESOURCE MANAGER + Meocmd The Azure resources —————— ee Manager Cae) provides @ management Layer thot enables you fe Create , Update and delete vesources ta your azure Saloon phon: Ke we Know, Aaure ue a an operating Syctem: hie Manage claka Center OF microsoft: , Lohich Manage various service present In data centty. CARM> help to mbract wits it) ARM Ie @ ‘Seger Deployment model hich Can be ys , For eptockesed Creating & > Web application / Virtual machine /or data Storage. (iad 4 7 AZURE PORTAL 1s VLED TO Communicate saem lh - (creation. 0°47 10M fork aem ) Data $ torage Ss Authentica ton — | | AZURE poRtaL | ly - [awe We Le ARORE REsDU aCe Vivtwet Rea chive Lmanaqee Azvee cle (Ison) Seewres_Mo [Sewre managmenc fe Gen, “remplate) : (wen a Creanon) Use 40 Created on - platform") (ailing + Access Cub? Roun dando) de | AZURE SUBSORIPTION!— e | ! To start Loorkn with §Q2ure, weneed Q Subscmphon oF Asare. Myuve Subcayphon prondes you With autnenncaton & auinaized accest to Agure account - BILLING Bounoaey:- Generate sepaval billy reports and Mvoice for each Cubsatphen and tontal “resources: A2v@E CCOUNTS Development Teak Producha Cubsa'iphon Subs entphary Cubsuiphen ‘iad «hetpc run Sinhedin.com ie ware} singh 61448522)MICROSOFT AZURE - AZ 900 Is kecacamwk AR Pro AZURE COMPUTE SERUICES pee eS eS % Compute = MEmoty + PROCESSOR ® Compete colrtve applicahan are ty, Computahon proces, Inshuction are erecutedt. Compute SERMCE Like!— Virtual Machine Applicahon Cervices Container Instances Aaure Kubernetés services CALS) lumdow virtuat Desttop. MitTUAL MAeHIN 7 Mirtuol Machwwes are Softoare emulations OF physteal Computer: which melded re— (Virtue Processar, m~mnemary Storage , and RNa) *K[ virtua macnine =Taas [aR | (Create viewer maediner (@ Azuce) lL gor All Servicen Option During Greasy Virtwed Machine ee, lo Username T ' | 2 CCK Wrtuat Machine. \"t [Basies 3. GD) Add -Virtat Machwe } 2 | Dis 4 Choose > Subseniphon 1 3 | NETWORKING ss Resoure qroup> Name. ' 4 | Manat em GT be Virtual Machin Name 2 YM 1S | tate 1 Region — Select Regen t 6] Reviews creme oN e— OS Name (Wmdow) | 3. sae -(Procaser+ eam)- coat | \ melt (12,000 wR] HB) WW Password . e Wa rn g00 00-> (Roe / ure ces) (at last you will yer prices) 's* Open por For public le) | (See Pe Sn oe Linkedin - heap frane india cory nj sure-singh- 61445522)(Resource Group) MICROSOFT AZURE - AZ 900 le APTER VI@TUAL MACHINE CREATIO once virtual machine ts cs ee (once we clic& create button the page coll scvop| to “pam Templates (Arure Resovece Maman omens)” uw HR ARM iS a JsOon dDoeEMent (ovenew> mputy cutput> Templales) (250Nm JAVA SceIPT OMECTLON NOTATION) once Virtval machine Created It will] Show Fle are— ExAmrLle> (bEmMOvm) ARAME * Wee A RESOLECE GRove|| Lociqion | SUBCCAIeIOY (Resovu ece) Demovm Virtual Machine pemo-gdr Norn Europe | beme ps-[ Demovm - IF Public Ie address Demo. uae Worm eurve || ene pe-t Demoum —nsg | Weboore Secunty Youg| Demo Get Mom Eureye || emo Att bemovm 334 Uthosrk Mterte co | Dems Ger wat Ewore || Dene it-| DemoUm-_os-pisc} bis Demo oer Wort Eurys |! Dems AS bemo-grp-net | Virrmat Nenoone, Demo- Gane Non europe-|) demo As-1 Networturatareyr || Mehwork Watney |] Olemo- ee wun Gurtr? | Oe mo RS-1 @ tor Sb founect Dstart | oResanr | oO pulse Qlapture | Bdelete | O Remes ‘, er we preys % Stop wean Mi dilling StOP |© Press-> Conwect Button 7 open 7 (RDP > Ss 4) | > [® Public [P= HK Re KH “ * Potenumber= GO dovontoad ROP File Linkedin « hanp://worsinkadin comin sura-singh-61445522/AZURE CONTAINER INEtances AzvRE KUB MICROSOFT AZURE - AZ 900 \p AZURE CONTAINER SERVICES CONTAINER 1S HELPING US IN CREATING IsoLATeo WORK Lome’ ON THE SAME PHYSICAL MACHINE, BUT AT SAME TIME TMERE WORKLOAD DO NOT NEED OfbARATING SYSTEM Qe In general 16 We wn 2 VMo bom need @un as to Yun the yvesource, to avoid Such requirement need > containers ) Cimaye Fite Stove) (bevetoger park Yio mage) [AZURE COV TMNER Comsome Iurage) bee ntoad Reaisty t (eevevoren ) b Cape storey (eres) ee —7 Container ave created to ron te Op pucaren at UAer bemnie “7% Contamer i hank weight, (does not have Operahing wet) De will alway vped +0 underline on cohich It & created. 7 ®& Contamer oct or Yeguired Operahng System @ PaaS 0 Eterime that yong @& Container m Aaure, votthout tne needs to manage 4 virtual machine NETS SERVICES!- an orchesbations Services for Container | worn dishbuted Grehite ture and lave RKUSERNETS > Is open Source Coftuare, Which & also Called a orchestahon Services. help to achve and Integrated multiple — Contamer colth leant amount CF elforts te (Ta Azure-> BEL Commy a0 ARS.) , weed to creake multiple VM and top of VM need te Create muthple tonminec- Ku@eewets Seevice > FREE Tnlendin hte: fre Sinkedin.com/In/ vere singh 61448522)ay MICROSOFT AZURE - AZ 900 " VIRTUAL MACHINE seeies i= Gey TT ¥ Gee-21) seers |VM SIZE enmiry | use cases PRECESsoK PRE EM start Per montis! A Entry level vn Test cevver, Server Pot 1393 i} General Purpase Compute | Application , Daknvose 299% bv Next Gen- General Purpose | Entenprde applreahiny & Compute Ophinize VM | Batch Procesiig , Web sey 3S9R 4 Memory A storage Optwag ECP, SAP, SOL 22,0%8 | 4 High pesformance-VM | High performace Conve ul, Fey L Storage ophmize-VmM | Mongo Db ,DB lahare tone! 32,08 N GPU enable — Vm Grapuits , video — Ut, 233 M Memory ophmised-VM [Required massive $0,e09 | Paratiel Compute - AVALIBILTY ZONE!- HELE TO MAINTAIN SUA 99-gs/. IN Case OF PisSasteew REcoveey- PRICING CaLedMtoki- HELE TO GET Pots BLE Costs POL Hosting Test Resource Im AZURE. AZURE MARKETRLACE!- FOR DEPLOYING A2vKE SUbSUIP TION. ROVER VIETUR METWOOREL- Dr hosts tue Wetnad aching th faurc Unkedin - tps //weinkedincom/in/ sue sngh-£1645522/4a) MICROSOFT AZURE - Az 900 oe | PRL, | | VIRTUAL RETOOKK os vigtume weary bisic maen ine |< > [resze| Network |__y [vietu AL Security NET otic ee Sprsmimnenae ciligpatoa’ en | 4VIRTUAL MACHINE! COMPUTE MACHINE ON AZU@E PLATFORM: + Tos disk= VM having duk associated woth, VM,(storng \nformation) atached other dulk to hesr date Duk 3 {VIRTUAL HETOOLK™ le an Uoloted netoerk on cloud, Virtual Nehoerk hulp te treat: a netoortity partis (Who Interfnca Cord) F {WETORE SECLUTY ktached to Secure (nm Louk bound date [VIRTUAL NETWORK™ Mached on VM machina [bb o nehoost. luterface Card [POOLEETVP AOPRESS™ Alou fo Comput tavnyt IMeret. TL REsOUece GRP ML ave part OF Lugiiad rors salled vesouree eee. @ + Sue SCAIPTION — For wally perpose . Unkadin - beep: /wera.nkadia comln/sursngh- 61445522)MICROSOFT AZURE - AZ 900 5° * FH step TO cREATE- VIRTUAL MaAeH INE:— NETOORKS Subs criphon— Fer billny Virtua} Netoote— Resource group Loncal group Submah— VM Nome VM Wane Pubic [0 — Region — Ex—Lurvage / Um WIC feeumty— Prraitta tity Inbound Ror — Image — Operahng System Size— VM Sire Crehor-tabte) ([4.)Mawagemen T— Configure mrenthornucge Udername— ARR A management op hon for VM. fassond— KK Woe Fos — ROK (2209) THe (S)rovrercen Aeldthonal agent, Senptt SOT or apetreation via VM mas conardoted ville by agrty Os Dick- SSD/HDD Same tng to multiple resource Grouy SSH Energtion — Rov ew + Cheate Dada dick HOURLY Eftimiattont =(0-n3 vaD/e) * Maer Created we have belus vesource He In Vivtval machine* Example CDEMOVM) Resource af | Subsseoyehd Meme ge errno” + Aone gepavnct — Tintual we heen Tt clemogre MARE UME pee +} demovm [Yitwal Machine | Atmogrr tne 16 |} Aemovm - ig [Public It address [ clemo-agre tea ‘ ’ demovm - negr {Metacoct Secunty Gog | demo gre toe to" demovm 33 + t Nehoot Menfa ce ‘ demo-grr ter t » demovm -05 Dis R-1- 1 DEMo-~Gee tes : ” } Network watched { Reloore Wolken” i" mip ZONE > HELP) TOMMOIAIN SLA 999SY. IN CASE Disactee Recovey oa ESDPContent Introduction Azure Services Virtual Machine Virtual Network Storage Services Core Azure Solution Azure Security Identity, Privacy & Compliance Service SLA and Pricing Lin MSU Ioedin comin sr-snghHSS22/MICROSOFT AZURE - AZ 900 ay MODULE # 04 + ree CREATE VIRTUAL NETWORK SSS VI@TUAL NETWORK: When We Created a virhial machine mh azure nekoork UF Lolll allocate a > Virtual hetoork Inter face VIRTUAL METWORK INTERFACE:- Mange all traffic moving: (In -and-Ouk of the vital machine Cvia— virial nenserk—- ~mktYince). so tne data Flore via virinal nehoors Interface 7p Apokess— help to locate a machme + [> Puettc IP Apoeess- help to locate machme on internet - | Pewate ie Aonesscs~ help to Locate machine on Locat- nehoore ? Su@nETS~ It help to Separate one cr more subnets: AZUE VICTUAL Newwore | VIRTUAL PRIVATE Nho Umer] AZOLE BYPRESS ROUTE ® & Collechdy oF (VM) | conmechon vita Dedicated lease routs Computer to each otner| Mrernet and Sending Only fer connechm # \nternet > Public. It Marthe wile Cupporrot| between (fyure Data e Intact Private It Chomyenin | vecryphan Center @ user) when we created a Wtual Machine, frufomeheally tr wcll Crease a Vittuat Nehoork: NEtwore Sécvel os VIRTUAL Disk Maen INE = Private 1°= 1009194 — Pub clee 13-79. 9¢-72 SUBWETE 10°0+0:0/24 VIRTUAL NETIOORK = (l0:0:0°0/)6) ‘itis -tntguiiimatidedasamindieingemmenans,MICROSOFT AZURE - AZ 900 CREATED mto 5 Steps— VIETOAL NETHOKK oe Creahon of virtual nehoork Us divided © asoes le AopRess Steverty TAGs | REVIEW + heme PSubcatphon, > \evdaddvess |> Host Taryare | (Keven & create) |> Repo qroug. \evé addrey |> DOvs Protect | Rane Autne 7 stance-wane [> Subnete > Rrewaey | fev thar > Wetance Kegion Crates you + Caregran? Linkedin -henpe://war.inkadin.comm/in/surs-singh-61445522/MICROSOFT AZURE - AZ 900 aw TYPE OF NETWORK ConmeCtion:- VIRTUAL NETIOoRe (PEELING) >" Mowe secure” onneeee Ponst—te- cre Stté-te- site -[VIRTOAL METWoRK (PeERING):- Thic Basically help 10 \ntevconnected too l\ferent vernal machine loosed on Private lPaddress veut Vee Prwate |? addrew PrivaG [Paddrers aaa ie 1000-0) 16 Deo-oge Pomp -t0-Site VPN Comnechery 2. PON T— TO- SITE 2 site-To- SITE VPN Galway Support (025) Pom t-te tL VPN Compocha ys: ! Ro vhug:- Hho Cuco vOwer er macho {Wey PP voute bape On internet Since In formahinn Hoo how Iyitmet! do we ave wai ven Golauersg fo mate iF mae Secure, | OCad Nha Gate = Informanean aoa 3 VPN Galway > attached fom(Lwa) (toro the haytic ! ‘ Dien AnpnliniiatbelistaiatabeinimabieneieasContent Introduction Azure Services Virtual Machine Virtual Network Storage Services Core Azure Solution Azure Security Identity, Privacy & Compliance Service SLA and Pricing Len. pe fund comin sng 4485227MICROSOFT AZURE - AZ 900 2t Mopule # }-ABUEE STORAGE Sekuices — elon are fue Auge of cleraqe. are tne parts of Azure Storage Servies Sevvies, tic ® eross @ trscee ® aveve ave @ - Storing object - Storage ~ Stormy duere C¥éak a Gle- - \mage Table date ~ Sending message — Video — Reareving mesage HOW “To Abo} oO Go to ™me Ate Recouce | ————_______, Q CLickK@ cheaté BOTTON e se OPTION "SToerge AccouNT” (d quick WIZARD BASTce — Aceount mame | Region / ferformance vo Q ADVANCED — for seaure the accounts ® METWOREING — Public / Private 10k o DATA PROTECTION - Deletion or Medi ficahon TAS caregoriza tion REVIED + KEATE — final creahon 2 is o CREATE S10 RAGE AccouN: Linkedin -tep fora inkedin comn/n/ sure-sngh 61405522)MICROSOFT AZURE - AZ 900 AZURE STORAGE Seevicet WM CONTAIPER STORAGE (eves) - te optimized for Storing Amount of unstructured data , such ag text or bmany dake @ Disw STORAGE provides duke for virtual machines 5 Applicakon , and otver services to access Gnd use- @ Azvece ALESI~ sete up highly availiable nehoarke fle shaved that Can be accessed by usy tne Standard Server message block ($m8) Protocols. AZURE STORAGE Access TIERS pee PE eIO FRAG Ace es ieee HoT Cool ARCHIVE “ ophmized For s| "Opnmined tor storing! ophmazed For ston data thar dake tha lb clota that & raret Accessed InFrequenty accessed | accessed 0 Starved, Frequentty wat least Bo days wat least 180 das + READ £ WLITE hee VERY Facaveanty (ess ee) (Rena btomte Weppentuc) Mos, Cost Reads wnte Cost Thu ch to steve 4) ( i seinrecouf) \ (Tats cheng tostore) 2 will ake Hue. inked «np fer sinadin.com/in/sura-ingh- 61448522)MICROSOFT AZURE - AZ 900 26 PLORE AZULE MARKETPLACE'- th Similar like Playstore, Azure marketplace allow customer +o nd, try , purchase and process applicateon and services Prom hundred of lead Service providéy ,uhich are all cerhtred to ron on Ayre. \7 Open source container plattorms 27 wirtue\ machine and atabase Images 37 Appucahen bulld and Deployment Sottuave +7 develovers tools AZURE DATAGAE SERVICES * AZURE Cosmos bataease:—> te a globally Atshiuted dlatavase twat tlasheally and de perentty. seate * AZVRE SQL DATABASE? Is arelatinal dambase as a Seriuiceo (Daas) based on tne latest version of microsoft sar Server datavace engiie- * | AZURE DATAGASE FOR MYSOL? & a Rallye managed My so datarase Services Far applicahin developers: R | azvme pAwense for Posea SOL-> & a relahonat datacare = Servideh based on tne Open-Source Postgres database — engune- Inein-hetp fw fnkedin.comy/In/sura-sngh 61445522)Content Introduction Azure Services Virtual Machine Virtual Network Storage Services Core Azure Solution Azure Security Identity, Privacy & Compliance Service SLA and Pricing ten ape madi comin ssn SA0S522/MICROSOFT AZURE - Az 900 ae MopuLe+# #| cere sotuotio CORE AZVEE SOLUTION AZVRE MANAGEMENT TooUs- ti |loT te Azure Spreve Portal, Posersnet!, CLL ™ | Synapse Imatyhes to batabricks | |" Advisow WT Arh Ficod Intellyence MW Monttor ™ | Machiwe learning W Seyvice Healt. | % | AZURE ISTERNET OF —HINGS — joe SEER oh WIAs loT describe physical Objects that ave embedded wstty sensors / Processing ability » Softoare. and othtr technologies and Tor @ (let 108) vhadn - bigs: forara eiendin.come/in/ourd-cngh-GiANSS22)iN # MICROSOFT AZURE - Az 900 Qa BIg DATA & AW MLY TICS -? OVer a period oF hme, mostly all Organizahon Is Cap turtg a huge amount of dat. ( &y> beveloe eCommerce welosite)> hovo rung mony people vuiled ebe- Mere big- batn help to analxe te compete data. heve we dump all dedu and utiny ETL Tool and process the date and create a data whorehouyse - Relord ave ne Sy-datm Tools — R ARVLE SYNAPSE ANALYTICS — & Cloud -based enterprise baka wavehoupe: Solution, (Geampu> Hadoor) LAZO0RE HO InstgHqi- & Fully - managed , Open souvced analytes Services for — enttrentes . DATA @BEICKS!- Apache spark based analyhds services. ese three ave nay fommen ned {0 analye huge Data ARTIFICAL INTELLIGENCE & MACHINE LEAQNING.- (MUIs tohen understand tne pattern ant leavn tne output wir help oF 2) AZURE MACHINE LEARNING!— Cloud-based to develop, and aleplog machine learnings mode} COGMITIVE SERVICE! OuicKLy €nable app to see, hear, Speak, undtrstand and imberpret a ugev's needs. ARURE BOT SERVICES! Develop Intelluent »enber Prue grade bol JAPRURG BOT SERVICES! P wenk > P on ilies ng eile aliith ahaa dahdinainMICROSOFT AZURE - AZ 900 2g HH) AZURE MANAUEMENT Toous'!— below ave tne part oF AMT CARRE Mav ace ment Tools) — ARVLE PORTAL ARVRE power mer | AZVLE MOBILE APP [ COmmMAyD LINE INTEFACE COLE) AZULE REST APL } AZ0RE Crovuo SneLr d 4 c A2uURE REsOveCE Manacer (aem) | 4H | POWERSHELL” Install power Sheil locally, Create a resource Group ang fee virtual machines acces and used tre Cloud shell 4 renew mauve Aclvisor reComme notations AZURE CLE!— Install tne Azure CLE Locally create a resource qroup and virtual machne , Use Me Cloud shell anq revue ayure Tecommend WHEW ALL MODULE INSTHLLEO, WE NEED AOVUOR( Azuee ADvIsok) —> Probabl we are not vse / ov ving VM upto the Capa > Only one VM lk Is tr Lae ,anotrer one im not LAE mods. 7 MSo;enen deploy Coovm) tt & not posible to analge all vm be me Sol) yo Azo ee Rew) * AZURE ADVISOR! — Amalyze depo yed Azuve Yesource and makes recommendation on best practice tooptme Azyve deployment “pReliawility Tseeun T performance | Cost & TT Operahon excetien ce Linkin - http: fren nkedin com/in/sura-sngh-61445522/MICROSOFT AZURE - AZ 900 20 (FRee)(Resoure) LAZeRE Apdvisot Prnatyzes aAeployed Azure resource and make vecommendiahon on ect prahces to ophmize Deployemen€ ose Operanownl Epectllence Performance 4 Azure monitor maximum tne availibility and | performance oF appiicahon and Services bey collechyy » anal | ane achug en telemetry from clouck and on-premises environmenG Appludahcn Ins AVALIBILITY @ PERFORM ete log Mmaliytics . > How Much Raw vse? Smarr merte ~> How mut capacity pRocescot Ose? Putomahon Actions > If Orr Customized Dash board/s IweheaceD 2 Go> Resource 5 Powershet| 2a —» vm Group MONHTOLING —> METLLCS (chose metic ao per tue weed.) Cs MEeTkics Mee Ltice!= score Comeevm) 1 | cpu creorq Remawine, METELC Nawe w | date Disk Bando dhe Se eee We | DatQ OK LORE Consumyhon, MeTaie iv. | Inbound Hows aR , we Dis write. igite ae Nenwork ty Ton? AGG REG HAT IOVd vm, | RPEHERYOSRAAE Pereentage - CPU. | (AG) -Kverage) rs _——__| Ukedin «https fora Sahedn.coen/n/ wart singh 61445522)MICROSOFT AZURE - Az 900 Bp 7 LAVVRE seavich Hem TY:- Evaluate tne impact oF Aruve Services Wssues with perconalized guidance and Support, nohechen and (Ssue vegoluhon updates - Bn case any Atuve Ceri Kk clon , men will neHect in (service healte) > once tsve TeHecr he update on Yesloved tt oil| ¢sam: *® (UN Prawn Meo coTAGe / PLANED OvIAGE) A HK | MZURE REsoukck manauce (Aem) Temecates — & Deu a Jsow HC )-> Th & decterahix resource Manger C AEM) templatts are Javaseryt” object . 4nic Can be vaed to Create and depo InPas ructure a2ure A2ure wotmout having te wonte program commanda. declaratine Sym toy Rhepeatable Kesutt | Orenesrrahon | Modular Piles Built-in - validation be Export. cote () wo weed +o wnte Progra ws 2) No need to wnle Leputnesh powevshel) etc - Beauty of Atm!— 1E you Implement Aem and t Yun particth go mee we Te-€xeuule [Feoill clo he new Changer letnonr Tepeatys to a. Atm in Conmid) by Para meter Fle (Some template used muthple envmonement). Linkin = http://w inkedin.comytn/sura-sngh-61445522/Content Introduction Azure Services Virtual Machine Virtual Network Storage Services Core Azure Solution Azure Security Identity, Privacy & Compliance Service SLA and Pricing Linens fad comin sr singh C85522/= MICROSOFT AZURE - AZ 900 22 Mobute + | SEcurity:- The Coming aloes wail| Cover tre bela Seahor_ | | AZURE sSecotity Featoees AZURE Vetere Secoect ] REsouece Hy SieNe NETWORK secuaTy noord Freer aces Key VACLT Deo cote HOSTS Doos PROTECTION. Secverty Cente | + DEFENSE WW oBNTH 1) AZURE Cecoeity CevteA + In azure we are Creating © Yesources.,(vmM machine, Storage) And all these Vesource weed te be secuved. Me security the resources are From— 0) Protect Ren malware - QB Protect From Unautronred Access, @ | Préect From potential attacks / hackers | WHen Possial€? IF Wwelr \s some prodem in our in Prastructure. AZURE SEcueity CentER tS mbuilt I) Micrsoft Azure. and Iho monttoriy tne servideg ike (Virtual machine, App Servet) Dotarase, Storaye). Dt proude téct protechm to bol, Azure And on-premise Pata Center. (\n Cote deployed i her Vittuay machine): Provect Of AZVCE VIRTUAL MmeeniNe , NO — ee a Se eee aes [3 Tring Here & SECuLITY!> pent slide Linkedin = beep fora nkedin comy/in/sura-sngh 61445522)MICROSOFT AZURE - Az 900 23 |_MickosoetT Secu tity center, (azute) We will hele you | wo | Provides Secunby Yecomméndehon— Lt coill hele to assynment ana | Qe oA Tecommencahon @ Detect and Block, Malware!— Tt will hel +o analze tne malroave attack, tmmedtatly Send alert: and porect up from such kind of Maloare attach. Lt Bill detect & blocie— Malware ap wet, @ | ANMYZE ANO IDENTIFY poTENTIAL ATTACKS I- Dr will help te Qnalze. prolential attnolh & help do wdestee) due Same. WW [YUST- W-TimE AtcesSs Con thor For poets:- Suppose we have Q virtuet machine » Kua® novo we Weed to clo Fp RDP (Remote Desktop) to that Virtual machine So for demg the Ropon vyrtust machine. We need to open ine londew part ne (#5329) and Wwe are vary SSH Login in Linux (fora Rigel sey vs ace, tenan lone? Ingtead open these bath part favamentaler: we cay lontyur mM seth qeo trot on-clemand. When we Yyeed be do RDF ov soy System to drat vitee| machiye, Tat hme only Part csill be Sper.” and these portat wall) Cleared automancailly 0.Few Pas the - frame - Linkedin = tener dinadin.corn tn sure-singh- 61445522)MICROSOFT AZURE - AZ 900 3¢ 02, AZUKE SEcURITy CENTER- CAPABILITES:- (REsouRCE HY Giewes) Poicy ComPLinn ce? with help of policy We inttall Some gent sho) i | bohicle bastcally help anatze tre virtual machine. Qnd Submit thre | Mejor tin (Log analysis) + | As Soon we Created @ Azure machwe, (ne agent Softee & mstalled ih tee Same and tHe i done under pricy Compluin css . ONTMLOVS ALECMENTS!— Aesess New te ployement resource to ee ensure that they Gre Configure properly. As soon new Vm Created tat help at Aqent Sic) stall and helpus in atcerment- Cl, OTAUERKED RecommenpaTioni—= Recommendations based on Spit Wwerttoad Loitn Inshruchor, on hoo to plement trem. Oty Kem PROTECTION: Paley ze attempted — thveata thoy aleve and impheted resource report: ##| Eyamele © Poetac!s Controls Mays Cuvvent Polentat Scere! Unheotiny | Ratourte | Meher | Scores Scores Ineneane farcwver | Meath” O7 |Enavte vite lo ° +18¥ (lepomts) | Lors — @ > | Sewre z } +41 (Spon) | OFF —< Manazemene Pow ® | Brerppr tote] & Bet ADT (0-84 tomy | Lom — 1 enact sepa: /wwu linkedin com/eeura-singh-61445522/MICROSOFT AZURE - AZ 900 ae aL AZUCE SEuMIMEL'- Azure Sentinel cw a Secunty Informahon. management CSIEM) and Seeun automated response (CoAk) Solution that provides secunty analyhis “and twreat Intelligence acvou an enterprise Otte Ber COMNECTOR & Ache Azuve dive Ufor IN TE Gea tions] A2uyve Advanced Thyeet Propechon Micwecott Cloud Agpiterion Security © Collect dara ef all Uper, devicet, applicanon + Infrastructure under fost Proce sau gs detecking me teats (Gased om AL) mc) INVESTIGQRTE:-| Inveshgahin oF tnrects ® Res powb Respmded bey invokcy Some Kind oF yor Mo AZURE KEY VvavUT heuve key vault Store applicahon Secreat ee @ Cenbalized cloud locahon Im order te Seeuvely contol access permissions and access logging - OF SToking secrets maenEo BY HARDOAKE SECURITY IMonoLes CHS Mm) @ | secrets maw agemeny OT key manrayenent 4) : | i CELTICCATE Maw Ag emeny | Ukedin - http furwvcSinbein.com/iniur}-tingh 63448522)MICROSOFT AZURE - Az 900 BE PLAZURE peeicateo Hhact< Aeuve Aedtcatect hott provides physical Servers Anat hast one or mere Azure virtual machines that Lk dedicated to a singié erganizahon load. * THis will help fe allocated = dedicot?d hardeave. to Specitic SubLoiphon > CV, STotAqe Loill allocated dedicared) % Beneerts:— Hardwave tsolation at tne server levels Conrol over mamttnance event tai » * Ati gned. wit Ature hybrid use benfuG+ x * Kl SEcvuRe NETWORK Comee TWWity:- (How tne virtual machi@ i secured —?) 8y— ol. | DEFEWSse IW DEPTH — A layer cupproack. te secure Computer System - oY vittuet nehoork. i Provides moltiple levels of Protections: PilAttacks agunct one Layer are wolaton From Subsequent “ ® 6 6 © © few » aesetes > ae Foes peg may Pate yaa) Secoern| FH Hacker is mayerly intererted Th. (fassroordy Cratitena) detai\) fo the protechion required at eocr Lovet > y | Moder need te hack eacl ayer Steohing From Phasreet Secunty to the Darn Pour. Linkedin « Netpe:/ frersinhedin.com/ln/eure-ingh- 63468522)MICROSOFT AZURE - Az 900 2 Smagen Secverty More Aguve prende Shared Seon modet My tmis Certain tangy ic Ke by micvoiotr ang Certain ming. is take Cave by customer. (tr- Below ore he cletai] Aronnd tre type ct modal ) Response ity On-Prremices (Daas Paas Saas Dake Goverananee and - Gosemer dottomer | Costemer | Customer = Righe Manegement Avert end pointe to theme Customer | Cuftemer | Customsr Wecouns Laced hanaymeny | Casbemer Csvmer | Costemer| wstomer Uenthy @ direaary bnfasmuchare | Coshemer | Customer w/e Mie Dppucehin ty Stomer” Cushmer Mle Mie eet Wubonre tout, customer | Cosrome- | Mie mica | Orermnrng Sopsteun- Wvstomerr caromer | mrowsty | rattrortty” Phytrced hos Wo stomer mia |miowsot | minosst | Playst ork nebo ovis Cstromer mort | micwsaty | Muresot Pugeccrk bate Cuber cattomer | wuss | rmicoseer | Murostt (FH mice Mivestt/ eusomer) ¥ ¥ NETWwede SECUEITY GLour — sq Filler netoovk haffic to and Form , Azuve resource on Azure virtual nehoork: & Set imbound & ovttound rules eto Filter by Source and deshnahon (P address ,ports and protocols: hdd multiple rules as qceded justin Subcedphon himils Overrides A€eaulr yule wie nero higher prety - Linkedin «http /wuninkedin conyin/sure-singh-61405522/MICROSOFT AZURE - Az 900 ae J Azeke Feewec:- Firewall as a Services ( Faas) Anat grants /denies Sevver access based On originading \@ address , m order to protect hehsort resource: Applies Inbound and outbound tratfio Filtering rules. WP Balt-m high arathabil unreshicted cloud Sealail Boer Adyure Monitor lLocaing Azure — Applicate qaleuw 7 Aso prondes Q Grepal| , web — —Appiicahon Arewall (wat). wat provides centralred , Inbounded — prokechom hem Web applications: AZURE DDoS (DISTRIBUTED DENIAL oF SEduIceS) PROTECTION IF a Sewtce Veqguestecl From mult ple Locahten acrois gicle te a Specie Sewer, which, lead slo® or un vespousive » So Aaune Is destgned fo handle Such sttvanon and block such Kind of resuert. $$$ THE Baste version of DDoS R&R FREE % Dr vill cutomateally detectes trat bartie U not coming froma Qenasae needy uber. but Rem a(Bolt) and It wil\ blocked: Azure backhone — Is Pre-preqam te handle such ciation: | ensuring fr fewver aqvailthe te aces cur ‘request WT Basic Service her & automan cally Ruable Ww | Pov standard serve ter adac mil gahern Capabilittis (Lill help to get more detad| Rom where atinck lopped, ATT ACER RK Azae AZVRE DDoS VIRTUE BAccone PReTECION Networks Ney ous tle bafhec)| sop rea) Inked «heaps Pour nkedin.com/In/ wre} singh-61448522/ wy.Content Introduction Azure Services Virtual Machine Virtual Network Storage Services Core Azure Solution Azure Security Identity, Privacy & Compliance Service SLA and Pricing ken aps fo tne coins singh 04852,ee MICROSOFT AZURE - AZ 900 MODULE # Az-900, IDEWIITy, GOVERNMCE , PRIVACY & Compumce % Seevicec:— azote | DENTIT ') | mutwenteatian verus Autuerizaten: a | Azure AD, MEA, S80, and Condihdy Access. AZvte GOvEeNAN CE Pewteee! — 1) | ReAC 2. | Resource locks and tngs a Potey 7 blue print and CAF- [Azvee PRIVACY & ComPUAREE!— and onlme feevicen “Terms Privacy statement dowwmen tahone Truth Cen and compltance Azure sovereign Yegions. Linkedin «http: iahedin comnin/sural-sngh 61445522)MICROSOFT AZURE - AZ 900 46 Azuee IDESTITY — ceevices — oBjecTIVE pomaiwi— 7 Explain tne difference betseeh auhtnentication L autuonzonay > vetine Azuve rene — DiTEchvy > Describe ime Funenng k usuage of Powe actwe beng 7 pesemtbe ime Function. and Upuage Of Condinmap Accem, ~muUple-tackrr (MEA) and single sige (350) FR | hutwenh cation Autwovigettons ~ ldentities tne person or ~ Perermmer an authenticated persons feantes Seeking actes a or seevidel Lonel acum Yeseurter . ~ Renn Letingake acces |- berine colic date hey Can Credepalo - BLES , and What cnoy Caude won “th: - Berrie fr corcahing. Se Gyre ldeutty k& ACES Cormn (Bored on Idennty , pronde tre Principle | aceem to tne Sdevicer us cated pine eaRe) * (The process oF identifylig tre perso, tobe (U1 tamed) u Called puntnenh car in ® lL AZLLE AcTIVE DIRECTORY CARD) - Is ay Micrcoft Azure Cloud— based Idenhhy and acess managiment Services al Auninent'cation (employee sign-in to actex vesourves) Singte- smg-on (S80) pplication Maragement Business — to-busnegs: (828) Busmest—to- Customer (ba C) hence haces ERE Untain - tee:fwer. nadia comtn/vore singh 3440522 "ase§? vy Azure hehe Directory te MICROSOFT AZURE - AZ 900 [seorDition ACCESS— te Uned bring Signals fogeter to make lecicions ,and enforce ergarizahan| policies - User or Group Membership IP Location Deriées Applicator Risk Derechen Ris Detechon> with help of ML/AZ Azure detect the patter [ OF logm lke Ctity / fountry) If foo loge athempt dene for) Tandom locahm “\+ will auto detected Yak dettchay | ASSIGN ROLE ACCESS ViEo) THE aeTwity hore log's + temwt w ROLE AESIGN MENT AEERE fon ie eaten Commene C1 waa Check access = (Add role a sey peat) One ae ee (Z | : | > | 6) (452m Role ? Otoney b> G@nht beter > header Linkedin «https feraibedin.coen/n/ vor} singh 61445522)MICROSOFT AZURE - AZ 900 oe AZURE GovEeRnANCeS METHODLOGIES jE _ SOME ROM ESS _METAOSLO GIES" M_RBAc (ROLE -Baced access con ter) 7 fine-grained access ma ement + Seqreqrate dues witnty < team and grant onl the aAmeunr of-acese to user trat imey need +0 peoforn Aner oles - ~ Enable aceets to tre Ayre partep and aaa acces to yesources- * avg yole +0. parheular secunty principle peracey tne vesowce - R Resource rock's : protect your Azuye resource from acerdenta} deletion or modification , Manages Locks at Subscrlpten , resource orp, or Individual resource lee} woiy Ayuve priref. [ Leck Types Lean Veoate becete. | UGan Not delete ves Yes we Rend ont yes Se) we * Mostly seavicet are not arte to vercaly. ® Vesource lock help +o prevent from acadentaf dete tion AZUCE PORTAL 7 SLESCRIPTION > SpeeRy SERAEH WinDom 7 REcouece Lock, nalts ee a pan ® Linkedin «htpe://wwrw Jinkadin.com/in/sura}-singh-61448522/MICROSOFT AZURE - AZ 900 49 LTaasin * very useful Fer rolling vp billing Informeahoy R Deine CKEYTVALLE) To define tag fer Ay resource for zeny ve billi yp Informating - w Provides Metadata fer yer Ayuve Yesouveet . x Logieaty Poapmates posource into a tayanomy- Epa i AZUCE toetALt é & © AZURE PORTAL > LEFT SIDE syPcoee LECTION > TAGS. Oo a a. | ] z oe Asuve policy help bh enfoe organteahona! Standard and to ames Compliancet at-Scale, Provides governance and resource aman Lo hy vequlatory cCompUiance , IEG wort and ma lement- > Evaluates and tdente’es Azuve resource 4nat donot eomay worm your po Udes - Preovde built-in poley and Inthatve — defmations., under ¢ es uch as storage , nedoorking , compute, Benuint center and Momitorirg @o Pou Deheh @ ® {Noone AZvEE PORTAL ExAmPLt AZUCE poetkl 7 SEARCH > POUCY 7 dermanin: Epeupros, Linkedin - betpes foraenhdin.comy/oure}-ingh 6348522)MICROSOFT AZURE - AZ 900 $y Azuee sguiuEpRINT’ makes it possible For developement team = to rapidl build and stand up necro envivonement- J Developement team can qu tekty build trust taro. Orgauizatonal compllance wrin avset of wuilt-ty Componenti . (such as nehsorking) I order to Speed op eee pM AO ’ Role assignments Pou ASS Lom ments Azuve. Resource Managett “Temp tater Resourre evoups. ree elous AporTiON Femme woes ttemeqy- Define busmecs jushtieahon 2 eypected outcomes Pras ~ AtIQn achonable adophor) plan to beimecs outcomes. Reroy— Prepare tne doud envirvonement fer tne planned charged. MIGGATE — Migrate 4 Modermize Attire Lemtloasls. IWNOveTE~ Develops neo Uoud-natve er hugorhd survive. Govern — Goveru— tne envivonement 4 usertloads maven epernhovep magumenti fer cload & higorid sl). Linkedin «het: wee inkedin.com/in/oura-singh-61445522/MICROSOFT AZURE - AZ 900 a5 AZURE PRIVAcy Mrcrsokt comitied tp ensuring. tne. privacy = OF organizations trong ee micresett Ganhatual agreements ,and by providing vu per Control & fests Pare COMPRLLAN CES — pe Tianpenet Mircrsoft respect lao and Wlathons and provide comprehestve coverage of Sompliance attering ss. MicrsoFt provides tne mart Complevehencive set of Compliance of Fert Coney dng CermAcaton and atteckahens) oF any cud service provider. some compliance eqernep Includmg — Cole CCRImInA JUSTICE IwroR mation sysnem) HipaAa CHEMAH Insvernce CSA STAR CERTIFICATION so ABC 27018 Ev ModBUL ctmvses NIST (watonaf Inchtute of Standarde + Teehndlogy ) (Une - haga Peru SiaeadinneVafemni-ingheaneesan)Content Introduction Azure Services Virtual Machine Virtual Network Storage Services Core Azure Solution Azure Security Identity, Privacy & Compliance Service SLA and Pricing Lintner nin com/in/srsngh 6245522)MICROSOFT AZURE - AZ 900 46 MoDULE # AZURE PRICING , Ceevice Lever AqGREEmENy £ LIFEcyeres ) _Azvuee evescetenioma- @® rrmewiva, Lb MAPGING CATS Subseription option # Available product # Services ® PhaKy £TCO Caltulabos- ® seemce Lever agteemerts |@ueenrce Lice cyere HR flare HR Premed ¢ yevert nrmiionty Feats * Die tosws Your cloud uphiie AZLEE suesaeiptions:— @ ———— Oo ® ® Artie totey 7 Subsvaption / Choose Sub cert pteor— ne > loa, ih > Go to” ? ADD Subserprn, Free Trial Pas-As-You-go Azuve students « —7theese your Subseription a4 per your torre vequivement And acne tes} (12 mont) fe 00 ered) “+ (usenepbeer) (as+ Sevvies) mine aseiamenataibsihdamiataiiiaeaiaiiaiasMICROSOFT AZURE 4Q. AZURE PutcHas ING EU EE FUL er As wG i Three main custome types on cohich_ tne avvaliable purchased ophon for Azuve products and Seantes are tomhngents ave — “> Enterprises —F web direct PF Cloud Souham Provider ( cst) ® @ @® Enterprices Re setlers Partners Pegonal’s FacroR AFFECTION G Couts:— Meecovece type ® seevices |® Lecaq (on —~ @O — virtual machine [~~ Me sernces ©. (Gased om sevnices) ai ee OF cuthemer — Infastucture Locahay- | Lindtn« p/w inkein comin sr)-aneh 62645527MICROSOFT AZURE +E | | AZURE PURCHASING:— —TWee main customer type of eohitle tne avialiable Purchased option for Azure productr + Sevv tees ave tontrauved ave— t-> Entes prises a web Birecr 7 Cloud Soluhon Pronder (Csr) factoR APRECT Cont’:— HR Resovece Tyre (vivhis| maces CPU/Ram | storepe.) virtuat Yesource allocated vote virtnet madhire- LB SERVICES Dapend on OF seevice Uke (Enterprics, Wele— AE | diet, Uoud edlubn Partaeds. | LB teaaton— cost vary between Locahont that oHer Ayire prod uct; Setvicet and Yetourcet. Bandvidh.— Deta movirg \n- and- ad OF Aye datacenter, Some mbound deun banister ave free , Such ao cloba gor Pyare dak center. for outbound date tramsfer— suc as dota gping cut of Poure le cenmion= part cai a | | | le | | | based Om zoned. | Czeee > pereing caraviator ) >KHocse seavice) Powe seance Selcored ( be allocated mbtHom. > Pret Charge an Weahen ely e Ta nkein coming 61048522) along with veaion) te price vol]MICROSOFT AZURE 4a- | EXPLORE Teo C Teta Cosy of oWNERSHIP) I | me tool Utimate Cost Saving You can Yeolize by wal open +o Azuve- kK rept Compares tne Cost of on~premiser Mfrastucture Lory tne Cost oF Using Azuve product and semce in cloud - y { [&KO AZORE RESOVeCE OP-PREMIGES Cort AZv Ce cost yj oe compote ey TT S|] 2 DATA Cem tee, 93y. oy. Oe) d| Sy PET OR King, ay 42y. K G i 4. Stee age 4y. Sov. : : } | Example — tost = (Paertes, 492) (92,613) [Minimizing cosgsi- (PM UU- cea) F |Y PERFORM — Perform Lost analyses. Use ( Pricup / TCO Calcwlaber) aR 2) MowtTOR — Monttor usuage and Azure Advisor % vse — vse ia Free trat cuttomer C spending \vinil) Ps iy use TH Une Azure Reservation 4 Azure hy bed Gentity (Hob) + FY CHooce- cheese Low-cosr locatinn and Negroes . Fe BRE EP — Keep Up-to-date with [alert Cubseniprn , obey, & |) APPLy APP ly ze to tdentihy Cas" 02 ner LUnkain-aps://umesinkedn com/in/s-singh 62445522)MICROSOFT AZURE ExPLrokee = support — oftion !— ev Azure subserfphon meluded Free access fo billing and ~ subseriptier, support, Azure porta) productt anf Services dowmentahom, online cett-hele docomentato, white paper and commonity Sop port. “7 ALSO Meath +O me , In care any Support vequired orewnd the Fechn logy « “Score TECH SOPPRY Beate Prailiable + al] Mursoft R2uve accounts Devecoree Tray 2 Non-produchen Business haw acces fo Envivone mene Sop pore Exgeceny via STAND RD Producten oertioad|) suyy acten te Lepper Envi6yement Exgueers na Dame JC nsnas PROFESSIONAL Bosmess- Ont Deperndecos. | Linen tps) sinkein.com/in/sr}singh 62445527MICROSOFT AZURE Sp MI cRosoFT SUAS se Performance targets ave expressed as uphme and Connectivity gurantees | ® Performact — targets From 39-887. (9-5) + 99-997.(u-3) w IF a Services Fail to meet the guamtees , a percentage. ot anon Serve fees cam be Credited . I SLA Down TIME jon __ DOOTIME/y eae 99°9% 42.2 mmvtes @76 heurs | 99. 957. U6 minvtes 4be Wours FS SAY: 4:32 mmo 52.56 mM motes | —= Losin ps Powcinkedin coming 68445822/