Microsoft Azure

• Azure
• New Features
• Blogs
• Azure Training
• Understand Azure Load Balancing
• Microsoft Linux Distribution CBL Mariner
• Azure Patterns
• ARM Templates
• Azure DevOps
  • YAML Schema in DevOps Azure Pipelines
  • Azure Pipeline Tasks
• Azure AD and RBAC. Service Principal SPN
  • Register applications in Azure AD. Authenticate apps and services
• Azure Arc. Azure’s Hybrid And Multi-Cloud Platform. GitOps with Azure Arc
• Secure DevOps Kit for Azure
• Mobile Apps
• Powershell
  • Microsoft Graph PowerShell SDK
  • Powershell repos
  • Crescendo powershell module
  • Secrets Management with Powershell
• Azure CLI. AZ CLI
• Azure Run Command
• IaC with PowerShell DSC Desired State Configuration
• Azure Bicep
• Azure Traffic Manager
• Azure OpenVPN
• Azure Security
• WinGet Windows Package Manager CLI
• Windows 11
• Azure API Management
• Azure Container Apps
• Azure Container Instances
• Windows Server Container Host
• Disaster Recovery
• Azure Samples (Boilerplates)
• Office 365
• Images
• Videos
• Tweets

Azure

• Microsoft Azure
• Microsoft Docs
• Azure Docs
• Introducing the third of three Microsoft Clouds: Azure. 4 major sections of the Cloud Models are:
  • On-Premises: As you start on the left in the traditional on-prem configuration you are responsible for all layers of IT from the networking stack all the way up to the applications which are being provided. You may also be responsible for the data center, power, Internet service, and other underlying aspects.
  • Infrastructure as a Service: In IaaS (Take & Bake) the cloud vendor is responsible for the stack from networking through virtualization and your IT team is responsible for the Operating System (OS) through the applications. Common uses of IaaS are testing environments, development environments or hosting of a website.
  • Platform as a Service: In PaaS (Pizza Delivered) the cloud vendor is responsible for the networking layers through the runtime layer and your IT team is responsible for the data and the applications. PaaS is commonly used to test, build and deploy applications for an organization.
  • Software as a Service: In SaaS (Dining Out) the cloud vendor is responsible for all layers from the networking through to the application layer. A common example of SaaS is a web-based email service such as Outlook, Hotmail or Gmail.
• medium: Scaling Applications in the Cloud
• thenewstack.io: Azure Kubernetes Service Replaces Docker with containerd
• blog.sixeyed.com: You can’t always have Kubernetes: running containers in Azure VM Scale Sets
• devblogs.microsoft.com: Deploy Spring Boot applications by leveraging enterprise best practices – Azure Spring Cloud Reference Architecture
• techcommunity.microsoft.com: Non-interactive logins: minimizing the blind spot In this blog post, we will review the new Azure Sentinel data streams for Azure Active Directory non-interactive, service principal, and managed identity logins. We will also share the new security content we built and updated in the product, which includes analytics rules for the detection part and workbooks to assist our customers to deal with this blind spot.
• returngis.net: Replicación de blobs entre dos cuentas de Azure Storage en dos tenants diferentes
• c-sharpcorner.com: Comparing AWS SQL Server With Azure SQL Database
• techcommunity.microsoft.com: How to create a VPN between Azure and AWS using only managed solutions
• teacdmin.net: How To Enable Multiple RDP Sessions on Windows Server
• k21academy.com: Azure Data Lake Overview For Beginners
• returngis.net: Acceder a un App Service con Private Endpoint desde otra Vnet
• theregister.com: Microsoft Azure deprecations: API changes will break applications and PowerShell scripts
• k21academy.com: Azure RBAC Vs Azure Policies Vs Azure Blueprints
• blog.identitydigest.com: Azure AD workload identity federation with Kubernetes Any k8s cluster, running on any platform, can now securely access Azure resources without keys or secrets through Azure AD Workload Identity Federation.
• thomasmaurer.ch: How to check the available VM Sizes (SKUs) by Azure Region
• docs.microsoft.com: Multi-tenant user management scenarios
• docs.microsoft.com: Overview: Cross-tenant access with Azure AD External Identities (Preview) Azure AD organizations can use External Identities cross-tenant access settings to manage how they collaborate with other Azure AD organizations through B2B collaboration. Cross-tenant access settings give you granular control over how external Azure AD organizations collaborate with you (inbound access) and how your users collaborate with external Azure AD organizations (outbound access).
• nubesgen.com - microsoft/NubesGen Going to production on Azure is only one git push away. Kickstart your project on Azure in minutes! Easily generate Terraform and Bicep templates for your project. Automate your infrastructure using GitOps best practices with GitHub Actions. NubesGen is an Open Source project and we are always looking for feedbacks and contributions.
  • infoq.com: NubesGen Brings Git Push to Azure Infrastructure
• charbelnemnom.com: Move Files Between Azure File Share Tiers and optimize storage costs

New Features

• azure.microsoft.com: General availability: Azure Bastion native client support

Blogs

• techcommunity.microsoft.com
• thomasthornton.cloud: Thomas Thornton
• thomasmaurer.ch
• CommandLine Ninja PowerShell, Active Directory, GPO & Azure Automation. Learn how to automate using PowerShell!
• dotnetcurry.com
• azurebrains.com: Azurebrains Blog sobre Tecnologias Cloud, Azure, Inteligencia Artificial, etc.

Azure Training

• johnthebrit/CertificationMaterials A collection of materials related to my certification videos
• azurecharts.com/learning: Azure Learning Explorer Discover published Azure learning modules, paths, videos, certifications, exams for services of your interest.
• thomasmaurer.ch: How To Learn Microsoft Azure in 2022

Understand Azure Load Balancing

• docs.microsoft.com: Understand Azure Load Balancing. Decision tree for load balancing in Azure
• mvark.blogspot.com: Comparison of Azure Front Door, Traffic Manager, Application Gateway & Load Balancer

Microsoft Linux Distribution CBL Mariner

• thenewstack.io: Deploying Microsoft’s New Linux Distribution as a VM is Not Easy
• github.com/microsoft/CBL-Mariner Linux OS for Azure 1P services and edge appliances

Azure Patterns

• mattfeltonma/azure-networking-patterns
• docs.microsoft.com: Cloud Design Patterns

ARM Templates

• azure.microsoft.com: Azure Quickstart Templates Deploy Azure resources through the Azure Resource Manager with community contributed templates to get more done. Deploy, learn, fork and contribute back.
• thomasmaurer.ch: Learn how to deploy and manage Azure resources with ARM templates
• techcommunity.microsoft.com: ARM Template Specs now GA!
• docs.microsoft.com: Azure Resource Manager template specs

Azure DevOps

• Azure DevOps 🌟
• Azure DevOps Labs 🌟
• docs.microsoft.com: Build applications with Azure DevOps (Learning Path)
• docs.microsoft.com: Azure Pipelines documentation Implement continuous integration and continuous delivery (CI/CD) for the app and platform of your choice.
• microsoft/azure-pipelines-tasks
• info.acloud.guru: Deploying your first kubernetes app with Azure DevOps
• info.acloud.guru: Azure DevOps VS GitHub: Comparing Microsoft’s DevOps Twins
• techcommunity.microsoft.com: Building a path to success for microservices and .NET Core - Project Tye + GitHub Actions
• medium: Azure DevOps HandBook !
• Azure DevOps Tips: “Each” Loops
• cloudskills.io: Getting Started with Git and Azure DevOps: The Ultimate Guide 🌟
• zartis.com: Simplify Your SDLC with Azure DevOps
• azurebrains.com: Despliega tu Azure Function App con Terraform y Azure DevOps 🌟
• devblogs.microsoft.com: Controlling Release Pipelines with Gates and Azure Policy Compliance 🌟
• youtube: Azure DevOps Pipeline and Image Builder
• dev.to: Setting up a CI-CD Pipeline Using Azure DevOps 🌟
• zartis.com: Simplify Your SDLC with Azure DevOps 🌟
• thomasthornton.cloud: Scout Suite reports using Azure DevOps Pipeline Interesting article on how to fecth az DevOps pipelines reports as a static website
• Azure DevOps Dashboard
• cloud.google.com: Crea una canalización de CI/CD con Azure Pipelines y Compute Engine
• letsdevops.net: Introduction to Azure DevOps for Beginners - Create CI/CD Pipelines, Setup Repository 🌟
• kevinrchant.com: Increase in demand for Data Platform automation
  • kevinrchant.com: Introducing my Azure DevOps templates for Data Platform deployments
• dotnetcurry.com: Customization of Work Items in Azure DevOps and Azure DevOps Server 2020
• thomast1906/DevOps-The-Hard-Way-Azure 🌟 This repository contains free labs for setting up an entire workflow and DevOps environment from a real-world perspective in Azure
• thinksys.com: Azure DevOps Pipeline Complete Guide 2022
• techcommunity.microsoft.com: CICD in Synapse SQL: How to deliver your database objects across multiple environments

YAML Schema in DevOps Azure Pipelines

• DevOps Azure Pipelines: YAML Schema

Azure Pipeline Tasks

• Microsoft/azure-pipelines-tasks This repo contains the tasks that are provided out-of-the-box with Azure Pipelines and Team Foundation Server. This provides open examples on how we write tasks which will help you write other tasks which can be uploaded to your account or server.

Azure AD and RBAC. Service Principal SPN

• itnext.io: Secure Azure Cosmos DB access by using Azure Managed Identities Getting rid of passwords (or connection strings) while accessing Azure services and instead making use of Managed Identities is a way to increase the security of your workloads. Learn how to use Managed Identities in this article.
• youtube.com: Azure Service Principal - SPN | Houssem Dellai
• youtube.com: How to create Service Principals in Azure Portal | Raaviblog

Register applications in Azure AD. Authenticate apps and services

• agrenpoint.com: Azure AD & Microsoft Graph permission scopes, with Azure CLI In this small post, we will look at a scenario where we want to register an Azure AD Application using specific scopes. When adding scopes for service principals using the Azure CLI we need to use the internal Ids. And one way would be to manually create one registration, get that app and then print out the scopes and then copy and paste.
• medium.com/medialesson: Create Azure Active Directory App Registration with Azure CLI
• inkoop.io: How to get Azure API Credentials How to create an application in Azure active directory and get subscription id, tenant id, client id, client secret and generate management certificates. You will need these keys to access Azure API.
• docs.microsoft.com: Use the portal to create an Azure AD application and service principal that can access resource
• medium.com/medialesson: Assigning Azure built-in roles vs Azure AD built-in roles with Azure CLI Depending on what action you are trying to perform in Azure you might require either to be member of a certain Azure role or a certain Azure AD role. For example if we want an identity to create an app registration in Azure AD we need the role Application Administrator which is part of the Azure AD roles. When we want to create a resource in a certain resource group we need the Contributor role which is part of the Azure AD and typically scoped to a either a subscription, a resource group or a distinct resource.
• microsoftgraph/msgraph-sdk-powershell/samples: 9-Applications.ps1
• vcloud-lab.com: Get started and configure certificate-based authentication in Azure
• vcloud-lab.com: Create an Azure App registrations in Azure Active Directory using PowerShell & AzureCLI

Azure Arc. Azure’s Hybrid And Multi-Cloud Platform. GitOps with Azure Arc

• Azure Arc overview Alternative to Google Anthos or RHACM
• azurearcjumpstart.io - microsoft/azure_arc
  • architecture diagrams and slides
• techcommunity.microsoft.com: Standardize DevOps practices across hybrid and multicloud environments With Azure Arc-enabled Kubernetes, you can attach and configure Kubernetes clusters located either inside or outside Azure.
• youtube: How to run an App Service Web App on Azure Arc-enabled Kubernetes - Part 2 | Azure Tips and Tricks
• docs.microsoft.com: CI/CD workflow using GitOps (Flux v2) - Azure Arc enabled Kubernetes
• thomasmaurer.ch: Run cloud-native apps on Azure PaaS anywhere

Secure DevOps Kit for Azure

• Secure DevOps Kit for Azure
• DevOpsKit-docs
• ismiletechnologies.com: Secure DevOps Kit For Azure(AzSK)

Mobile Apps

• Visual Studio App Center VS Azure Pipelines
• itnext.io: How to setup CI CD pipelines for Android with Azure DevOps At Royale Cheese initially we had setup CI/CD for Android via Microsoft’s Visual Studio App Center (an upgrade of Hockey App), but last year they declared the retirement of MBaas which got us worried about the overall future of VS App Center. That was one of the reasons we wanted to switch away from it. Secondly, the free tier provided around 400 minutes of build time per month per account which would had been sufficient for other technologies, but Android takes around 15 minutes to create a single build and deploy. We all know what gradle is capable of 😉. So having multiple apps (both iOS and Android) in the same account didn’t fare well.
• arjavdave.com: Continuous Integration: CI/CD for iOS (Part 1)
• sahansera.dev: Multi-stage builds for Ionic Apps with Azure Pipeline Templates
• sahansera.dev: Publishing Android Apps to Microsoft App Center from Azure DevOps
• yoshevski.medium.com: Cost-effective Azure Devops and AppCenter integration
• youtube: Signing & Versioning iOS & Android Apps | DevOps for Mobile

Powershell

• PowerShell
• PowerShell Gallery 🌟 The central repository for sharing and acquiring PowerShell code including PowerShell modules, scripts, and DSC resources.
• PowerShell Community
• reddit.com: PowerShell Core yaml support?
• powershellmagazine.com
• dbatools.io SQL Server instance migrations and best practice implementation.
• thomasmaurer.ch: PowerShell: Download script or file from GitHub
• deepinstinct.com: What makes powershell a challenge for cybersecurity solutions? 🌟
• fedoramagazine.org: PowerShell on Linux? A primer on Object-Shells
• sqlservercentral.com: Powershell Day by Day: Adding Help to Scripts
• dahlbyk/posh-git A PowerShell environment for Git
• blog.guybarrette.com: Powershell prompt: How to display your current Kubernetes context using Oh-My-Posh 3 🌟
• jinwookim928.medium.com: Automation Script for Git Flow on PowerShell
• youtube: Azure PowerShell account management with Azure contexts | A Cloud Guru 🌟 If you’ve been using Azure PowerShell, you might’ve noticed that when you launch a script, you’ll need to authenticate. When you have multiple Azure subscriptions with their own resources, this makes account management difficult. Mark Mikula demonstrates how you can manage multiple Azure subscriptions through Azure Contexts in PowerShell
• hackingarticles.in: PowerShell for Pentester: Windows Reverse Shell We’ll explore how to acquire a reverse shell using Powershell scripts on the Windows platform.
• hashicorp.com: Managing Terraform Cloud With PowerShell
• acloudguru.com: The Beginner’s Guide to Azure PowerShell: One Shell to Rule Them All
• dev.to: PowerShell Snippet System
• techcommunity.microsoft.com: An example why PowerShell is so important!
• jdhitsolutions.com: Profile PowerShell Functions
• devblogs.microsoft.com: When PowerShellGet v1 fails to install the NuGet Provider
• techcommunity.microsoft.com: An example why PowerShell is so important! Create 500 training (test) accounts
• commandline.ninja: Use Powershell to find windows services configured to run as another user
• techcommunity.microsoft.com: Use PowerShell to retrieve all assigned Intune policies and applications per Azure AD group!
• softzone.es: Por qué me interesa más usar PowerShell en lugar de CMD
• mssqltips.com: PowerShell for the DBA - If Else and Switch statements
• 4sysops.com: Use PsExec and PowerShell together How to run PowerShell commands remotely with PsExec

Microsoft Graph PowerShell SDK

• microsoftgraph/msgraph-sdk-powershell The Microsoft Graph PowerShell SDK is a collection of PowerShell modules that contain commands for calling Microsoft Graph service.
• docs.microsoft.com: Get started witth the Microsoft Graph Powershell SDK Microsoft Graph Powershell replaces old powershell modules. It is also cross platform.
• microsoftgraph/msgraph-sdk-powershell: samples
  • Samples: how to create a corresponding service principal from an application
• docs.microsoft.com: Microsoft Graph migration Due to the deprecation of Azure Active Directory (Azure AD) Graph, the underlying Active Directory Graph API will be replaced by Microsoft Graph API in Azure CLI 2.37.0.
• techtarget.com: Get up to speed with PowerShell and the Microsoft Graph API Microsoft plans to retire technologies that admins depend on to handle Office 365 and other cloud services via PowerShell. Learn how to start with this newer management method.
• rakhesh.com: Graph cmdlets and Azure AD App Registrations
• blog.yannickreekmans.be: Secretless applications: add permissions to a Managed Identity Your Managed Identity needs permissions to access other Azure resources or even other Azure AD protected applications and APIs. This is how you do that!
  • YannickRe/msgraph-utility-scripts
• practical365.com: The Ups and Downs of Connecting to the Microsoft Graph Using the PowerShell SDK
• practical365.com: Using Certificate-based Authentication with the Microsoft Graph PowerShell SDK

Powershell repos

• Abhisheksinhacoder/collection-of-useful-scripts
• jrussellfreelance/powershell-scripts
• github.com/search?l=powershell
• systemcenterdudes.com: Create Operational SCCM Collection Using Powershell Script
  • prae1809/PowerShell-Scripts: OperationalCollections This script will create a set of 134 SCCM collections for your various needs. These collections can be used for operational tasks afterward.
  • docs.microsoft.com: Introduction to Collections in Configuration Manager

Crescendo powershell module

• Crescendo is an experimental module developed by Jim Truher, one of the main developers of PowerShell. Crescendo provides a framework to rapidly develop PowerShell cmdlets that wrap native commands, regardless of platform. The goal of a Crescendo-based module is to create PowerShell cmdlets that use a native command-line tool, but unlike the tool, return PowerShell objects instead of plain text.
• devblogs.microsoft.com: My Crescendo journey
• powershellgallery.com: Microsoft.PowerShell.Crescendo Module that improves user experience with native commands
• visualstudiomagazine.com: PowerShell Crescendo Now Generally Available

Secrets Management with Powershell

• https://www.powershellgallery.com/packages/Microsoft.PowerShell.SecretManagement
• https://www.powershellgallery.com/packages/Microsoft.PowerShell.SecretStore
• commandline.ninja: Video Intro to Secret Management with Powershell

Azure CLI. AZ CLI

• argonsys.com: How to query Azure resources using the Azure CLI

Azure Run Command

• mandiant.com: Azure Run Command for Dummies
• docs.microsoft.com: Run scripts in your Linux VM by using action Run Commands
• docs.microsoft.com: Run scripts in your Windows VM by using action Run Commands

IaC with PowerShell DSC Desired State Configuration

• docs.microsoft.com: Desired State Configuration overview for decision makers 🌟
• docs.microsoft.com: Using configuration data in DSC
• octopus.com: Getting started with PowerShell Desired State Configuration (DSC) PowerShell DSC is an Infrastructure as Code (IaC) technology that uses PowerShell to create Managed Object Format (MOF) files, which Windows Management Instrumentation (WMI) can use to configure a machine. In other words, PowerShell DSC uses PowerShell to programmatically configure your Windows-based computers. Additionally, DSC can monitor the state of the configured resources to make sure your machines stay consistent. Along with monitoring, DSC can also automatically correct the configuration of your system, so it’s always in the desired state. PowerShell != PowerShell DSC

Azure Bicep

• Bicep Bicep is a Domain Specific Language (DSL) for deploying Azure resources declaratively.

Azure Traffic Manager

• Azure Traffic Manager

Azure OpenVPN

• Create an Azure Active Directory tenant for P2S OpenVPN protocol connections

Azure Security

• techcommunity.microsoft.com: Security Control: Implement security best practices
• github.com/Cloud-Architekt: Azure AD - Attack and Defense Playbook This publication is a collection of various common attack scenarios on Azure Active Directory and how they can be mitigated or detected.
• devops.com: DevSecOps in Azure

WinGet Windows Package Manager CLI

• WinGet: Welcome to the Windows Package Manager Client (aka winget.exe) repository Windows Package Manager CLI (aka winget)
• muycomputer.com: WinGet 1.0, ya está aquí el administrador de paquetes para Windows
• thomasmaurer.ch: Getting started with Windows Package Manager WinGet

Windows 11

• thenewstack.io: This Week in Programming: Windows Opens Up to Android Developers

Azure API Management

• azure.microsoft.com: Azure API Management
• jmfloreszazo.com: Monetizar un API, con Azure API Management

Azure Container Apps

• Azure Container Apps Build and deploy modern apps and microservices using serverless containers
• techcommunity.microsoft.com: Introducing Azure Container Apps: a serverless container service for running modern apps at scale

Azure Container Instances

• azure.microsoft.com: Azure Container Instances Launch containers with hypervisor isolation
• unit42.paloaltonetworks.com: Finding Azurescape – Cross-Account Container Takeover in Azure Container Instances

Windows Server Container Host

• thomasmaurer.ch: How to Install a Windows Server Container Host

Disaster Recovery

• docs.microsoft.com: Using Policy with Azure Site Recovery Disaster Recovery with Azure Policy. Learn how to enable Policy Support to protect your VMs using Azure Site Recovery.

Azure Samples (Boilerplates)

• github.com/Azure-Samples 🌟 Microsoft Azure code samples and examples in .NET, Java, Python, Node.js, PHP and Ruby
  • Azure-Samples/azure-pipelines-variable-templates This sample Python Web app demonstrates the use of variable template files in Azure Pipelines.
  • Azure-Samples/jmeter-aci-terraform Scalable cloud load/stress testing pipeline solution with Apache JMeter and Terraform to dynamically provision and destroy the required infrastructure on Azure.
  • Azure-Samples/azure-pipelines-remote-tasks
  • Azure-Samples/jenkins-terraform-azure-example
  • etc
• github.com/azure-devops
• Azure Quickstart Templates 🌟 Deploy Azure resources through the Azure Resource Manager with community contributed templates to get more done. Deploy, learn, fork and contribute back.
  • https://github.com/Azure/azure-quickstart-templates
• microsoft/azure-pipelines-yaml: Azure Pipelines YAML 🌟 YAML templates, samples, and community interaction for designing Azure Pipelines.
  • microsoft/azure-pipelines-yaml: maven.yml

Office 365

• o365reports.com: Office 365 Reports

Images

Click to expand!

Videos

Click to expand!

Tweets

Click to expand!

Cloud Networking concepts you need to know before getting into being a good architect

⏬Here are the useful link 🧰

Thread🧵👇

— Satyen Kumar (@SatyenKumar) March 11, 2022