SlideShare a Scribd company logo

CC -Unit3.pptx

Download as PPTX, PDF
R
Revathiparamanathan

Azure Lecture PPT

Engineering
1 of 53
AZURE ARCHITECT TECHNOLOGIES • Azure Files -Azure Blob storage-Azure Resource Manager template (JSON and Bicep)-Virtual Networking- Azure AD Identity Protection- Azure AD Connect
Azure Files • Azure files are fully managed File shares in the Cloud. • When you have a local network, you can attach a NAS box so that all users in a network can access the files. • Inside a cloud service, unfortunately, this is absent. This need is fulfilled by Azure File Service.
Key features of Azure Files • Replace On Premise file servers or supplement with Azure File sync • Lift and shift applications. • Shared Application settings. • A Cloud Application can write logs, metrics, crash dumps on Azure files.
Azure File Storage Pros and Cons Pros • Fully managed service • Shared access • Redundancy • Easy automation • Easy APIs
Azure File Storage Pros and Cons Cons • Security and access • Backup • Performance • Size limitations • File system limitations
Azure File Sync • Azure File Sync enables centralizing your organization's file shares in Azure Files, while keeping the flexibility, performance, and compatibility of a Windows file server. • While some users may opt to keep a full copy of their data locally, Azure File Sync can turn Windows Server into a quick cache of your Azure file shares.
Common reasons customers use Azure File Sync • Centralize file share backups in Azure to optimize cost and manageability • Free up on-premises storage capacity to avoid buying more storage • Maintain on-premises file share performance for frequently used files • Migrate on-premises file shares to Azure Files • Provide low latency, multi-site access for file shares
Key Features of Azure File Sync • Company with multiple offices having a need to share files with all offices. • Branch Office backup of files. In real world, the files of branch offices rarely get backed up. • Disaster Recovery Solution in case File Server goes down. • New Branch Office setup. You can setup new Server and connect to same Azure Storage. • Move old data automatically to Azure. This is Cloud Tiering. The non-used data will move to Azure. The files will have greyed icons with an offline O file attribute to tell user that this file is only on Azure.
Azure blob storage • Azure Blob storage is a sub-service or sub-resource underneath Azure storage accounts. • Blob storage is the only object-based storage solution (data storage architecture for handling large amounts of unstructured data) among the storage sub-services found inside our storage accounts.
Azure Blob Storage Architecture
Azure Blob Storage Architecture  Azure blob storage account: This is our blob service inside of our storage account, and this is that sub-service that gives us that object-based storage solution.  Blob containers: these are the actual instances of the blob service that we create, where we can store our blobs. We can think of these containers as our buckets or our storage bins, where we can drop off our actual blobs.  Blob: They are the data that we're storing inside these containers like the video files, the text files, the log files, and the virtual hard disks.
Types of Azure Blob Storage 1. Block blobs 2. Append blobs 3. Page blobs
Block Blobs • Block Blobs are optimized for sequential accessing of the data • These are going to store things like images or videos that are best suited for streaming. • The process for uploading the file is to break the file into smaller blocks and then upload the blocks concurrently. • Once the blocks have been uploaded to the storage account, they are committed into a single file. • That “commitment” is basically the creation of the metadata surrounding the ordering and location of the blocks that belong to this particular file.
Append blobs • Block blobs are used for streaming and storing; append blobs fulfil the same task with the addition that they are optimized for append operations. • Updating an append blob can only be done by adding a new block to the end. • An append blob's field of application consists of logging, in which data has to be written to the end of the blob. • These are going to best for append operations like uploading log files.
Page blobs • Page Blobs are optimized so that the data in the blob can be accessed randomly. • This is in contrast to reading and writing data sequentially from start to finish (as is found in Block Blobs) • There are some limitations on the size of a Page Blob. They can be up to 1 TB in size, divided up into 512-bytes on each page. • This category of blobs is going to be best for random access memory for read/write operations for virtual machine hard disks. • Odds are pretty good that if you use some of the more advanced Windows Azure features, you’ll use Page Blobs (that use is indirect) • For example, the persisted disks that are part of Windows Azure Virtual Machines use Page Blobs to store both the data and operating system drives
Blob access control/Container access levels • We have 3 container access levels:  Private: In this case, we do not provide anonymous access to any of our blob resources.  Blob: This provides anonymous access to all the blobs inside of a container, but not the container data itself.  Container access level: This is the most open access level category and provides anonymous access to a container and all the blobs it contains within it.
Azure Resource Manager template (JSON and Bicep) • ARM stands for Azure Resource Manager, which is Microsoft’s deployment and management service for Azure. • Can use the ARM management layer for creating, updating, and deleting Azure resources. • ARM templates are a form of infrastructure as code, a concept where you define the infrastructure you need to be deployed.
Why choose ARM templates? • Declarative syntax • Repeatable results • Orchestration • Modular files • Create any Azure resource • Extensibility • Testing
Why choose ARM templates? • Preview changes • Built-in validation • Tracked deployments • Policy as code • Deployment Blueprints • CI/CD integration • Exportable code • Authoring tools
Template format { "$schema": "https://schema.management.azure.com/schemas/2019-04- 01/deploymentTemplate.json#", "contentVersion": "", "apiProfile": "", "parameters": { }, "variables": { }, "functions": [ ], "resources": [ ], "outputs": { } }
Template format
Template format
Template format
Parameters "parameters": { "<parameter-name>" : { "type" : "<type-of-parameter-value>", "defaultValue": "<default-value-of-parameter>", "allowedValues": [ "<array-of-allowed-values>" ], "minValue": <minimum-value-for-int>, "maxValue": <maximum-value-for-int>, "minLength": <minimum-length-for-string-or-array>, "maxLength": <maximum-length-for-string-or-array-parameters>, "metadata": { "description": "<description-of-the parameter>" } } }
Parameters "parameters": { "<parameter-name>" : { "type" : "<type-of-parameter-value>", "defaultValue": "<default-value-of-parameter>", "allowedValues": [ "<array-of-allowed-values>" ], "minValue": <minimum-value-for-int>, "maxValue": <maximum-value-for-int>, "minLength": <minimum-length-for-string-or-array>, "maxLength": <maximum-length-for-string-or-array-parameters>, "metadata": { "description": "<description-of-the parameter>" } } }
Variables "variables": { "<variable-name>": "<variable-value>", "<variable-name>": { <variable-complex-type-value> }, "<variable-object-name>": { "copy": [ { "name": "<name-of-array-property>", "count": <number-of-iterations>, "input": <object-or-value-to-repeat> } ] }, "copy": [ { "name": "<variable-array-name>", "count": <number-of-iterations>, "input": <object-or-value-to-repeat> } ] }
Functions When defining a user function, there are some restrictions: • The function can't access variables. • The function can only use parameters that are defined in the function. When you use the parameters function within a user-defined function, you're restricted to the parameters for that function. • The function can't call other user-defined functions. • The function can't use the reference function. • Parameters for the function can't have default values.
Functions "functions": [ { "namespace": "<namespace-for-functions>", "members": { "<function-name>": { "parameters": [ { "name": "<parameter-name>", "type": "<type-of-parameter-value>" } ], "output": { "type": "<type-of-output-value>", "value": "<function-return-value>" } } } }],
Functions
Outputs "outputs": { "<output-name>": { "condition": "<boolean-value-whether-to-output-value>", "type": "<type-of-output-value>", "value": "<output-value-expression>", "copy": { "count": <number-of-iterations>, "input": <values-for-the-variable> } }}
Azure AD Identity Protection Identity Protection allows organizations to accomplish three key tasks: • Automate the detection and remediation of identity-based risks. • Investigate risks using data in the portal. • Export risk detection data to other tools.
Detect risk Identity Protection detects risks of many types, including: •Anonymous IP address use •Atypical travel •Malware linked IP address •Unfamiliar sign-in properties •Leaked credentials •Password spray •and more...
Remedy The risk signals can trigger remediation efforts such as requiring: • perform multifactor authentication, • reset their password using self-service password reset, • or block access until an administrator takes action.
Investigate risk Identity Protection provides organizations with three reports they can use to investigate identity risks in their environment. These reports are the • risky users, • risky sign-ins, and • risk detections.
Navigating the reports Each report launches with a list of all detections for the period shown at the top of the report. Each report allows for the addition or removal of columns based on administrator preference. Administrators can choose to download the data in .CSV or .JSON format. The three reports are found in the Azure portal > Azure Active Directory > Security.
Risky users Each report launches with a list of all detections for the period shown at the top of the report. Each report allows for the addition or removal of columns based on administrator preference. Administrators can choose to download the data in .CSV or .JSON format. The three reports are found in the Azure portal > Azure Active Directory > Security.
Risky users With the information provided by the risky users report, administrators can find: • Which users are at risk, have had risk remediated, or have had risk dismissed? • Details about detections • History of all risky sign-ins • Risk history
Risky users Administrators can then choose to take action on these events. Administrators can choose to: • Reset the user password • Confirm user compromise • Dismiss user risk • Block user from signing in • Investigate further using Azure ATP
Risky sign-ins
Risky sign-ins The risky sign-ins report contains filterable data for up to the past 30 days (one month).With the information provided by the risky sign-ins report, administrators can find: • Which sign-ins are classified as at risk, confirmed compromised, confirmed safe, dismissed, or remediated. • Real-time and aggregate risk levels associated with sign-in attempts. • Detection types triggered • Conditional Access policies applied • MFA details • Device information • Application information • Location information Administrators can then choose to take action on these events. Administrators can choose to: • Confirm sign-in compromise • Confirm sign-in safe
Risk detections
Risk detections The risk detections report contains filterable data for up to the past 90 days (three months). With the information provided by the risk detections report, administrators can find: • Information about each risk detection including type. • Other risks triggered at the same time • Sign-in attempt location • Link out to more detail from Microsoft Defender for Cloud Apps. Administrators can then choose to return to the user's risk or sign-ins report to take actions based on information gathered.
Export risk data • Azure AD stores reports and security signals for a defined period of time. When it comes to risk information, that may not be long enough. • Organizations can choose to store data for longer periods by changing diagnostic settings in Azure AD. They can choose to send data to a Log Analytics workspace, archive data to a storage account, stream data to Event Hubs, or send data to a partner solution.
Azure AD Connect Azure AD Connect (now referred to also as Azure AD Connect “Classic”) is a Microsoft brand that is mostly about presenting on-premises Active Directory and Azure Active Directory in a seamless way, in particular giving users the experience of single sign-on, or at least same sign on. It includes a number of technologies: • Azure AD Connect Sync • Azure AD Connect Health • ADFS (Active Directory Federation Services) • The PHS/PTA/SSSO Provisioning Connector
Azure AD Features Azure AD Connect provides the following features: • Password hash synchronization - A sign-in method that synchronizes a hash of a users on-premises AD password with Azure AD. • Pass-through authentication - A sign-in method that allows users to use the same password on-premises and in the cloud, but doesn't require the additional infrastructure of a federated environment. • Federation integration - Federation is an optional part of Azure AD Connect and can be used to configure a hybrid environment using an on-premises AD FS infrastructure. It also provides AD FS management capabilities such as certificate renewal and additional AD FS server deployments.
Azure AD Features Azure AD Connect provides the following features: • Synchronization - Responsible for creating users, groups, and other objects. As well as, making sure identity information for your on-premises users and groups is matching the cloud. This synchronization also includes password hashes. • Health Monitoring - Azure AD Connect Health can provide robust monitoring and provide a central location in the Azure portal to view this activity.
Azure AD Architecture
Why use Azure AD Connect? Users and organizations can take advantage of: • Users can use a single identity to access on-premises applications and cloud services such as Microsoft 365. • Single tool to provide an easy deployment experience for synchronization and sign-in. • Provides the newest capabilities for your scenarios. Azure AD Connect replaces older versions of identity integration tools such as DirSync and Azure AD Sync.
Benefits

Recommended

Bezlio - Server Administration and Security
Bezlio - Server Administration and SecurityBezlio - Server Administration and Security
Bezlio - Server Administration and SecurityEli Remington
 
UNIT -III.docx
UNIT -III.docxUNIT -III.docx
UNIT -III.docxRevathiparamanathan
 
Mini training - Introduction to Microsoft Azure Storage
Mini training - Introduction to Microsoft Azure StorageMini training - Introduction to Microsoft Azure Storage
Mini training - Introduction to Microsoft Azure StorageBetclic Everest Group Tech Team
 
Microsoft Azure Veri Servisleri
Microsoft Azure Veri ServisleriMicrosoft Azure Veri Servisleri
Microsoft Azure Veri ServisleriÖnder Değer
 
Azure data platform overview
Azure data platform overviewAzure data platform overview
Azure data platform overviewAlessandro Melchiori
 
Ahmedabad- Global Azure bootcamp- Azure Storage Services- Global Azure Bootca...
Ahmedabad- Global Azure bootcamp- Azure Storage Services- Global Azure Bootca...Ahmedabad- Global Azure bootcamp- Azure Storage Services- Global Azure Bootca...
Ahmedabad- Global Azure bootcamp- Azure Storage Services- Global Azure Bootca...Jalpesh Vadgama
 
Amazon elastic block store (ebs) and
Amazon elastic block store (ebs) andAmazon elastic block store (ebs) and
Amazon elastic block store (ebs) andlurdhu agnes
 
Azure from scratch part 3 By Girish Kalamati
Azure from scratch part 3 By Girish KalamatiAzure from scratch part 3 By Girish Kalamati
Azure from scratch part 3 By Girish KalamatiGirish Kalamati
 

Recommended

Bezlio - Server Administration and Security
Bezlio - Server Administration and SecurityBezlio - Server Administration and Security
Bezlio - Server Administration and SecurityEli Remington
 
UNIT -III.docx
UNIT -III.docxUNIT -III.docx
UNIT -III.docxRevathiparamanathan
 
Mini training - Introduction to Microsoft Azure Storage
Mini training - Introduction to Microsoft Azure StorageMini training - Introduction to Microsoft Azure Storage
Mini training - Introduction to Microsoft Azure StorageBetclic Everest Group Tech Team
 
Microsoft Azure Veri Servisleri
Microsoft Azure Veri ServisleriMicrosoft Azure Veri Servisleri
Microsoft Azure Veri ServisleriÖnder Değer
 
Azure data platform overview
Azure data platform overviewAzure data platform overview
Azure data platform overviewAlessandro Melchiori
 
Ahmedabad- Global Azure bootcamp- Azure Storage Services- Global Azure Bootca...
Ahmedabad- Global Azure bootcamp- Azure Storage Services- Global Azure Bootca...Ahmedabad- Global Azure bootcamp- Azure Storage Services- Global Azure Bootca...
Ahmedabad- Global Azure bootcamp- Azure Storage Services- Global Azure Bootca...Jalpesh Vadgama
 
Amazon elastic block store (ebs) and
Amazon elastic block store (ebs) andAmazon elastic block store (ebs) and
Amazon elastic block store (ebs) andlurdhu agnes
 
Azure from scratch part 3 By Girish Kalamati
Azure from scratch part 3 By Girish KalamatiAzure from scratch part 3 By Girish Kalamati
Azure from scratch part 3 By Girish KalamatiGirish Kalamati
 
Muleesbcomponents1 160625154208
Muleesbcomponents1 160625154208Muleesbcomponents1 160625154208
Muleesbcomponents1 160625154208ppts123456
 
MongoDB.local Austin 2018: Solving Your Backup Needs Using MongoDB Ops Manage...
MongoDB.local Austin 2018: Solving Your Backup Needs Using MongoDB Ops Manage...MongoDB.local Austin 2018: Solving Your Backup Needs Using MongoDB Ops Manage...
MongoDB.local Austin 2018: Solving Your Backup Needs Using MongoDB Ops Manage...MongoDB
 
MongoDB.local DC 2018: Solving Your Backup Needs Using MongoDB Ops Manager, C...
MongoDB.local DC 2018: Solving Your Backup Needs Using MongoDB Ops Manager, C...MongoDB.local DC 2018: Solving Your Backup Needs Using MongoDB Ops Manager, C...
MongoDB.local DC 2018: Solving Your Backup Needs Using MongoDB Ops Manager, C...MongoDB
 
Scalability in cloud applications
Scalability in cloud applicationsScalability in cloud applications
Scalability in cloud applicationsRadu Vunvulea
 
Accesso ai dati con Azure Data Platform
Accesso ai dati con Azure Data PlatformAccesso ai dati con Azure Data Platform
Accesso ai dati con Azure Data PlatformLuca Di Fino
 
Solving Your Backup Needs Using MongoDB Ops Manager, Cloud Manager and Atlas
Solving Your Backup Needs Using MongoDB Ops Manager, Cloud Manager and AtlasSolving Your Backup Needs Using MongoDB Ops Manager, Cloud Manager and Atlas
Solving Your Backup Needs Using MongoDB Ops Manager, Cloud Manager and AtlasMongoDB
 
04 Azure IAAS 101
04 Azure IAAS 10104 Azure IAAS 101
04 Azure IAAS 101Herman Keijzer
 
Devday 2014 using_afs_in_your_cloud_app
Devday 2014 using_afs_in_your_cloud_appDevday 2014 using_afs_in_your_cloud_app
Devday 2014 using_afs_in_your_cloud_appMihail Mateev
 
Festive Tech Calendar 2021
Festive Tech Calendar 2021Festive Tech Calendar 2021
Festive Tech Calendar 2021Callon Campbell
 
MongoDB World 2018: Solving Your Backup Needs Using MongoDB Ops Manager, Clou...
MongoDB World 2018: Solving Your Backup Needs Using MongoDB Ops Manager, Clou...MongoDB World 2018: Solving Your Backup Needs Using MongoDB Ops Manager, Clou...
MongoDB World 2018: Solving Your Backup Needs Using MongoDB Ops Manager, Clou...MongoDB
 
Building services using windows azure
Building services using windows azureBuilding services using windows azure
Building services using windows azureSuliman AlBattat
 
Asp .net folders and web.config
Asp .net folders and web.configAsp .net folders and web.config
Asp .net folders and web.configbaabtra.com - No. 1 supplier of quality freshers
 
What's new in the world of the Autonomous Database in 2023
What's new in the world of the Autonomous Database in 2023What's new in the world of the Autonomous Database in 2023
What's new in the world of the Autonomous Database in 2023Sandesh Rao
 
What's new in Autonomous Database - OCYatra2023 - Sandesh Rao.pdf
What's new in Autonomous Database - OCYatra2023 - Sandesh Rao.pdfWhat's new in Autonomous Database - OCYatra2023 - Sandesh Rao.pdf
What's new in Autonomous Database - OCYatra2023 - Sandesh Rao.pdfSandesh Rao
 
Service-Oriented Design and Implement with Rails3
Service-Oriented Design and Implement with Rails3Service-Oriented Design and Implement with Rails3
Service-Oriented Design and Implement with Rails3Wen-Tien Chang
 
Windows azure camp - Kolkata
Windows azure camp - KolkataWindows azure camp - Kolkata
Windows azure camp - KolkataAbhijit Jana
 
May 2018 Azure Need to Know Webinar
May 2018 Azure Need to Know WebinarMay 2018 Azure Need to Know Webinar
May 2018 Azure Need to Know WebinarRobert Crane
 
Solving your Backup Needs - Ben Cefalo mdbe18
Solving your Backup Needs - Ben Cefalo mdbe18Solving your Backup Needs - Ben Cefalo mdbe18
Solving your Backup Needs - Ben Cefalo mdbe18MongoDB
 
Alfresco Tech Talk Live (Episode 70): Customizing Alfresco Share 4.2
Alfresco Tech Talk Live (Episode 70): Customizing Alfresco Share 4.2Alfresco Tech Talk Live (Episode 70): Customizing Alfresco Share 4.2
Alfresco Tech Talk Live (Episode 70): Customizing Alfresco Share 4.2Richard Esplin
 
Mobile services on windows azure (part1)
Mobile services on windows azure (part1)Mobile services on windows azure (part1)
Mobile services on windows azure (part1)Radu Vunvulea
 
UNIT 1 NOTES.docx
UNIT 1 NOTES.docxUNIT 1 NOTES.docx
UNIT 1 NOTES.docxRevathiparamanathan
 
Unit 3,4.docx
Unit 3,4.docxUnit 3,4.docx
Unit 3,4.docxRevathiparamanathan
 

More Related Content

Similar to CC -Unit3.pptx

Muleesbcomponents1 160625154208
Muleesbcomponents1 160625154208Muleesbcomponents1 160625154208
Muleesbcomponents1 160625154208ppts123456
 
MongoDB.local Austin 2018: Solving Your Backup Needs Using MongoDB Ops Manage...
MongoDB.local Austin 2018: Solving Your Backup Needs Using MongoDB Ops Manage...MongoDB.local Austin 2018: Solving Your Backup Needs Using MongoDB Ops Manage...
MongoDB.local Austin 2018: Solving Your Backup Needs Using MongoDB Ops Manage...MongoDB
 
MongoDB.local DC 2018: Solving Your Backup Needs Using MongoDB Ops Manager, C...
MongoDB.local DC 2018: Solving Your Backup Needs Using MongoDB Ops Manager, C...MongoDB.local DC 2018: Solving Your Backup Needs Using MongoDB Ops Manager, C...
MongoDB.local DC 2018: Solving Your Backup Needs Using MongoDB Ops Manager, C...MongoDB
 
Scalability in cloud applications
Scalability in cloud applicationsScalability in cloud applications
Scalability in cloud applicationsRadu Vunvulea
 
Accesso ai dati con Azure Data Platform
Accesso ai dati con Azure Data PlatformAccesso ai dati con Azure Data Platform
Accesso ai dati con Azure Data PlatformLuca Di Fino
 
Solving Your Backup Needs Using MongoDB Ops Manager, Cloud Manager and Atlas
Solving Your Backup Needs Using MongoDB Ops Manager, Cloud Manager and AtlasSolving Your Backup Needs Using MongoDB Ops Manager, Cloud Manager and Atlas
Solving Your Backup Needs Using MongoDB Ops Manager, Cloud Manager and AtlasMongoDB
 
Devday 2014 using_afs_in_your_cloud_app
Devday 2014 using_afs_in_your_cloud_appDevday 2014 using_afs_in_your_cloud_app
Devday 2014 using_afs_in_your_cloud_appMihail Mateev
 
Festive Tech Calendar 2021
Festive Tech Calendar 2021Festive Tech Calendar 2021
Festive Tech Calendar 2021Callon Campbell
 
MongoDB World 2018: Solving Your Backup Needs Using MongoDB Ops Manager, Clou...
MongoDB World 2018: Solving Your Backup Needs Using MongoDB Ops Manager, Clou...MongoDB World 2018: Solving Your Backup Needs Using MongoDB Ops Manager, Clou...
MongoDB World 2018: Solving Your Backup Needs Using MongoDB Ops Manager, Clou...MongoDB
 
Building services using windows azure
Building services using windows azureBuilding services using windows azure
Building services using windows azureSuliman AlBattat
 
What's new in the world of the Autonomous Database in 2023
What's new in the world of the Autonomous Database in 2023What's new in the world of the Autonomous Database in 2023
What's new in the world of the Autonomous Database in 2023Sandesh Rao
 
What's new in Autonomous Database - OCYatra2023 - Sandesh Rao.pdf
What's new in Autonomous Database - OCYatra2023 - Sandesh Rao.pdfWhat's new in Autonomous Database - OCYatra2023 - Sandesh Rao.pdf
What's new in Autonomous Database - OCYatra2023 - Sandesh Rao.pdfSandesh Rao
 
Service-Oriented Design and Implement with Rails3
Service-Oriented Design and Implement with Rails3Service-Oriented Design and Implement with Rails3
Service-Oriented Design and Implement with Rails3Wen-Tien Chang
 
Windows azure camp - Kolkata
Windows azure camp - KolkataWindows azure camp - Kolkata
Windows azure camp - KolkataAbhijit Jana
 
May 2018 Azure Need to Know Webinar
May 2018 Azure Need to Know WebinarMay 2018 Azure Need to Know Webinar
May 2018 Azure Need to Know WebinarRobert Crane
 
Solving your Backup Needs - Ben Cefalo mdbe18
Solving your Backup Needs - Ben Cefalo mdbe18Solving your Backup Needs - Ben Cefalo mdbe18
Solving your Backup Needs - Ben Cefalo mdbe18MongoDB
 
Alfresco Tech Talk Live (Episode 70): Customizing Alfresco Share 4.2
Alfresco Tech Talk Live (Episode 70): Customizing Alfresco Share 4.2Alfresco Tech Talk Live (Episode 70): Customizing Alfresco Share 4.2
Alfresco Tech Talk Live (Episode 70): Customizing Alfresco Share 4.2Richard Esplin
 
Mobile services on windows azure (part1)
Mobile services on windows azure (part1)Mobile services on windows azure (part1)
Mobile services on windows azure (part1)Radu Vunvulea
 

Similar to CC -Unit3.pptx (20)

Muleesbcomponents1 160625154208
Muleesbcomponents1 160625154208Muleesbcomponents1 160625154208
Muleesbcomponents1 160625154208
 
MongoDB.local Austin 2018: Solving Your Backup Needs Using MongoDB Ops Manage...
MongoDB.local Austin 2018: Solving Your Backup Needs Using MongoDB Ops Manage...MongoDB.local Austin 2018: Solving Your Backup Needs Using MongoDB Ops Manage...
MongoDB.local Austin 2018: Solving Your Backup Needs Using MongoDB Ops Manage...
 
MongoDB.local DC 2018: Solving Your Backup Needs Using MongoDB Ops Manager, C...
MongoDB.local DC 2018: Solving Your Backup Needs Using MongoDB Ops Manager, C...MongoDB.local DC 2018: Solving Your Backup Needs Using MongoDB Ops Manager, C...
MongoDB.local DC 2018: Solving Your Backup Needs Using MongoDB Ops Manager, C...
 
Scalability in cloud applications
Scalability in cloud applicationsScalability in cloud applications
Scalability in cloud applications
 
Accesso ai dati con Azure Data Platform
Accesso ai dati con Azure Data PlatformAccesso ai dati con Azure Data Platform
Accesso ai dati con Azure Data Platform
 
Solving Your Backup Needs Using MongoDB Ops Manager, Cloud Manager and Atlas
Solving Your Backup Needs Using MongoDB Ops Manager, Cloud Manager and AtlasSolving Your Backup Needs Using MongoDB Ops Manager, Cloud Manager and Atlas
Solving Your Backup Needs Using MongoDB Ops Manager, Cloud Manager and Atlas
 
04 Azure IAAS 101
04 Azure IAAS 10104 Azure IAAS 101
04 Azure IAAS 101
 
Devday 2014 using_afs_in_your_cloud_app
Devday 2014 using_afs_in_your_cloud_appDevday 2014 using_afs_in_your_cloud_app
Devday 2014 using_afs_in_your_cloud_app
 
Festive Tech Calendar 2021
Festive Tech Calendar 2021Festive Tech Calendar 2021
Festive Tech Calendar 2021
 
MongoDB World 2018: Solving Your Backup Needs Using MongoDB Ops Manager, Clou...
MongoDB World 2018: Solving Your Backup Needs Using MongoDB Ops Manager, Clou...MongoDB World 2018: Solving Your Backup Needs Using MongoDB Ops Manager, Clou...
MongoDB World 2018: Solving Your Backup Needs Using MongoDB Ops Manager, Clou...
 
Building services using windows azure
Building services using windows azureBuilding services using windows azure
Building services using windows azure
 
Asp .net folders and web.config
Asp .net folders and web.configAsp .net folders and web.config
Asp .net folders and web.config
 
What's new in the world of the Autonomous Database in 2023
What's new in the world of the Autonomous Database in 2023What's new in the world of the Autonomous Database in 2023
What's new in the world of the Autonomous Database in 2023
 
What's new in Autonomous Database - OCYatra2023 - Sandesh Rao.pdf
What's new in Autonomous Database - OCYatra2023 - Sandesh Rao.pdfWhat's new in Autonomous Database - OCYatra2023 - Sandesh Rao.pdf
What's new in Autonomous Database - OCYatra2023 - Sandesh Rao.pdf
 
Service-Oriented Design and Implement with Rails3
Service-Oriented Design and Implement with Rails3Service-Oriented Design and Implement with Rails3
Service-Oriented Design and Implement with Rails3
 
Windows azure camp - Kolkata
Windows azure camp - KolkataWindows azure camp - Kolkata
Windows azure camp - Kolkata
 
May 2018 Azure Need to Know Webinar
May 2018 Azure Need to Know WebinarMay 2018 Azure Need to Know Webinar
May 2018 Azure Need to Know Webinar
 
Solving your Backup Needs - Ben Cefalo mdbe18
Solving your Backup Needs - Ben Cefalo mdbe18Solving your Backup Needs - Ben Cefalo mdbe18
Solving your Backup Needs - Ben Cefalo mdbe18
 
Alfresco Tech Talk Live (Episode 70): Customizing Alfresco Share 4.2
Alfresco Tech Talk Live (Episode 70): Customizing Alfresco Share 4.2Alfresco Tech Talk Live (Episode 70): Customizing Alfresco Share 4.2
Alfresco Tech Talk Live (Episode 70): Customizing Alfresco Share 4.2
 
Mobile services on windows azure (part1)
Mobile services on windows azure (part1)Mobile services on windows azure (part1)
Mobile services on windows azure (part1)
 

More from Revathiparamanathan

More from Revathiparamanathan (19)

UNIT 1 NOTES.docx
UNIT 1 NOTES.docxUNIT 1 NOTES.docx
UNIT 1 NOTES.docx
 
Unit 3,4.docx
Unit 3,4.docxUnit 3,4.docx
Unit 3,4.docx
 
UNIT II.docx
UNIT II.docxUNIT II.docx
UNIT II.docx
 
UNIT V.docx
UNIT V.docxUNIT V.docx
UNIT V.docx
 
COMPILER DESIGN.docx
COMPILER DESIGN.docxCOMPILER DESIGN.docx
COMPILER DESIGN.docx
 
UNIT -IV.docx
UNIT -IV.docxUNIT -IV.docx
UNIT -IV.docx
 
UNIT - II.docx
UNIT - II.docxUNIT - II.docx
UNIT - II.docx
 
UNIT -V.docx
UNIT -V.docxUNIT -V.docx
UNIT -V.docx
 
UNIT - I.docx
UNIT - I.docxUNIT - I.docx
UNIT - I.docx
 
CC -Unit4.pptx
CC -Unit4.pptxCC -Unit4.pptx
CC -Unit4.pptx
 
CC.pptx
CC.pptxCC.pptx
CC.pptx
 
Unit 4 notes.pdf
Unit 4 notes.pdfUnit 4 notes.pdf
Unit 4 notes.pdf
 
Unit 3 notes.pdf
Unit 3 notes.pdfUnit 3 notes.pdf
Unit 3 notes.pdf
 
Unit 1 notes.pdf
Unit 1 notes.pdfUnit 1 notes.pdf
Unit 1 notes.pdf
 
Unit 2 notes.pdf
Unit 2 notes.pdfUnit 2 notes.pdf
Unit 2 notes.pdf
 
Unit 5 notes.pdf
Unit 5 notes.pdfUnit 5 notes.pdf
Unit 5 notes.pdf
 
CC.pptx
CC.pptxCC.pptx
CC.pptx
 
Unit-4 Day1.pptx
Unit-4 Day1.pptxUnit-4 Day1.pptx
Unit-4 Day1.pptx
 
Scala Introduction.pptx
Scala Introduction.pptxScala Introduction.pptx
Scala Introduction.pptx
 

Recently uploaded

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXssuser89054b
 
A CASE STUDY ON CERAMIC INDUSTRY OF BANGLADESH.pptx
A CASE STUDY ON CERAMIC INDUSTRY OF BANGLADESH.pptxA CASE STUDY ON CERAMIC INDUSTRY OF BANGLADESH.pptx
A CASE STUDY ON CERAMIC INDUSTRY OF BANGLADESH.pptxmaisarahman1
 
Orlando’s Arnold Palmer Hospital Layout Strategy-1.pptx
Orlando’s Arnold Palmer Hospital Layout Strategy-1.pptxOrlando’s Arnold Palmer Hospital Layout Strategy-1.pptx
Orlando’s Arnold Palmer Hospital Layout Strategy-1.pptxMuhammadAsimMuhammad6
 
Tamil Call Girls Bhayandar WhatsApp +91-9930687706, Best Service
Tamil Call Girls Bhayandar WhatsApp +91-9930687706, Best ServiceTamil Call Girls Bhayandar WhatsApp +91-9930687706, Best Service
Tamil Call Girls Bhayandar WhatsApp +91-9930687706, Best Servicemeghakumariji156
 
Design For Accessibility: Getting it right from the start
Design For Accessibility: Getting it right from the startDesign For Accessibility: Getting it right from the start
Design For Accessibility: Getting it right from the startQuintin Balsdon
 
Introduction to Data Visualization,Matplotlib.pdf
Introduction to Data Visualization,Matplotlib.pdfIntroduction to Data Visualization,Matplotlib.pdf
Introduction to Data Visualization,Matplotlib.pdfsumitt6_25730773
 
AIRCANVAS[1].pdf mini project for btech students
AIRCANVAS[1].pdf mini project for btech studentsAIRCANVAS[1].pdf mini project for btech students
AIRCANVAS[1].pdf mini project for btech studentsvanyagupta248
 
HOA1&2 - Module 3 - PREHISTORCI ARCHITECTURE OF KERALA.pptx
HOA1&2 - Module 3 - PREHISTORCI ARCHITECTURE OF KERALA.pptxHOA1&2 - Module 3 - PREHISTORCI ARCHITECTURE OF KERALA.pptx
HOA1&2 - Module 3 - PREHISTORCI ARCHITECTURE OF KERALA.pptxSCMS School of Architecture
 
NO1 Top No1 Amil Baba In Azad Kashmir, Kashmir Black Magic Specialist Expert ...
NO1 Top No1 Amil Baba In Azad Kashmir, Kashmir Black Magic Specialist Expert ...NO1 Top No1 Amil Baba In Azad Kashmir, Kashmir Black Magic Specialist Expert ...
NO1 Top No1 Amil Baba In Azad Kashmir, Kashmir Black Magic Specialist Expert ...Amil baba
 
DC MACHINE-Motoring and generation, Armature circuit equation
DC MACHINE-Motoring and generation, Armature circuit equationDC MACHINE-Motoring and generation, Armature circuit equation
DC MACHINE-Motoring and generation, Armature circuit equationBhangaleSonal
 
Digital Communication Essentials: DPCM, DM, and ADM .pptx
Digital Communication Essentials: DPCM, DM, and ADM .pptxDigital Communication Essentials: DPCM, DM, and ADM .pptx
Digital Communication Essentials: DPCM, DM, and ADM .pptxpritamlangde
 
scipt v1.pptxcxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx...
scipt v1.pptxcxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx...scipt v1.pptxcxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx...
scipt v1.pptxcxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx...HenryBriggs2
 
Online food ordering system project report.pdf
Online food ordering system project report.pdfOnline food ordering system project report.pdf
Online food ordering system project report.pdfKamal Acharya
 
Introduction to Serverless with AWS Lambda
Introduction to Serverless with AWS LambdaIntroduction to Serverless with AWS Lambda
Introduction to Serverless with AWS LambdaOmar Fathy
 
Thermal Engineering-R & A / C - unit - V
Thermal Engineering-R & A / C - unit - VThermal Engineering-R & A / C - unit - V
Thermal Engineering-R & A / C - unit - VDineshKumar4165
 
Bhubaneswar🌹Call Girls Bhubaneswar ❤Komal 9777949614 💟 Full Trusted CALL GIRL...
Bhubaneswar🌹Call Girls Bhubaneswar ❤Komal 9777949614 💟 Full Trusted CALL GIRL...Bhubaneswar🌹Call Girls Bhubaneswar ❤Komal 9777949614 💟 Full Trusted CALL GIRL...
Bhubaneswar🌹Call Girls Bhubaneswar ❤Komal 9777949614 💟 Full Trusted CALL GIRL...Call Girls Mumbai
 
School management system project Report.pdf
School management system project Report.pdfSchool management system project Report.pdf
School management system project Report.pdfKamal Acharya
 
A Study of Urban Area Plan for Pabna Municipality
A Study of Urban Area Plan for Pabna MunicipalityA Study of Urban Area Plan for Pabna Municipality
A Study of Urban Area Plan for Pabna MunicipalityMorshed Ahmed Rahath
 
Double Revolving field theory-how the rotor develops torque
Double Revolving field theory-how the rotor develops torqueDouble Revolving field theory-how the rotor develops torque
Double Revolving field theory-how the rotor develops torqueBhangaleSonal
 

Recently uploaded (20)

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
 
A CASE STUDY ON CERAMIC INDUSTRY OF BANGLADESH.pptx
A CASE STUDY ON CERAMIC INDUSTRY OF BANGLADESH.pptxA CASE STUDY ON CERAMIC INDUSTRY OF BANGLADESH.pptx
A CASE STUDY ON CERAMIC INDUSTRY OF BANGLADESH.pptx
 
Integrated Test Rig For HTFE-25 - Neometrix
Integrated Test Rig For HTFE-25 - NeometrixIntegrated Test Rig For HTFE-25 - Neometrix
Integrated Test Rig For HTFE-25 - Neometrix
 
Orlando’s Arnold Palmer Hospital Layout Strategy-1.pptx
Orlando’s Arnold Palmer Hospital Layout Strategy-1.pptxOrlando’s Arnold Palmer Hospital Layout Strategy-1.pptx
Orlando’s Arnold Palmer Hospital Layout Strategy-1.pptx
 
Tamil Call Girls Bhayandar WhatsApp +91-9930687706, Best Service
Tamil Call Girls Bhayandar WhatsApp +91-9930687706, Best ServiceTamil Call Girls Bhayandar WhatsApp +91-9930687706, Best Service
Tamil Call Girls Bhayandar WhatsApp +91-9930687706, Best Service
 
Design For Accessibility: Getting it right from the start
Design For Accessibility: Getting it right from the startDesign For Accessibility: Getting it right from the start
Design For Accessibility: Getting it right from the start
 
Introduction to Data Visualization,Matplotlib.pdf
Introduction to Data Visualization,Matplotlib.pdfIntroduction to Data Visualization,Matplotlib.pdf
Introduction to Data Visualization,Matplotlib.pdf
 
AIRCANVAS[1].pdf mini project for btech students
AIRCANVAS[1].pdf mini project for btech studentsAIRCANVAS[1].pdf mini project for btech students
AIRCANVAS[1].pdf mini project for btech students
 
HOA1&2 - Module 3 - PREHISTORCI ARCHITECTURE OF KERALA.pptx
HOA1&2 - Module 3 - PREHISTORCI ARCHITECTURE OF KERALA.pptxHOA1&2 - Module 3 - PREHISTORCI ARCHITECTURE OF KERALA.pptx
HOA1&2 - Module 3 - PREHISTORCI ARCHITECTURE OF KERALA.pptx
 
NO1 Top No1 Amil Baba In Azad Kashmir, Kashmir Black Magic Specialist Expert ...
NO1 Top No1 Amil Baba In Azad Kashmir, Kashmir Black Magic Specialist Expert ...NO1 Top No1 Amil Baba In Azad Kashmir, Kashmir Black Magic Specialist Expert ...
NO1 Top No1 Amil Baba In Azad Kashmir, Kashmir Black Magic Specialist Expert ...
 
DC MACHINE-Motoring and generation, Armature circuit equation
DC MACHINE-Motoring and generation, Armature circuit equationDC MACHINE-Motoring and generation, Armature circuit equation
DC MACHINE-Motoring and generation, Armature circuit equation
 
Digital Communication Essentials: DPCM, DM, and ADM .pptx
Digital Communication Essentials: DPCM, DM, and ADM .pptxDigital Communication Essentials: DPCM, DM, and ADM .pptx
Digital Communication Essentials: DPCM, DM, and ADM .pptx
 
scipt v1.pptxcxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx...
scipt v1.pptxcxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx...scipt v1.pptxcxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx...
scipt v1.pptxcxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx...
 
Online food ordering system project report.pdf
Online food ordering system project report.pdfOnline food ordering system project report.pdf
Online food ordering system project report.pdf
 
Introduction to Serverless with AWS Lambda
Introduction to Serverless with AWS LambdaIntroduction to Serverless with AWS Lambda
Introduction to Serverless with AWS Lambda
 
Thermal Engineering-R & A / C - unit - V
Thermal Engineering-R & A / C - unit - VThermal Engineering-R & A / C - unit - V
Thermal Engineering-R & A / C - unit - V
 
Bhubaneswar🌹Call Girls Bhubaneswar ❤Komal 9777949614 💟 Full Trusted CALL GIRL...
Bhubaneswar🌹Call Girls Bhubaneswar ❤Komal 9777949614 💟 Full Trusted CALL GIRL...Bhubaneswar🌹Call Girls Bhubaneswar ❤Komal 9777949614 💟 Full Trusted CALL GIRL...
Bhubaneswar🌹Call Girls Bhubaneswar ❤Komal 9777949614 💟 Full Trusted CALL GIRL...
 
School management system project Report.pdf
School management system project Report.pdfSchool management system project Report.pdf
School management system project Report.pdf
 
A Study of Urban Area Plan for Pabna Municipality
A Study of Urban Area Plan for Pabna MunicipalityA Study of Urban Area Plan for Pabna Municipality
A Study of Urban Area Plan for Pabna Municipality
 
Double Revolving field theory-how the rotor develops torque
Double Revolving field theory-how the rotor develops torqueDouble Revolving field theory-how the rotor develops torque
Double Revolving field theory-how the rotor develops torque
 

CC -Unit3.pptx

  • 1.
  • 2. AZURE ARCHITECT TECHNOLOGIES • Azure Files -Azure Blob storage-Azure Resource Manager template (JSON and Bicep)-Virtual Networking- Azure AD Identity Protection- Azure AD Connect
  • 3. Azure Files • Azure files are fully managed File shares in the Cloud. • When you have a local network, you can attach a NAS box so that all users in a network can access the files. • Inside a cloud service, unfortunately, this is absent. This need is fulfilled by Azure File Service.
  • 4. Key features of Azure Files • Replace On Premise file servers or supplement with Azure File sync • Lift and shift applications. • Shared Application settings. • A Cloud Application can write logs, metrics, crash dumps on Azure files.
  • 5.
  • 6. Azure File Storage Pros and Cons Pros • Fully managed service • Shared access • Redundancy • Easy automation • Easy APIs
  • 7. Azure File Storage Pros and Cons Cons • Security and access • Backup • Performance • Size limitations • File system limitations
  • 8. Azure File Sync • Azure File Sync enables centralizing your organization's file shares in Azure Files, while keeping the flexibility, performance, and compatibility of a Windows file server. • While some users may opt to keep a full copy of their data locally, Azure File Sync can turn Windows Server into a quick cache of your Azure file shares.
  • 9. Common reasons customers use Azure File Sync • Centralize file share backups in Azure to optimize cost and manageability • Free up on-premises storage capacity to avoid buying more storage • Maintain on-premises file share performance for frequently used files • Migrate on-premises file shares to Azure Files • Provide low latency, multi-site access for file shares
  • 10.
  • 11. Key Features of Azure File Sync • Company with multiple offices having a need to share files with all offices. • Branch Office backup of files. In real world, the files of branch offices rarely get backed up. • Disaster Recovery Solution in case File Server goes down. • New Branch Office setup. You can setup new Server and connect to same Azure Storage. • Move old data automatically to Azure. This is Cloud Tiering. The non-used data will move to Azure. The files will have greyed icons with an offline O file attribute to tell user that this file is only on Azure.
  • 12. Azure blob storage • Azure Blob storage is a sub-service or sub-resource underneath Azure storage accounts. • Blob storage is the only object-based storage solution (data storage architecture for handling large amounts of unstructured data) among the storage sub-services found inside our storage accounts.
  • 14. Azure Blob Storage Architecture  Azure blob storage account: This is our blob service inside of our storage account, and this is that sub-service that gives us that object-based storage solution.  Blob containers: these are the actual instances of the blob service that we create, where we can store our blobs. We can think of these containers as our buckets or our storage bins, where we can drop off our actual blobs.  Blob: They are the data that we're storing inside these containers like the video files, the text files, the log files, and the virtual hard disks.
  • 15. Types of Azure Blob Storage 1. Block blobs 2. Append blobs 3. Page blobs
  • 16. Block Blobs • Block Blobs are optimized for sequential accessing of the data • These are going to store things like images or videos that are best suited for streaming. • The process for uploading the file is to break the file into smaller blocks and then upload the blocks concurrently. • Once the blocks have been uploaded to the storage account, they are committed into a single file. • That “commitment” is basically the creation of the metadata surrounding the ordering and location of the blocks that belong to this particular file.
  • 17. Append blobs • Block blobs are used for streaming and storing; append blobs fulfil the same task with the addition that they are optimized for append operations. • Updating an append blob can only be done by adding a new block to the end. • An append blob's field of application consists of logging, in which data has to be written to the end of the blob. • These are going to best for append operations like uploading log files.
  • 18. Page blobs • Page Blobs are optimized so that the data in the blob can be accessed randomly. • This is in contrast to reading and writing data sequentially from start to finish (as is found in Block Blobs) • There are some limitations on the size of a Page Blob. They can be up to 1 TB in size, divided up into 512-bytes on each page. • This category of blobs is going to be best for random access memory for read/write operations for virtual machine hard disks. • Odds are pretty good that if you use some of the more advanced Windows Azure features, you’ll use Page Blobs (that use is indirect) • For example, the persisted disks that are part of Windows Azure Virtual Machines use Page Blobs to store both the data and operating system drives
  • 19. Blob access control/Container access levels • We have 3 container access levels:  Private: In this case, we do not provide anonymous access to any of our blob resources.  Blob: This provides anonymous access to all the blobs inside of a container, but not the container data itself.  Container access level: This is the most open access level category and provides anonymous access to a container and all the blobs it contains within it.
  • 20. Azure Resource Manager template (JSON and Bicep) • ARM stands for Azure Resource Manager, which is Microsoft’s deployment and management service for Azure. • Can use the ARM management layer for creating, updating, and deleting Azure resources. • ARM templates are a form of infrastructure as code, a concept where you define the infrastructure you need to be deployed.
  • 21. Why choose ARM templates? • Declarative syntax • Repeatable results • Orchestration • Modular files • Create any Azure resource • Extensibility • Testing
  • 22. Why choose ARM templates? • Preview changes • Built-in validation • Tracked deployments • Policy as code • Deployment Blueprints • CI/CD integration • Exportable code • Authoring tools
  • 23.
  • 24. Template format { "$schema": "https://schema.management.azure.com/schemas/2019-04- 01/deploymentTemplate.json#", "contentVersion": "", "apiProfile": "", "parameters": { }, "variables": { }, "functions": [ ], "resources": [ ], "outputs": { } }
  • 28. Parameters "parameters": { "<parameter-name>" : { "type" : "<type-of-parameter-value>", "defaultValue": "<default-value-of-parameter>", "allowedValues": [ "<array-of-allowed-values>" ], "minValue": <minimum-value-for-int>, "maxValue": <maximum-value-for-int>, "minLength": <minimum-length-for-string-or-array>, "maxLength": <maximum-length-for-string-or-array-parameters>, "metadata": { "description": "<description-of-the parameter>" } } }
  • 29. Parameters "parameters": { "<parameter-name>" : { "type" : "<type-of-parameter-value>", "defaultValue": "<default-value-of-parameter>", "allowedValues": [ "<array-of-allowed-values>" ], "minValue": <minimum-value-for-int>, "maxValue": <maximum-value-for-int>, "minLength": <minimum-length-for-string-or-array>, "maxLength": <maximum-length-for-string-or-array-parameters>, "metadata": { "description": "<description-of-the parameter>" } } }
  • 30. Variables "variables": { "<variable-name>": "<variable-value>", "<variable-name>": { <variable-complex-type-value> }, "<variable-object-name>": { "copy": [ { "name": "<name-of-array-property>", "count": <number-of-iterations>, "input": <object-or-value-to-repeat> } ] }, "copy": [ { "name": "<variable-array-name>", "count": <number-of-iterations>, "input": <object-or-value-to-repeat> } ] }
  • 31. Functions When defining a user function, there are some restrictions: • The function can't access variables. • The function can only use parameters that are defined in the function. When you use the parameters function within a user-defined function, you're restricted to the parameters for that function. • The function can't call other user-defined functions. • The function can't use the reference function. • Parameters for the function can't have default values.
  • 32. Functions "functions": [ { "namespace": "<namespace-for-functions>", "members": { "<function-name>": { "parameters": [ { "name": "<parameter-name>", "type": "<type-of-parameter-value>" } ], "output": { "type": "<type-of-output-value>", "value": "<function-return-value>" } } } }],
  • 34. Outputs "outputs": { "<output-name>": { "condition": "<boolean-value-whether-to-output-value>", "type": "<type-of-output-value>", "value": "<output-value-expression>", "copy": { "count": <number-of-iterations>, "input": <values-for-the-variable> } }}
  • 35. Azure AD Identity Protection Identity Protection allows organizations to accomplish three key tasks: • Automate the detection and remediation of identity-based risks. • Investigate risks using data in the portal. • Export risk detection data to other tools.
  • 36. Detect risk Identity Protection detects risks of many types, including: •Anonymous IP address use •Atypical travel •Malware linked IP address •Unfamiliar sign-in properties •Leaked credentials •Password spray •and more...
  • 37. Remedy The risk signals can trigger remediation efforts such as requiring: • perform multifactor authentication, • reset their password using self-service password reset, • or block access until an administrator takes action.
  • 38. Investigate risk Identity Protection provides organizations with three reports they can use to investigate identity risks in their environment. These reports are the • risky users, • risky sign-ins, and • risk detections.
  • 39. Navigating the reports Each report launches with a list of all detections for the period shown at the top of the report. Each report allows for the addition or removal of columns based on administrator preference. Administrators can choose to download the data in .CSV or .JSON format. The three reports are found in the Azure portal > Azure Active Directory > Security.
  • 40. Risky users Each report launches with a list of all detections for the period shown at the top of the report. Each report allows for the addition or removal of columns based on administrator preference. Administrators can choose to download the data in .CSV or .JSON format. The three reports are found in the Azure portal > Azure Active Directory > Security.
  • 41. Risky users With the information provided by the risky users report, administrators can find: • Which users are at risk, have had risk remediated, or have had risk dismissed? • Details about detections • History of all risky sign-ins • Risk history
  • 42. Risky users Administrators can then choose to take action on these events. Administrators can choose to: • Reset the user password • Confirm user compromise • Dismiss user risk • Block user from signing in • Investigate further using Azure ATP
  • 44. Risky sign-ins The risky sign-ins report contains filterable data for up to the past 30 days (one month).With the information provided by the risky sign-ins report, administrators can find: • Which sign-ins are classified as at risk, confirmed compromised, confirmed safe, dismissed, or remediated. • Real-time and aggregate risk levels associated with sign-in attempts. • Detection types triggered • Conditional Access policies applied • MFA details • Device information • Application information • Location information Administrators can then choose to take action on these events. Administrators can choose to: • Confirm sign-in compromise • Confirm sign-in safe
  • 46. Risk detections The risk detections report contains filterable data for up to the past 90 days (three months). With the information provided by the risk detections report, administrators can find: • Information about each risk detection including type. • Other risks triggered at the same time • Sign-in attempt location • Link out to more detail from Microsoft Defender for Cloud Apps. Administrators can then choose to return to the user's risk or sign-ins report to take actions based on information gathered.
  • 47. Export risk data • Azure AD stores reports and security signals for a defined period of time. When it comes to risk information, that may not be long enough. • Organizations can choose to store data for longer periods by changing diagnostic settings in Azure AD. They can choose to send data to a Log Analytics workspace, archive data to a storage account, stream data to Event Hubs, or send data to a partner solution.
  • 48. Azure AD Connect Azure AD Connect (now referred to also as Azure AD Connect “Classic”) is a Microsoft brand that is mostly about presenting on-premises Active Directory and Azure Active Directory in a seamless way, in particular giving users the experience of single sign-on, or at least same sign on. It includes a number of technologies: • Azure AD Connect Sync • Azure AD Connect Health • ADFS (Active Directory Federation Services) • The PHS/PTA/SSSO Provisioning Connector
  • 49. Azure AD Features Azure AD Connect provides the following features: • Password hash synchronization - A sign-in method that synchronizes a hash of a users on-premises AD password with Azure AD. • Pass-through authentication - A sign-in method that allows users to use the same password on-premises and in the cloud, but doesn't require the additional infrastructure of a federated environment. • Federation integration - Federation is an optional part of Azure AD Connect and can be used to configure a hybrid environment using an on-premises AD FS infrastructure. It also provides AD FS management capabilities such as certificate renewal and additional AD FS server deployments.
  • 50. Azure AD Features Azure AD Connect provides the following features: • Synchronization - Responsible for creating users, groups, and other objects. As well as, making sure identity information for your on-premises users and groups is matching the cloud. This synchronization also includes password hashes. • Health Monitoring - Azure AD Connect Health can provide robust monitoring and provide a central location in the Azure portal to view this activity.
  • 52. Why use Azure AD Connect? Users and organizations can take advantage of: • Users can use a single identity to access on-premises applications and cloud services such as Microsoft 365. • Single tool to provide an easy deployment experience for synchronization and sign-in. • Provides the newest capabilities for your scenarios. Azure AD Connect replaces older versions of identity integration tools such as DirSync and Azure AD Sync.