SlideShare ist ein Scribd-Unternehmen logo

Azure SQL Database

N
nj-azure

Azure SQL Database

Bildung
1 von 26
Downloaden Sie, um offline zu lesen
Overview of Azure SQL Database Marcin Policht MCSE: Cloud Platform and Infrastructure https://www.linkedin.com/in/marcin-policht-857b013
Agenda • Common Business and Technical Differentiators between Azure SQL Database and SQL Server in an Azure VM • Azure SQL Servers and Databases • Performance • Database Transaction Unit (DTU) • Database-level Service Tiers • Elastic Database Pools • Elastic Database Pool-level Service Tiers • Management and Development • Business Continuity • Disaster Recovery • Backups, Long-Term Backup Retention, and Restores • Security and Compliance • Authentication and Authorization • Encryption • Row-Level Security • Dynamic Data Masking • Auditing and Threat Detection • Temporal Tables • Monitoring • Query Performance Insights • Database Advisor
Azure SQL Database Azure SQL Database is a cloud-based relational database service, built on the Microsoft SQL Server engine designed to deliver predictable performance and scalability, with virtually no downtime and near-zero server- level administration.
Common Business Differentiators Azure SQL Database • You’re building new cloud-based applications to take advantage of cost savings and performance. • You need agility and scalability. • You want databases replicated in different regions of the world for disaster recovery. • You want to minimize server-level management overhead. SQL Server in an Azure VM • You want to build enterprise applications with OLTP databases larger than 4 TB. • You have existing IT resources and can maintain stewardship over backups, high availability and disaster recovery.
Common Technical Differentiators Azure SQL Database SQL Server in an Azure VM • AlwaysOn Availability Groups/Database mirroring/Failover Clustering • Active Directory authentication • SQL Server Agent • Cross-database queries • Integration Services • Analysis Services • Database snapshots • Reporting Services • Profiler • Data Quality Services • Direct Azure VNet connectivity • Service Broker • Resource Governor https://docs.microsoft.com/en-us/azure/sql-database/sql-database-features • Active Geo-Replication • Azure Active Directory authentication • SSMS MFA • Autoscaling • Elastic pools • Elastic jobs • Elastic queries • Azure Data Factory • Azure Analysis Services • Server and database-level firewall • Elastic database tools • Threat detection • Database Advisor
Azure SQL Servers and Databases Servers • Logical constructs • Host databases • Designate: • an Azure region • resource group • Serve as • security boundaries: • logins • server-level firewalls • connection endpoints: • auto-generated FQDN • xxxx.database.windows.net Databases • Share logical server settings • Have individually assigned: • Service tier: • Basic • Standard • Premium • Premium RS (preview) • Performance level • Expressed in DTUs • Provide additional security: • users (including contained users) • database-level firewalls
Database Transaction Unit (DTU) . • A unit of measurement of platform resources guaranteed to be available to an Azure SQL database • CPU • Memory • I/O (data and transaction log) • Based on an OLTP benchmark workload • For details, refer to SQL Database benchmark overview • Directly proportional to database performance • e.g. a database with 1750 DTUs will have 350x more compute power than a database with 5 DTUs Intended for performance-based sizing of Azure SQL Database
Database-level Service Tiers . • Represent performance and capacity: • Max DTUs (up to 4,000) • Max database size (up to 4 TB) • Max in-memory OLTP storage (up to 32 GB) • Max concurrent workers (up to 6,400) • Max concurrent logins (up to 6,400) • Max concurrent sessions (up to 30,000) • Backup retention period (up to 35 days) • Availability SLA • 99.99% - Basic, Standard, Premium • 99.9% - Premium RS • Further divided into performance levels: • Standard: S0, S1, S2, S3 • Premium: P1, P2, P4, P6, P11, P15 • Premium RS: PRS1, PRS2, PRS4, PRS6 • Shared max database size • Different performance characteristics Basic, Standard, Premium, Premium RS (preview)
Management In majority of cases, working with Azure SQL Database data is the same as working with SQL Server data. • Rich and up-to-date transact- SQL (T-SQL) support • A few differences in DDL and DML(*) • Stored procedures, user-defined functions, triggers, and views • Newest features from SQL Server 2016 • The same tools: • SSMS, Visual Studio • Automation via PowerShell, Azure CLI, REST API (*) https://docs.microsoft.com/en-us/azure/sql-database/sql-database-transact-sql-information
Developing Solutions Azure SQL Database tasks, scripts, methods, functions and processes can be created and managed in Visual Studio using SQL Server Data Tools. Azure SQL Database lets you parse and query data represented in JSON format, and export your relational data as JSON text. Connection libraries (on Windows, Linux, and Mac) for: • ADO.NET • Java • PHP (Windows only) • Node.js • Python • Ruby • C/C++ (Windows and Linux)
Elastic Database Pools • A set number of eDTUs for a set price: • Predictable cost • Individual databases within the pool can autoscale: • Autoscaling boundaries determined by the min eDTU and max eDTU per database • min eDTU and max eDTU are pool level settings • Size limited by the smaller of the database service tier and remaining pool storage • Performance expressed in eDTUs • eDTU = DTU Cost effective solution to manage multiple databases with different usage patterns
Elastic Database Pool-level Service Tiers . • Represent performance and capacity (per pool): • Max number of databases (up to 500) • Max eDTUs (up to 4,000) • Max data storage (up to 750 GB) • Max in-memory OLTP storage (up to 12 GB) • Max concurrent workers (up to 2,400) • Max concurrent logins (up to 2,400) • Max concurrent sessions (up to 30,000) • Min eDTU per database (down to 0) • Max eDTU per database (up to 4,000) • Divided into performance levels: • Based on total eDTUs per pool • Varying max data per pool size and performance characteristics • Each database in a pool has performance characteristics determined by the matching single database service tier • The min and max eDTU per database are determined by the pool performance level Basic, Standard, Premium, and Premium RS (preview)
Disaster Recovery • Asynchronous replication of committed transactions • Available for all service tiers • Source and target can be standalone or pooled • Up to 4 readable secondaries: • can be located in any Azure region (requires a server at that location) • must use the same service tier • performance level can differ • Manual failover and failback • ERT < 30s, RPO < 5s • Replication reestablished automatically Built-in support offering minimal RTO and RPO
Backups • Read Access Geo-Redundant (RA-GRS) • Retention service tier-dependent: • Basic: 7 days • Standard and Premium: 35 days • Frequency: • Transaction log: 5-10 minutes • Differential: every few hours • Full: weekly, starting immediately after db creation Automatic backup capabilities
Long-Term Backup Retention (preview) • Requires an Azure Recovery vault: • Assigned on the server level • LRS or GRS (you decide) • Once configured, automatically copies full backups to the vault • Preserves encryption (TDE) • Configurable retention period (between 1 week and 10 years) • Cost according to the Azure Backup service pricing rates Supplements built-in backup capabilities beyond service tier- specific retention period
Restores • Point-in-time • in the same region • within the service tier-specific retention period • Long-term • Within up to 10 years (when using long term retention with Azure Recovery Services vault) • Results in creation of a new database: • to any server in any region • within the same subscription • geo-restore uses full and differential backups (up to an hour of RPO) Point-in-time and long-term restore capabilities
Authentication and Authorization • Authentication • SQL Server principals • logins: • one or more defined in master • users: • master – manage server-wide roles • user databases - include contained database users • Azure AD security principals • login: • defined in master • the server-level Azure AD Admin (privileges equivalent to the server admin) • users • user databases - Azure AD contained database users • Authorization • Role membership • Object-level permissions Support for two types of identities
Security • Encryption • Transparent Data Encryption • Always Encrypted • Column/cell-level encryption • Row-level security • Dynamic data masking • Auditing • Threat detection • Firewall rules • Server-level • Database-level Includes the latest features of SQL Server 2016.
Encryption Support for “always encrypted” and “transparent” encryption of the database, backups, transaction log files, and secondaries (DR) • Always encrypted • Data encrypted and decrypted within client apps • Always Encrypted-enabled driver • Transparent Data Encryption • Encryption via a symmetric key • The symmetric key protected by a built-in server-specific certificate • Certificates managed by Microsoft
Row-level security • Based on characteristics of user or app executing queries: • group membership • execution context • Simplifies the design and coding of security in your application • Logic is located in the database tier Azure SQL Database supports row-level security making it easy to partition query results based on a user or an app
Dynamic Data Masking • Policy-based • Based on masking rules and masking functions (e.g. credit card, email, etc.) • Supports user-based exclusions • A set of SQL users or AAD identities • Admin users always excluded • Hides sensitive data in the result set of a query targeting designated fields • Created and managed: • In the Azure Portal • Programmatically via SDKs and services • Scripting and T-SQL commands Dynamic data masking prevents unauthorized access to sensitive data by “masking” fields based on roles or permissions.
Auditing and Threat Detection (preview) Capabilities • Retain an audit trail of selected event categories • Track database activity using preconfigured reports • Receive email alerts in response to suspicious events, unusual activity, and trends. Audited actions • Data access • DML – data changes • DCL – logins, users, roles and permissions • DDL – schema changes • Security exceptions
Temporal Tables Temporal Tables provide administrators and developers the ability to track and analyze historical changes in data, similar to concepts of versioning, and even allow retention polices, similar to a document management system.
Query Performance Insight • Deeper insight into your databases resource consumption • The ability to drill down into the details of a query, view its text and history of resource utilization • Performance tuning annotations that show actions performed by SQL Azure Database Advisor • Relies on Query Store Makes it easy to troubleshoot Azure SQL Database performance
Database Advisor • Three impact-based categories: • High impact recommendations should provide the most significant performance impact. • Medium impact recommendations should improve performance, but not substantially. • Low impact recommendations should provide better performance than without, but improvements might not be significant. • Recommendations: • Create index • Drop index • Parameterize queries • Fix schema issues Recommendations to improve query performance
Azure SQL Database

Empfohlen

Azure Storage Services - Part 01
Azure Storage Services - Part 01Azure Storage Services - Part 01
Azure Storage Services - Part 01Neeraj Kumar
 
Azure Storage
Azure StorageAzure Storage
Azure StorageMustafa
 
Introducing Azure SQL Database
Introducing Azure SQL DatabaseIntroducing Azure SQL Database
Introducing Azure SQL DatabaseJames Serra
 
Azure storage
Azure storageAzure storage
Azure storageAdam Skibicki
 
Azure storage
Azure storageAzure storage
Azure storageRaju Kumar
 
Windows Azure Blob Storage
Windows Azure Blob StorageWindows Azure Blob Storage
Windows Azure Blob Storageylew15
 
Azure SQL Database & Azure SQL Data Warehouse
Azure SQL Database & Azure SQL Data WarehouseAzure SQL Database & Azure SQL Data Warehouse
Azure SQL Database & Azure SQL Data WarehouseMohamed Tawfik
 
Introduction to Azure Data Lake
Introduction to Azure Data LakeIntroduction to Azure Data Lake
Introduction to Azure Data LakeAntonios Chatzipavlis
 

Empfohlen

Azure Storage Services - Part 01
Azure Storage Services - Part 01Azure Storage Services - Part 01
Azure Storage Services - Part 01Neeraj Kumar
 
Azure Storage
Azure StorageAzure Storage
Azure StorageMustafa
 
Introducing Azure SQL Database
Introducing Azure SQL DatabaseIntroducing Azure SQL Database
Introducing Azure SQL DatabaseJames Serra
 
Azure storage
Azure storageAzure storage
Azure storageAdam Skibicki
 
Azure storage
Azure storageAzure storage
Azure storageRaju Kumar
 
Windows Azure Blob Storage
Windows Azure Blob StorageWindows Azure Blob Storage
Windows Azure Blob Storageylew15
 
Azure SQL Database & Azure SQL Data Warehouse
Azure SQL Database & Azure SQL Data WarehouseAzure SQL Database & Azure SQL Data Warehouse
Azure SQL Database & Azure SQL Data WarehouseMohamed Tawfik
 
Introduction to Azure Data Lake
Introduction to Azure Data LakeIntroduction to Azure Data Lake
Introduction to Azure Data LakeAntonios Chatzipavlis
 
Azure fundamentals-170910113238
Azure fundamentals-170910113238Azure fundamentals-170910113238
Azure fundamentals-170910113238ScottSmith574468
 
Azure Security Overview
Azure Security OverviewAzure Security Overview
Azure Security OverviewAllen Brokken
 
Azure Database Services for MySQL PostgreSQL and MariaDB
Azure Database Services for MySQL PostgreSQL and MariaDBAzure Database Services for MySQL PostgreSQL and MariaDB
Azure Database Services for MySQL PostgreSQL and MariaDBNicholas Vossburg
 
The Microsoft Well Architected Framework For Data Analytics
The Microsoft Well Architected Framework For Data AnalyticsThe Microsoft Well Architected Framework For Data Analytics
The Microsoft Well Architected Framework For Data AnalyticsStephanie Locke
 
Azure SQL Database
Azure SQL DatabaseAzure SQL Database
Azure SQL DatabasePalash Debnath
 
A complete guide to azure storage
A complete guide to azure storageA complete guide to azure storage
A complete guide to azure storageHimanshu Sahu
 
Introduction to Azure
Introduction to AzureIntroduction to Azure
Introduction to AzureRobert Crane
 
Microsoft Azure Fundamentals
Microsoft Azure FundamentalsMicrosoft Azure Fundamentals
Microsoft Azure FundamentalsAdwait Ullal
 
ETL Made Easy with Azure Data Factory and Azure Databricks
ETL Made Easy with Azure Data Factory and Azure DatabricksETL Made Easy with Azure Data Factory and Azure Databricks
ETL Made Easy with Azure Data Factory and Azure DatabricksDatabricks
 
Microsoft Azure Networking Basics
Microsoft Azure Networking BasicsMicrosoft Azure Networking Basics
Microsoft Azure Networking BasicsSai Kishore Naidu
 
Azure Key Vault - Getting Started
Azure Key Vault - Getting StartedAzure Key Vault - Getting Started
Azure Key Vault - Getting StartedTaswar Bhatti
 
Azure data platform overview
Azure data platform overviewAzure data platform overview
Azure data platform overviewJames Serra
 
Azure Backup Simplifies
Azure Backup SimplifiesAzure Backup Simplifies
Azure Backup SimplifiesTanawit Chansuchai
 
Azure Administrator
Azure AdministratorAzure Administrator
Azure AdministratorViknaraj Manogararajah
 
Azure SQL Database Managed Instance
Azure SQL Database Managed InstanceAzure SQL Database Managed Instance
Azure SQL Database Managed InstanceJames Serra
 
Azure sql database limitations
Azure sql database limitationsAzure sql database limitations
Azure sql database limitationsBRIJESH KUMAR
 
Azure SQL Database
Azure SQL DatabaseAzure SQL Database
Azure SQL Databaserockplace
 
Microsoft Azure Security Overview
Microsoft Azure Security OverviewMicrosoft Azure Security Overview
Microsoft Azure Security OverviewAlert Logic
 
Azure purview
Azure purviewAzure purview
Azure purviewShafqat Turza
 
Azure Synapse Analytics Overview (r2)
Azure Synapse Analytics Overview (r2)Azure Synapse Analytics Overview (r2)
Azure Synapse Analytics Overview (r2)James Serra
 
Scalable relational database with SQL Azure
Scalable relational database with SQL AzureScalable relational database with SQL Azure
Scalable relational database with SQL AzureShy Engelberg
 
Azure data platform overview
Azure data platform overviewAzure data platform overview
Azure data platform overviewAlessandro Melchiori
 

Weitere ähnliche Inhalte

Was ist angesagt?

Azure fundamentals-170910113238
Azure fundamentals-170910113238Azure fundamentals-170910113238
Azure fundamentals-170910113238ScottSmith574468
 
Azure Security Overview
Azure Security OverviewAzure Security Overview
Azure Security OverviewAllen Brokken
 
Azure Database Services for MySQL PostgreSQL and MariaDB
Azure Database Services for MySQL PostgreSQL and MariaDBAzure Database Services for MySQL PostgreSQL and MariaDB
Azure Database Services for MySQL PostgreSQL and MariaDBNicholas Vossburg
 
The Microsoft Well Architected Framework For Data Analytics
The Microsoft Well Architected Framework For Data AnalyticsThe Microsoft Well Architected Framework For Data Analytics
The Microsoft Well Architected Framework For Data AnalyticsStephanie Locke
 
A complete guide to azure storage
A complete guide to azure storageA complete guide to azure storage
A complete guide to azure storageHimanshu Sahu
 
Introduction to Azure
Introduction to AzureIntroduction to Azure
Introduction to AzureRobert Crane
 
Microsoft Azure Fundamentals
Microsoft Azure FundamentalsMicrosoft Azure Fundamentals
Microsoft Azure FundamentalsAdwait Ullal
 
ETL Made Easy with Azure Data Factory and Azure Databricks
ETL Made Easy with Azure Data Factory and Azure DatabricksETL Made Easy with Azure Data Factory and Azure Databricks
ETL Made Easy with Azure Data Factory and Azure DatabricksDatabricks
 
Microsoft Azure Networking Basics
Microsoft Azure Networking BasicsMicrosoft Azure Networking Basics
Microsoft Azure Networking BasicsSai Kishore Naidu
 
Azure Key Vault - Getting Started
Azure Key Vault - Getting StartedAzure Key Vault - Getting Started
Azure Key Vault - Getting StartedTaswar Bhatti
 
Azure data platform overview
Azure data platform overviewAzure data platform overview
Azure data platform overviewJames Serra
 
Azure SQL Database Managed Instance
Azure SQL Database Managed InstanceAzure SQL Database Managed Instance
Azure SQL Database Managed InstanceJames Serra
 
Azure sql database limitations
Azure sql database limitationsAzure sql database limitations
Azure sql database limitationsBRIJESH KUMAR
 
Azure SQL Database
Azure SQL DatabaseAzure SQL Database
Azure SQL Databaserockplace
 
Microsoft Azure Security Overview
Microsoft Azure Security OverviewMicrosoft Azure Security Overview
Microsoft Azure Security OverviewAlert Logic
 
Azure Synapse Analytics Overview (r2)
Azure Synapse Analytics Overview (r2)Azure Synapse Analytics Overview (r2)
Azure Synapse Analytics Overview (r2)James Serra
 

Was ist angesagt? (20)

Azure fundamentals-170910113238
Azure fundamentals-170910113238Azure fundamentals-170910113238
Azure fundamentals-170910113238
 
Azure Security Overview
Azure Security OverviewAzure Security Overview
Azure Security Overview
 
Azure Database Services for MySQL PostgreSQL and MariaDB
Azure Database Services for MySQL PostgreSQL and MariaDBAzure Database Services for MySQL PostgreSQL and MariaDB
Azure Database Services for MySQL PostgreSQL and MariaDB
 
The Microsoft Well Architected Framework For Data Analytics
The Microsoft Well Architected Framework For Data AnalyticsThe Microsoft Well Architected Framework For Data Analytics
The Microsoft Well Architected Framework For Data Analytics
 
Azure SQL Database
Azure SQL DatabaseAzure SQL Database
Azure SQL Database
 
A complete guide to azure storage
A complete guide to azure storageA complete guide to azure storage
A complete guide to azure storage
 
Introduction to Azure
Introduction to AzureIntroduction to Azure
Introduction to Azure
 
Microsoft Azure Fundamentals
Microsoft Azure FundamentalsMicrosoft Azure Fundamentals
Microsoft Azure Fundamentals
 
ETL Made Easy with Azure Data Factory and Azure Databricks
ETL Made Easy with Azure Data Factory and Azure DatabricksETL Made Easy with Azure Data Factory and Azure Databricks
ETL Made Easy with Azure Data Factory and Azure Databricks
 
Microsoft Azure Networking Basics
Microsoft Azure Networking BasicsMicrosoft Azure Networking Basics
Microsoft Azure Networking Basics
 
Azure Key Vault - Getting Started
Azure Key Vault - Getting StartedAzure Key Vault - Getting Started
Azure Key Vault - Getting Started
 
Azure data platform overview
Azure data platform overviewAzure data platform overview
Azure data platform overview
 
Azure Backup Simplifies
Azure Backup SimplifiesAzure Backup Simplifies
Azure Backup Simplifies
 
Azure Administrator
Azure AdministratorAzure Administrator
Azure Administrator
 
Azure SQL Database Managed Instance
Azure SQL Database Managed InstanceAzure SQL Database Managed Instance
Azure SQL Database Managed Instance
 
Azure sql database limitations
Azure sql database limitationsAzure sql database limitations
Azure sql database limitations
 
Azure SQL Database
Azure SQL DatabaseAzure SQL Database
Azure SQL Database
 
Microsoft Azure Security Overview
Microsoft Azure Security OverviewMicrosoft Azure Security Overview
Microsoft Azure Security Overview
 
Azure purview
Azure purviewAzure purview
Azure purview
 
Azure Synapse Analytics Overview (r2)
Azure Synapse Analytics Overview (r2)Azure Synapse Analytics Overview (r2)
Azure Synapse Analytics Overview (r2)
 

Ähnlich wie Azure SQL Database

Scalable relational database with SQL Azure
Scalable relational database with SQL AzureScalable relational database with SQL Azure
Scalable relational database with SQL AzureShy Engelberg
 
Tech-Spark: Azure SQL Databases
Tech-Spark: Azure SQL DatabasesTech-Spark: Azure SQL Databases
Tech-Spark: Azure SQL DatabasesRalph Attard
 
Azure - Data Platform
Azure - Data PlatformAzure - Data Platform
Azure - Data Platformgiventocode
 
KoprowskiT_SQLSat419_WADBforBeginners
KoprowskiT_SQLSat419_WADBforBeginnersKoprowskiT_SQLSat419_WADBforBeginners
KoprowskiT_SQLSat419_WADBforBeginnersTobias Koprowski
 
KoprowskiT_SQLSatMoscow_WASDforBeginners
KoprowskiT_SQLSatMoscow_WASDforBeginnersKoprowskiT_SQLSatMoscow_WASDforBeginners
KoprowskiT_SQLSatMoscow_WASDforBeginnersTobias Koprowski
 
Adelaide Global Azure Bootcamp 2018 - Azure 101
Adelaide Global Azure Bootcamp 2018 - Azure 101Adelaide Global Azure Bootcamp 2018 - Azure 101
Adelaide Global Azure Bootcamp 2018 - Azure 101Balabiju
 
Introduction to Azure SQL DB
Introduction to Azure SQL DBIntroduction to Azure SQL DB
Introduction to Azure SQL DBChristopher Foot
 
ECS19 - Mustafa Toroman, Sasa Kranjac - SOUP TO NUTS: MICROSOFT AZURE POWERCLASS
ECS19 - Mustafa Toroman, Sasa Kranjac - SOUP TO NUTS: MICROSOFT AZURE POWERCLASSECS19 - Mustafa Toroman, Sasa Kranjac - SOUP TO NUTS: MICROSOFT AZURE POWERCLASS
ECS19 - Mustafa Toroman, Sasa Kranjac - SOUP TO NUTS: MICROSOFT AZURE POWERCLASSEuropean Collaboration Summit
 
Store Data in Azure SQL Database
Store Data in Azure SQL DatabaseStore Data in Azure SQL Database
Store Data in Azure SQL DatabaseSuhail Jamaldeen
 
KoprowskiT_session1_SDNEvent_WASDforBeginners
KoprowskiT_session1_SDNEvent_WASDforBeginnersKoprowskiT_session1_SDNEvent_WASDforBeginners
KoprowskiT_session1_SDNEvent_WASDforBeginnersTobias Koprowski
 
AWS Webcast - AWS Webinar Series for Education #3 - Discover the Ease of AWS ...
AWS Webcast - AWS Webinar Series for Education #3 - Discover the Ease of AWS ...AWS Webcast - AWS Webinar Series for Education #3 - Discover the Ease of AWS ...
AWS Webcast - AWS Webinar Series for Education #3 - Discover the Ease of AWS ...Amazon Web Services
 
Moving to the cloud; PaaS, IaaS or Managed Instance
Moving to the cloud; PaaS, IaaS or Managed InstanceMoving to the cloud; PaaS, IaaS or Managed Instance
Moving to the cloud; PaaS, IaaS or Managed InstanceThomas Sykes
 
Cloud architectural patterns and Microsoft Azure tools
Cloud architectural patterns and Microsoft Azure toolsCloud architectural patterns and Microsoft Azure tools
Cloud architectural patterns and Microsoft Azure toolsPushkar Chivate
 
AWS Webcast - Website Hosting in the Cloud
AWS Webcast - Website Hosting in the CloudAWS Webcast - Website Hosting in the Cloud
AWS Webcast - Website Hosting in the CloudAmazon Web Services
 

Ähnlich wie Azure SQL Database (20)

Scalable relational database with SQL Azure
Scalable relational database with SQL AzureScalable relational database with SQL Azure
Scalable relational database with SQL Azure
 
Azure data platform overview
Azure data platform overviewAzure data platform overview
Azure data platform overview
 
A to z for sql azure databases
A to z for sql azure databasesA to z for sql azure databases
A to z for sql azure databases
 
Tech-Spark: Azure SQL Databases
Tech-Spark: Azure SQL DatabasesTech-Spark: Azure SQL Databases
Tech-Spark: Azure SQL Databases
 
Azure - Data Platform
Azure - Data PlatformAzure - Data Platform
Azure - Data Platform
 
KoprowskiT_SQLSat419_WADBforBeginners
KoprowskiT_SQLSat419_WADBforBeginnersKoprowskiT_SQLSat419_WADBforBeginners
KoprowskiT_SQLSat419_WADBforBeginners
 
KoprowskiT_SQLSatMoscow_WASDforBeginners
KoprowskiT_SQLSatMoscow_WASDforBeginnersKoprowskiT_SQLSatMoscow_WASDforBeginners
KoprowskiT_SQLSatMoscow_WASDforBeginners
 
Adelaide Global Azure Bootcamp 2018 - Azure 101
Adelaide Global Azure Bootcamp 2018 - Azure 101Adelaide Global Azure Bootcamp 2018 - Azure 101
Adelaide Global Azure Bootcamp 2018 - Azure 101
 
Introduction to Azure SQL DB
Introduction to Azure SQL DBIntroduction to Azure SQL DB
Introduction to Azure SQL DB
 
ECS19 - Mustafa Toroman, Sasa Kranjac - SOUP TO NUTS: MICROSOFT AZURE POWERCLASS
ECS19 - Mustafa Toroman, Sasa Kranjac - SOUP TO NUTS: MICROSOFT AZURE POWERCLASSECS19 - Mustafa Toroman, Sasa Kranjac - SOUP TO NUTS: MICROSOFT AZURE POWERCLASS
ECS19 - Mustafa Toroman, Sasa Kranjac - SOUP TO NUTS: MICROSOFT AZURE POWERCLASS
 
Store Data in Azure SQL Database
Store Data in Azure SQL DatabaseStore Data in Azure SQL Database
Store Data in Azure SQL Database
 
Microservices in Azure
Microservices in AzureMicroservices in Azure
Microservices in Azure
 
KoprowskiT_session1_SDNEvent_WASDforBeginners
KoprowskiT_session1_SDNEvent_WASDforBeginnersKoprowskiT_session1_SDNEvent_WASDforBeginners
KoprowskiT_session1_SDNEvent_WASDforBeginners
 
AWS Webcast - Website Hosting
AWS Webcast - Website HostingAWS Webcast - Website Hosting
AWS Webcast - Website Hosting
 
AWS Webcast - AWS Webinar Series for Education #3 - Discover the Ease of AWS ...
AWS Webcast - AWS Webinar Series for Education #3 - Discover the Ease of AWS ...AWS Webcast - AWS Webinar Series for Education #3 - Discover the Ease of AWS ...
AWS Webcast - AWS Webinar Series for Education #3 - Discover the Ease of AWS ...
 
Microservices in Azure
Microservices in AzureMicroservices in Azure
Microservices in Azure
 
Moving to the cloud; PaaS, IaaS or Managed Instance
Moving to the cloud; PaaS, IaaS or Managed InstanceMoving to the cloud; PaaS, IaaS or Managed Instance
Moving to the cloud; PaaS, IaaS or Managed Instance
 
AZURE Data Related Services
AZURE Data Related ServicesAZURE Data Related Services
AZURE Data Related Services
 
Cloud architectural patterns and Microsoft Azure tools
Cloud architectural patterns and Microsoft Azure toolsCloud architectural patterns and Microsoft Azure tools
Cloud architectural patterns and Microsoft Azure tools
 
AWS Webcast - Website Hosting in the Cloud
AWS Webcast - Website Hosting in the CloudAWS Webcast - Website Hosting in the Cloud
AWS Webcast - Website Hosting in the Cloud
 

Mehr von nj-azure

Why AvePoint chose Azure for its Office 365 solutions
Why AvePoint chose Azure for its Office 365 solutionsWhy AvePoint chose Azure for its Office 365 solutions
Why AvePoint chose Azure for its Office 365 solutionsnj-azure
 
Introduction to Mind Machine Interfacing using Azure IoT Hub and other cloud ...
Introduction to Mind Machine Interfacing using Azure IoT Hub and other cloud ...Introduction to Mind Machine Interfacing using Azure IoT Hub and other cloud ...
Introduction to Mind Machine Interfacing using Azure IoT Hub and other cloud ...nj-azure
 
Setting up SharePoint Farm in Azure using Azure Resource Manager (ARM)
Setting up SharePoint Farm in Azure using Azure Resource Manager (ARM)Setting up SharePoint Farm in Azure using Azure Resource Manager (ARM)
Setting up SharePoint Farm in Azure using Azure Resource Manager (ARM)nj-azure
 
Intro to azure logic apps
Intro to azure logic appsIntro to azure logic apps
Intro to azure logic appsnj-azure
 
My personal story from azure it pro to azure dev ops
My personal story from azure it pro to azure dev opsMy personal story from azure it pro to azure dev ops
My personal story from azure it pro to azure dev opsnj-azure
 
Becoming the master of disaster... with asr
Becoming the master of disaster... with asrBecoming the master of disaster... with asr
Becoming the master of disaster... with asrnj-azure
 
From 0 to Deployed
From 0 to DeployedFrom 0 to Deployed
From 0 to Deployednj-azure
 

Mehr von nj-azure (7)

Why AvePoint chose Azure for its Office 365 solutions
Why AvePoint chose Azure for its Office 365 solutionsWhy AvePoint chose Azure for its Office 365 solutions
Why AvePoint chose Azure for its Office 365 solutions
 
Introduction to Mind Machine Interfacing using Azure IoT Hub and other cloud ...
Introduction to Mind Machine Interfacing using Azure IoT Hub and other cloud ...Introduction to Mind Machine Interfacing using Azure IoT Hub and other cloud ...
Introduction to Mind Machine Interfacing using Azure IoT Hub and other cloud ...
 
Setting up SharePoint Farm in Azure using Azure Resource Manager (ARM)
Setting up SharePoint Farm in Azure using Azure Resource Manager (ARM)Setting up SharePoint Farm in Azure using Azure Resource Manager (ARM)
Setting up SharePoint Farm in Azure using Azure Resource Manager (ARM)
 
Intro to azure logic apps
Intro to azure logic appsIntro to azure logic apps
Intro to azure logic apps
 
My personal story from azure it pro to azure dev ops
My personal story from azure it pro to azure dev opsMy personal story from azure it pro to azure dev ops
My personal story from azure it pro to azure dev ops
 
Becoming the master of disaster... with asr
Becoming the master of disaster... with asrBecoming the master of disaster... with asr
Becoming the master of disaster... with asr
 
From 0 to Deployed
From 0 to DeployedFrom 0 to Deployed
From 0 to Deployed
 

Kürzlich hochgeladen

Salient Features of India constitution especially power and functions
Salient Features of India constitution especially power and functionsSalient Features of India constitution especially power and functions
Salient Features of India constitution especially power and functionsKarakKing
 
TỔNG ÔN TẬP THI VÀO LỚP 10 MÔN TIẾNG ANH NĂM HỌC 2023 - 2024 CÓ ĐÁP ÁN (NGỮ Â...
TỔNG ÔN TẬP THI VÀO LỚP 10 MÔN TIẾNG ANH NĂM HỌC 2023 - 2024 CÓ ĐÁP ÁN (NGỮ Â...TỔNG ÔN TẬP THI VÀO LỚP 10 MÔN TIẾNG ANH NĂM HỌC 2023 - 2024 CÓ ĐÁP ÁN (NGỮ Â...
TỔNG ÔN TẬP THI VÀO LỚP 10 MÔN TIẾNG ANH NĂM HỌC 2023 - 2024 CÓ ĐÁP ÁN (NGỮ Â...Nguyen Thanh Tu Collection
 
Accessible Digital Futures project (20/03/2024)
Accessible Digital Futures project (20/03/2024)Accessible Digital Futures project (20/03/2024)
Accessible Digital Futures project (20/03/2024)Jisc
 
SOC 101 Demonstration of Learning Presentation
SOC 101 Demonstration of Learning PresentationSOC 101 Demonstration of Learning Presentation
SOC 101 Demonstration of Learning Presentationcamerronhm
 
SKILL OF INTRODUCING THE LESSON MICRO SKILLS.pptx
SKILL OF INTRODUCING THE LESSON MICRO SKILLS.pptxSKILL OF INTRODUCING THE LESSON MICRO SKILLS.pptx
SKILL OF INTRODUCING THE LESSON MICRO SKILLS.pptxAmanpreet Kaur
 
General Principles of Intellectual Property: Concepts of Intellectual Proper...
General Principles of Intellectual Property: Concepts of Intellectual Proper...General Principles of Intellectual Property: Concepts of Intellectual Proper...
General Principles of Intellectual Property: Concepts of Intellectual Proper...Poonam Aher Patil
 
How to Create and Manage Wizard in Odoo 17
How to Create and Manage Wizard in Odoo 17How to Create and Manage Wizard in Odoo 17
How to Create and Manage Wizard in Odoo 17Celine George
 
Basic Civil Engineering first year Notes- Chapter 4 Building.pptx
Basic Civil Engineering first year Notes- Chapter 4 Building.pptxBasic Civil Engineering first year Notes- Chapter 4 Building.pptx
Basic Civil Engineering first year Notes- Chapter 4 Building.pptxDenish Jangid
 
REMIFENTANIL: An Ultra short acting opioid.pptx
REMIFENTANIL: An Ultra short acting opioid.pptxREMIFENTANIL: An Ultra short acting opioid.pptx
REMIFENTANIL: An Ultra short acting opioid.pptxDr. Ravikiran H M Gowda
 
80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...
80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...
80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...Nguyen Thanh Tu Collection
 
Wellbeing inclusion and digital dystopias.pptx
Wellbeing inclusion and digital dystopias.pptxWellbeing inclusion and digital dystopias.pptx
Wellbeing inclusion and digital dystopias.pptxJisc
 
ICT role in 21st century education and it's challenges.
ICT role in 21st century education and it's challenges.ICT role in 21st century education and it's challenges.
ICT role in 21st century education and it's challenges.MaryamAhmad92
 
How to Manage Global Discount in Odoo 17 POS
How to Manage Global Discount in Odoo 17 POSHow to Manage Global Discount in Odoo 17 POS
How to Manage Global Discount in Odoo 17 POSCeline George
 
This PowerPoint helps students to consider the concept of infinity.
This PowerPoint helps students to consider the concept of infinity.This PowerPoint helps students to consider the concept of infinity.
This PowerPoint helps students to consider the concept of infinity.christianmathematics
 
How to setup Pycharm environment for Odoo 17.pptx
How to setup Pycharm environment for Odoo 17.pptxHow to setup Pycharm environment for Odoo 17.pptx
How to setup Pycharm environment for Odoo 17.pptxCeline George
 
On National Teacher Day, meet the 2024-25 Kenan Fellows
On National Teacher Day, meet the 2024-25 Kenan FellowsOn National Teacher Day, meet the 2024-25 Kenan Fellows
On National Teacher Day, meet the 2024-25 Kenan FellowsMebane Rash
 
Food safety_Challenges food safety laboratories_.pdf
Food safety_Challenges food safety laboratories_.pdfFood safety_Challenges food safety laboratories_.pdf
Food safety_Challenges food safety laboratories_.pdfSherif Taha
 
How to Give a Domain for a Field in Odoo 17
How to Give a Domain for a Field in Odoo 17How to Give a Domain for a Field in Odoo 17
How to Give a Domain for a Field in Odoo 17Celine George
 
The basics of sentences session 3pptx.pptx
The basics of sentences session 3pptx.pptxThe basics of sentences session 3pptx.pptx
The basics of sentences session 3pptx.pptxheathfieldcps1
 

Kürzlich hochgeladen (20)

Salient Features of India constitution especially power and functions
Salient Features of India constitution especially power and functionsSalient Features of India constitution especially power and functions
Salient Features of India constitution especially power and functions
 
TỔNG ÔN TẬP THI VÀO LỚP 10 MÔN TIẾNG ANH NĂM HỌC 2023 - 2024 CÓ ĐÁP ÁN (NGỮ Â...
TỔNG ÔN TẬP THI VÀO LỚP 10 MÔN TIẾNG ANH NĂM HỌC 2023 - 2024 CÓ ĐÁP ÁN (NGỮ Â...TỔNG ÔN TẬP THI VÀO LỚP 10 MÔN TIẾNG ANH NĂM HỌC 2023 - 2024 CÓ ĐÁP ÁN (NGỮ Â...
TỔNG ÔN TẬP THI VÀO LỚP 10 MÔN TIẾNG ANH NĂM HỌC 2023 - 2024 CÓ ĐÁP ÁN (NGỮ Â...
 
Accessible Digital Futures project (20/03/2024)
Accessible Digital Futures project (20/03/2024)Accessible Digital Futures project (20/03/2024)
Accessible Digital Futures project (20/03/2024)
 
SOC 101 Demonstration of Learning Presentation
SOC 101 Demonstration of Learning PresentationSOC 101 Demonstration of Learning Presentation
SOC 101 Demonstration of Learning Presentation
 
SKILL OF INTRODUCING THE LESSON MICRO SKILLS.pptx
SKILL OF INTRODUCING THE LESSON MICRO SKILLS.pptxSKILL OF INTRODUCING THE LESSON MICRO SKILLS.pptx
SKILL OF INTRODUCING THE LESSON MICRO SKILLS.pptx
 
General Principles of Intellectual Property: Concepts of Intellectual Proper...
General Principles of Intellectual Property: Concepts of Intellectual Proper...General Principles of Intellectual Property: Concepts of Intellectual Proper...
General Principles of Intellectual Property: Concepts of Intellectual Proper...
 
How to Create and Manage Wizard in Odoo 17
How to Create and Manage Wizard in Odoo 17How to Create and Manage Wizard in Odoo 17
How to Create and Manage Wizard in Odoo 17
 
Basic Civil Engineering first year Notes- Chapter 4 Building.pptx
Basic Civil Engineering first year Notes- Chapter 4 Building.pptxBasic Civil Engineering first year Notes- Chapter 4 Building.pptx
Basic Civil Engineering first year Notes- Chapter 4 Building.pptx
 
REMIFENTANIL: An Ultra short acting opioid.pptx
REMIFENTANIL: An Ultra short acting opioid.pptxREMIFENTANIL: An Ultra short acting opioid.pptx
REMIFENTANIL: An Ultra short acting opioid.pptx
 
80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...
80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...
80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...
 
Wellbeing inclusion and digital dystopias.pptx
Wellbeing inclusion and digital dystopias.pptxWellbeing inclusion and digital dystopias.pptx
Wellbeing inclusion and digital dystopias.pptx
 
ICT role in 21st century education and it's challenges.
ICT role in 21st century education and it's challenges.ICT role in 21st century education and it's challenges.
ICT role in 21st century education and it's challenges.
 
Spatium Project Simulation student brief
Spatium Project Simulation student briefSpatium Project Simulation student brief
Spatium Project Simulation student brief
 
How to Manage Global Discount in Odoo 17 POS
How to Manage Global Discount in Odoo 17 POSHow to Manage Global Discount in Odoo 17 POS
How to Manage Global Discount in Odoo 17 POS
 
This PowerPoint helps students to consider the concept of infinity.
This PowerPoint helps students to consider the concept of infinity.This PowerPoint helps students to consider the concept of infinity.
This PowerPoint helps students to consider the concept of infinity.
 
How to setup Pycharm environment for Odoo 17.pptx
How to setup Pycharm environment for Odoo 17.pptxHow to setup Pycharm environment for Odoo 17.pptx
How to setup Pycharm environment for Odoo 17.pptx
 
On National Teacher Day, meet the 2024-25 Kenan Fellows
On National Teacher Day, meet the 2024-25 Kenan FellowsOn National Teacher Day, meet the 2024-25 Kenan Fellows
On National Teacher Day, meet the 2024-25 Kenan Fellows
 
Food safety_Challenges food safety laboratories_.pdf
Food safety_Challenges food safety laboratories_.pdfFood safety_Challenges food safety laboratories_.pdf
Food safety_Challenges food safety laboratories_.pdf
 
How to Give a Domain for a Field in Odoo 17
How to Give a Domain for a Field in Odoo 17How to Give a Domain for a Field in Odoo 17
How to Give a Domain for a Field in Odoo 17
 
The basics of sentences session 3pptx.pptx
The basics of sentences session 3pptx.pptxThe basics of sentences session 3pptx.pptx
The basics of sentences session 3pptx.pptx
 

Azure SQL Database

  • 1. Overview of Azure SQL Database Marcin Policht MCSE: Cloud Platform and Infrastructure https://www.linkedin.com/in/marcin-policht-857b013
  • 2. Agenda • Common Business and Technical Differentiators between Azure SQL Database and SQL Server in an Azure VM • Azure SQL Servers and Databases • Performance • Database Transaction Unit (DTU) • Database-level Service Tiers • Elastic Database Pools • Elastic Database Pool-level Service Tiers • Management and Development • Business Continuity • Disaster Recovery • Backups, Long-Term Backup Retention, and Restores • Security and Compliance • Authentication and Authorization • Encryption • Row-Level Security • Dynamic Data Masking • Auditing and Threat Detection • Temporal Tables • Monitoring • Query Performance Insights • Database Advisor
  • 3. Azure SQL Database Azure SQL Database is a cloud-based relational database service, built on the Microsoft SQL Server engine designed to deliver predictable performance and scalability, with virtually no downtime and near-zero server- level administration.
  • 4. Common Business Differentiators Azure SQL Database • You’re building new cloud-based applications to take advantage of cost savings and performance. • You need agility and scalability. • You want databases replicated in different regions of the world for disaster recovery. • You want to minimize server-level management overhead. SQL Server in an Azure VM • You want to build enterprise applications with OLTP databases larger than 4 TB. • You have existing IT resources and can maintain stewardship over backups, high availability and disaster recovery.
  • 5. Common Technical Differentiators Azure SQL Database SQL Server in an Azure VM • AlwaysOn Availability Groups/Database mirroring/Failover Clustering • Active Directory authentication • SQL Server Agent • Cross-database queries • Integration Services • Analysis Services • Database snapshots • Reporting Services • Profiler • Data Quality Services • Direct Azure VNet connectivity • Service Broker • Resource Governor https://docs.microsoft.com/en-us/azure/sql-database/sql-database-features • Active Geo-Replication • Azure Active Directory authentication • SSMS MFA • Autoscaling • Elastic pools • Elastic jobs • Elastic queries • Azure Data Factory • Azure Analysis Services • Server and database-level firewall • Elastic database tools • Threat detection • Database Advisor
  • 6. Azure SQL Servers and Databases Servers • Logical constructs • Host databases • Designate: • an Azure region • resource group • Serve as • security boundaries: • logins • server-level firewalls • connection endpoints: • auto-generated FQDN • xxxx.database.windows.net Databases • Share logical server settings • Have individually assigned: • Service tier: • Basic • Standard • Premium • Premium RS (preview) • Performance level • Expressed in DTUs • Provide additional security: • users (including contained users) • database-level firewalls
  • 7. Database Transaction Unit (DTU) . • A unit of measurement of platform resources guaranteed to be available to an Azure SQL database • CPU • Memory • I/O (data and transaction log) • Based on an OLTP benchmark workload • For details, refer to SQL Database benchmark overview • Directly proportional to database performance • e.g. a database with 1750 DTUs will have 350x more compute power than a database with 5 DTUs Intended for performance-based sizing of Azure SQL Database
  • 8. Database-level Service Tiers . • Represent performance and capacity: • Max DTUs (up to 4,000) • Max database size (up to 4 TB) • Max in-memory OLTP storage (up to 32 GB) • Max concurrent workers (up to 6,400) • Max concurrent logins (up to 6,400) • Max concurrent sessions (up to 30,000) • Backup retention period (up to 35 days) • Availability SLA • 99.99% - Basic, Standard, Premium • 99.9% - Premium RS • Further divided into performance levels: • Standard: S0, S1, S2, S3 • Premium: P1, P2, P4, P6, P11, P15 • Premium RS: PRS1, PRS2, PRS4, PRS6 • Shared max database size • Different performance characteristics Basic, Standard, Premium, Premium RS (preview)
  • 9. Management In majority of cases, working with Azure SQL Database data is the same as working with SQL Server data. • Rich and up-to-date transact- SQL (T-SQL) support • A few differences in DDL and DML(*) • Stored procedures, user-defined functions, triggers, and views • Newest features from SQL Server 2016 • The same tools: • SSMS, Visual Studio • Automation via PowerShell, Azure CLI, REST API (*) https://docs.microsoft.com/en-us/azure/sql-database/sql-database-transact-sql-information
  • 10. Developing Solutions Azure SQL Database tasks, scripts, methods, functions and processes can be created and managed in Visual Studio using SQL Server Data Tools. Azure SQL Database lets you parse and query data represented in JSON format, and export your relational data as JSON text. Connection libraries (on Windows, Linux, and Mac) for: • ADO.NET • Java • PHP (Windows only) • Node.js • Python • Ruby • C/C++ (Windows and Linux)
  • 11. Elastic Database Pools • A set number of eDTUs for a set price: • Predictable cost • Individual databases within the pool can autoscale: • Autoscaling boundaries determined by the min eDTU and max eDTU per database • min eDTU and max eDTU are pool level settings • Size limited by the smaller of the database service tier and remaining pool storage • Performance expressed in eDTUs • eDTU = DTU Cost effective solution to manage multiple databases with different usage patterns
  • 12. Elastic Database Pool-level Service Tiers . • Represent performance and capacity (per pool): • Max number of databases (up to 500) • Max eDTUs (up to 4,000) • Max data storage (up to 750 GB) • Max in-memory OLTP storage (up to 12 GB) • Max concurrent workers (up to 2,400) • Max concurrent logins (up to 2,400) • Max concurrent sessions (up to 30,000) • Min eDTU per database (down to 0) • Max eDTU per database (up to 4,000) • Divided into performance levels: • Based on total eDTUs per pool • Varying max data per pool size and performance characteristics • Each database in a pool has performance characteristics determined by the matching single database service tier • The min and max eDTU per database are determined by the pool performance level Basic, Standard, Premium, and Premium RS (preview)
  • 13. Disaster Recovery • Asynchronous replication of committed transactions • Available for all service tiers • Source and target can be standalone or pooled • Up to 4 readable secondaries: • can be located in any Azure region (requires a server at that location) • must use the same service tier • performance level can differ • Manual failover and failback • ERT < 30s, RPO < 5s • Replication reestablished automatically Built-in support offering minimal RTO and RPO
  • 14. Backups • Read Access Geo-Redundant (RA-GRS) • Retention service tier-dependent: • Basic: 7 days • Standard and Premium: 35 days • Frequency: • Transaction log: 5-10 minutes • Differential: every few hours • Full: weekly, starting immediately after db creation Automatic backup capabilities
  • 15. Long-Term Backup Retention (preview) • Requires an Azure Recovery vault: • Assigned on the server level • LRS or GRS (you decide) • Once configured, automatically copies full backups to the vault • Preserves encryption (TDE) • Configurable retention period (between 1 week and 10 years) • Cost according to the Azure Backup service pricing rates Supplements built-in backup capabilities beyond service tier- specific retention period
  • 16. Restores • Point-in-time • in the same region • within the service tier-specific retention period • Long-term • Within up to 10 years (when using long term retention with Azure Recovery Services vault) • Results in creation of a new database: • to any server in any region • within the same subscription • geo-restore uses full and differential backups (up to an hour of RPO) Point-in-time and long-term restore capabilities
  • 17. Authentication and Authorization • Authentication • SQL Server principals • logins: • one or more defined in master • users: • master – manage server-wide roles • user databases - include contained database users • Azure AD security principals • login: • defined in master • the server-level Azure AD Admin (privileges equivalent to the server admin) • users • user databases - Azure AD contained database users • Authorization • Role membership • Object-level permissions Support for two types of identities
  • 18. Security • Encryption • Transparent Data Encryption • Always Encrypted • Column/cell-level encryption • Row-level security • Dynamic data masking • Auditing • Threat detection • Firewall rules • Server-level • Database-level Includes the latest features of SQL Server 2016.
  • 19. Encryption Support for “always encrypted” and “transparent” encryption of the database, backups, transaction log files, and secondaries (DR) • Always encrypted • Data encrypted and decrypted within client apps • Always Encrypted-enabled driver • Transparent Data Encryption • Encryption via a symmetric key • The symmetric key protected by a built-in server-specific certificate • Certificates managed by Microsoft
  • 20. Row-level security • Based on characteristics of user or app executing queries: • group membership • execution context • Simplifies the design and coding of security in your application • Logic is located in the database tier Azure SQL Database supports row-level security making it easy to partition query results based on a user or an app
  • 21. Dynamic Data Masking • Policy-based • Based on masking rules and masking functions (e.g. credit card, email, etc.) • Supports user-based exclusions • A set of SQL users or AAD identities • Admin users always excluded • Hides sensitive data in the result set of a query targeting designated fields • Created and managed: • In the Azure Portal • Programmatically via SDKs and services • Scripting and T-SQL commands Dynamic data masking prevents unauthorized access to sensitive data by “masking” fields based on roles or permissions.
  • 22. Auditing and Threat Detection (preview) Capabilities • Retain an audit trail of selected event categories • Track database activity using preconfigured reports • Receive email alerts in response to suspicious events, unusual activity, and trends. Audited actions • Data access • DML – data changes • DCL – logins, users, roles and permissions • DDL – schema changes • Security exceptions
  • 23. Temporal Tables Temporal Tables provide administrators and developers the ability to track and analyze historical changes in data, similar to concepts of versioning, and even allow retention polices, similar to a document management system.
  • 24. Query Performance Insight • Deeper insight into your databases resource consumption • The ability to drill down into the details of a query, view its text and history of resource utilization • Performance tuning annotations that show actions performed by SQL Azure Database Advisor • Relies on Query Store Makes it easy to troubleshoot Azure SQL Database performance
  • 25. Database Advisor • Three impact-based categories: • High impact recommendations should provide the most significant performance impact. • Medium impact recommendations should improve performance, but not substantially. • Low impact recommendations should provide better performance than without, but improvements might not be significant. • Recommendations: • Create index • Drop index • Parameterize queries • Fix schema issues Recommendations to improve query performance