Kategorie Ops

Wordle Solver as Blazor WebAssembly on Azure Storage

“Blazor lets you build interactive web UIs using C# instead of JavaScript. Blazor apps are composed of reusable web UI components implemented using C#, HTML, and CSS.” The application can be run directly in the browser as a WebAssembly. It… Weiterlesen →

Generate Lets Encrypt SSL Certiface with acme.sh

I had problems with the instructions from my post, because Lets Encrypt is switching from ACME API v1 to ACME API v2. So I switched to acme.sh to generate Let’s Encrypt certificates in manual DNS mode. The steps are simple… Weiterlesen →

Keycloak with SSH on Azure App Services

Keycloak is a comprehensive and free open source identity provider. It is also offered in numerous Docker variants, which makes deployment very easy. Access to the shell is necessary for the configuration, e.g. if the first user has to be… Weiterlesen →

Azure Landing Zone 101

Lately people have been talking about Azure Landing Zones. This primarily refers to the environment in Azure into the workloads be migrated or new workloads are introduced. This means the preparation of the Azure environment. Specifically, the basic structure in… Weiterlesen →

Monitor Processes on Azure VMs with Log Analytics

VMs are often used in Azure because sometimes higher-quality services such as Platform Services are not suitable. For each VM, there is basic monitoring such as network traffic and corresponding visualizations (e.g. under Metrics) directly in the portal. Often, the… Weiterlesen →

Send Mails with SendGrid via Azure Automation

Azure Automation can automatically send emails through alerts when a runbook fails. Unfortunately, these alert mails cannot be adjusted and it is often necessary to send further information. In this case SendGrid is a good alternative because the mail service… Weiterlesen →

Upload and Download Blobs in Azure Storage without local Files

Should files are uploaded or downloaded from an Azure Storage Account Blob, there are corresponding PowerShell commands. Specifically, Get-AzStorageBlobContent or Set-AzStorageBlobContent can be used. Both commands always require the specification of a local file. In some cases, however, it may… Weiterlesen →

Sum up Azure costs with PowerShell Group and Measure

Azure provides a good way with Cost Management to report the costs and consumption of Azure Services. It offers various filtering, aggregation and export options. In some cases, however, it is still necessary to call up and process the data… Weiterlesen →

Suppress “Azure AD Premium Plan 2 Expired” Reminder Mail

Anyone who has activated the Premium Plan 2 role of Azure Active Directory, for example for using Privilaged Identity Management (PIM), starts with a free 30-day trial period. If period has expired, the emails shown above follow daily and there… Weiterlesen →

Configure Backend Re-Encryption at Azure Application Gateway v2

The Application Gateway v2 has considerable advantages over the v1. Support for autoscaling, zone redundant operation or use as an ingress in the AKS are just a few features from the list. The re-encryption of the back-end data traffic is… Weiterlesen →

Configure Backend Re-Encryption at Azure Application Gateway v1

The Azure Application Gateway is a load balancer with some additional features, such as path-based routing, a web application firewall or SSL termination. However, if the traffic to the backend has to be encrypted also, (it has to be re-encrypted),… Weiterlesen →

Resolve Typical VPN Errors

VPN tunnels are often set up between on-premises environments and Azure. Sometimes these break off regularly and have to be restarted. However, there is often an incorrect configuration between the Azure VPN gateway and the on-premises gateway. The following are… Weiterlesen →

Use Azure File Share as Virtual Directory in IIS

For a special scenario, an Azure file share was integrated and used by several clients. However, a web portal should also be provided, through which the files can be downloaded. The IIS can reference directories as virtual directories and display… Weiterlesen →

Traffic Manager + Firewall vs. Front Door

There is often a requirement that workload be distributed across multiple Azure regions. If these are services that are publicly accessible from the Internet, the use of a firewall is recommended. The standard setup was usually the combination of a… Weiterlesen →

Start & Stop VMs in Sequence and with Delay via Azure Automation

In some cases VMs have to be started / stopped in a certain order. Often, certain services have to run before the next VM can start. It may be necessary to set waiting times between the start of two VMs…. Weiterlesen →

Deploy WAR-File (Magnolia) to App Service with Tomcat

There are various options for deploying Java applications on an App Service. The application can be deployed as a ZIP file or directly as a WAR file. There are different ways for each variant, for example with Azure CLI, FTP,… Weiterlesen →

Auto-Reset Azure VPN Gateway at Alert

The Scenario The diagram above shows two virtual networks in which several VMs are placed. All VMs require a local DNS server that can be reached via the VPN gateway. The network is accordingly peered (with Use Remote Gateway and… Weiterlesen →

Reset VPN-Gateway with Runbook

If you need to reset a VPN-Gateway, an Azure Runbook is a good way of implementation. And the command to reset is very simple: Reset-AzVirtualNetworkGateway But if the runbook was called several times, for example from several alerts, the reset… Weiterlesen →

Docker (Windows with Hyper-V) can not bind ports

Sometimes I get the error message:docker.exe: Error response from daemon: driver failed programming external connectivity on endpoint infallible_kapitsa (c7baca25c4e65da8aa6e592e7fb9ed81c0f55a3f7891e93c62a79819007f4e61): Error starting userland proxy: listen tcp 0.0.0.0:1234: bind: Der Zugriff auf einen Socket war aufgrund der Zugriffsrechte des Sockets unzulässig. The… Weiterlesen →

Creating Azure VM based on local VHD Files

Update December 2019:It is now possible to create an empty managed disk in Azure an upload a local VHD file directly in it. Therefore it is not necessary to upload the VHD in a storage account and deleting it afterwards…. Weiterlesen →

Adding weekday checks to Azure Automation

Update October 2019:Since March 2019, Azure Schedulers support the selection of weekdays. The article will still be available because weekday selections are only an example of custom control flows and parameters. Often the first workload in the cloud is a… Weiterlesen →

Protecting Backend Systems with Subnets and Network-Security-Groups

Many customers wonder how to protect the workload in Azure and whether everything is publicly accessible. I want to show how easy it is, to protect workload with network security groups.

Start & Stop VMs with Azure Automation by using Credentials

In some scenarios it is not possible to generate a ServicePrincipal for automation in Azure, although this is the recommended way. In this case, credentials can also be stored and used in Azure Automation. In the following I used the… Weiterlesen →

Start & Stop of Azure VMs with Automation

For the automated start and stop of several VMs in Azure there are many possibilities. The most flexible is certainly the Automation Service. Any scripts can be created or obtained from galleries and executed on-demand or time-controlled. Especially for the… Weiterlesen →

Manual generate SSL Certificate from Lets Encrypt

I needed 2 subdomain certificates from Lets Encrypt. I had looked at some tools and found ACMESharp (https://pkisharp.github.io/ACMESharp-docs/Quick-Start, https://github.com/ebekker/ACMESharp/wiki/Quick-Start) the best. To get the certificate, the ACMEVault has to be set up once and the tool has to be installed… Weiterlesen →

SSH (remote shell) in Azure Cloud Shell

Update December 2019:Since a while, the command has changed, is now longer in preview and no extension is necessary: https://docs.microsoft.com/en-us/cli/azure/webapp?view=azure-cli-latest#az-webapp-create-remote-connection Sometimes I have problems with the integrated SSH blade in the Azure App Services with Linux – strange error messages,… Weiterlesen →

HTTP2 with Azure App Services

You can now use HTTP2 in Azure App Services. Microsoft announced it in a blogpost last month. The advanteges of HTTP2 are: compressed headers, that reducing the amount of transfered data multiplex transfer within one TCP connection (no more multiple… Weiterlesen →

Moving Azure Managed Disk between Tenants

I need to move a managed Disk from a source subscription to a destination subscription. And I started with the “Move to another subscription” option. But there are two problem: Azure can not move a managed disk My subscription was… Weiterlesen →

© 2022 Azure Talk — Diese Website läuft mit WordPress

Theme erstellt von Anders NorénNach oben ↑