Azure Talk

Seite 2 von 4

Private Link/Endpoint, Private DNS Zone and Service Endpoint

Most Azure services are accessible via a public URL. However, to provide a higher level of protection and a direct connection, various options are available in Azure. The two most common approaches are Service Endpoints and Private Endpoint/Private Link. Service… Weiterlesen →

REST Requets with automatic Token generation in Azure: az rest

APIs are available for most functionality and information in Azure. A token, which must be sent with the request, is usually required to retrieve the information. Generating a token dynamically or retrieving it via a service principal is often a… Weiterlesen →

Application Gateway and App Services with Redirect

Azure App Services are often placed behind an Application Gateway. Routing is easier to control, your own certificates can be stored centrally and data traffic can be checked and attacks detected. However, if the App Service responds with redirects, the… Weiterlesen →

Generate different Cosmos DB Queries for different API Management Products

As a starting point, there should be an API with a GET operation to retrieve (flight) data from a Cosmos DB. How the token can be generated to access the Cosmos DB was shown in the previous post Calculating CosmosDB… Weiterlesen →

Calculating CosmosDB API Token in API Management

To retrieve data from a Cosmos DB, its REST API can be used. The query is transmitted in the body of a POST request. Based on the current date, an authorization string must be calculated and supplied. The calculation is… Weiterlesen →

8 Hints with Azure “Compute Choice Decision Guide”

If workloads are to be set up in the Azure, there are various options. To make the choice easier, Microsoft provides the Compute Decision Guide (see picture above). It differentiates between Lift&Shift and Cloud Native and gives recommendations for individual… Weiterlesen →

Wordle Solver as Blazor WebAssembly on Azure Storage

“Blazor lets you build interactive web UIs using C# instead of JavaScript. Blazor apps are composed of reusable web UI components implemented using C#, HTML, and CSS.” The application can be run directly in the browser as a WebAssembly. It… Weiterlesen →

Long Running (endless) Azure Durable Function on Consumption Plan

In the blog post about endless running Azure Functions on Consumption Plan, normal Azure Functions can run without time limit with the help of the functionTimeout property. The same option is also available for the durable functions. The same timeout… Weiterlesen →

Long Running (endless) Azure Function on Consumption Plan

Standard Azure Functions (not Durable Functions) have a maximum timeout of 10 minutes on a consumption plan. This is the same timeout for the new Function Runtime ~4 (missing in the link). With the Function Runtime ~3, however, the timeout… Weiterlesen →

Generate Lets Encrypt SSL Certiface with acme.sh

I had problems with the instructions from my post, because Lets Encrypt is switching from ACME API v1 to ACME API v2. So I switched to acme.sh to generate Let’s Encrypt certificates in manual DNS mode. The steps are simple… Weiterlesen →

Keycloak with SSH on Azure App Services

Keycloak is a comprehensive and free open source identity provider. It is also offered in numerous Docker variants, which makes deployment very easy. Access to the shell is necessary for the configuration, e.g. if the first user has to be… Weiterlesen →

Azure Landing Zone 101

Lately people have been talking about Azure Landing Zones. This primarily refers to the environment in Azure into the workloads be migrated or new workloads are introduced. This means the preparation of the Azure environment. Specifically, the basic structure in… Weiterlesen →

RESTify Azure Gremlin CosmosDB with Azure Function and Remote-Container

For one project we use a Gremlin DB in Azure (Cosmos DB). Various libraries are available for use. Unfortunately, no REST is supported, which is why a corresponding simple interface had to be provided here. The most elegant way would… Weiterlesen →

Azure Governance – Best Practices

Azure governance describes the guard rails and degrees of freedom for working in Azure. On the one hand, requirements are defined, such as how resources are to be deployed or how authorizations are assigned in order to set general requirements… Weiterlesen →

Monitor Processes on Azure VMs with Log Analytics

VMs are often used in Azure because sometimes higher-quality services such as Platform Services are not suitable. For each VM, there is basic monitoring such as network traffic and corresponding visualizations (e.g. under Metrics) directly in the portal. Often, the… Weiterlesen →

Azure Blob triggers Runbook with Event Subscription

My challenge was to start a runbook as soon as a new file was stored in Azure Blob Storage. Unfortunately there is no direct configuration option in the storage account for such notifications. One way would be to poll the… Weiterlesen →

Azure Data Transfer Costs

The cost of data transfer inside and outside Azure has become more and more complicated and confusing in recent years. This is due to various factors, so there are always new services with new prices, new Azure regions are emerging… Weiterlesen →

Select most suitable Azure Regions

Many customers have problems choosing the right Azure Region for their workload. Especially since the German Region is available, but not all Azure services are available yet, the selection has become even more difficult. To simplify the selection, the workflow… Weiterlesen →

Send Mails with SendGrid via Azure Automation

Azure Automation can automatically send emails through alerts when a runbook fails. Unfortunately, these alert mails cannot be adjusted and it is often necessary to send further information. In this case SendGrid is a good alternative because the mail service… Weiterlesen →

Upload and Download Blobs in Azure Storage without local Files

Should files are uploaded or downloaded from an Azure Storage Account Blob, there are corresponding PowerShell commands. Specifically, Get-AzStorageBlobContent or Set-AzStorageBlobContent can be used. Both commands always require the specification of a local file. In some cases, however, it may… Weiterlesen →

Sum up Azure costs with PowerShell Group and Measure

Azure provides a good way with Cost Management to report the costs and consumption of Azure Services. It offers various filtering, aggregation and export options. In some cases, however, it is still necessary to call up and process the data… Weiterlesen →

My Top Cloud Risks and their Mitigation

Most customers have a risk management, but with the new cloud area, there are new risks too. Every customer has to assess them for himself and work out possible compensation strategies. The following is my personal assessment of the most… Weiterlesen →

Suppress “Azure AD Premium Plan 2 Expired” Reminder Mail

Anyone who has activated the Premium Plan 2 role of Azure Active Directory, for example for using Privilaged Identity Management (PIM), starts with a free 30-day trial period. If period has expired, the emails shown above follow daily and there… Weiterlesen →

Configure Backend Re-Encryption at Azure Application Gateway v2

The Application Gateway v2 has considerable advantages over the v1. Support for autoscaling, zone redundant operation or use as an ingress in the AKS are just a few features from the list. The re-encryption of the back-end data traffic is… Weiterlesen →

Configure Backend Re-Encryption at Azure Application Gateway v1

The Azure Application Gateway is a load balancer with some additional features, such as path-based routing, a web application firewall or SSL termination. However, if the traffic to the backend has to be encrypted also, (it has to be re-encrypted),… Weiterlesen →

Resolve Typical VPN Errors

VPN tunnels are often set up between on-premises environments and Azure. Sometimes these break off regularly and have to be restarted. However, there is often an incorrect configuration between the Azure VPN gateway and the on-premises gateway. The following are… Weiterlesen →

Simple Java App (JAR) in Azure AppService

There are various ways to deploy Java applications on an app service. ZIP or WAR files can be uploaded or it can be deployed using a Maven plugin. But Java applications can also be deployed via FTP and executed using… Weiterlesen →

Use Azure File Share as Virtual Directory in IIS

For a special scenario, an Azure file share was integrated and used by several clients. However, a web portal should also be provided, through which the files can be downloaded. The IIS can reference directories as virtual directories and display… Weiterlesen →

Traffic Manager + Firewall vs. Front Door

There is often a requirement that workload be distributed across multiple Azure regions. If these are services that are publicly accessible from the Internet, the use of a firewall is recommended. The standard setup was usually the combination of a… Weiterlesen →

Start & Stop VMs in Sequence and with Delay via Azure Automation

In some cases VMs have to be started / stopped in a certain order. Often, certain services have to run before the next VM can start. It may be necessary to set waiting times between the start of two VMs…. Weiterlesen →

« Ältere Beiträge Neuere Beiträge »

© 2024 Azure Talk — Diese Website läuft mit WordPress

Theme erstellt von Anders NorénNach oben ↑