Cover image for Azure for Architects - Third Edition

Azure for Architects - Third Edition

Author Ritesh Modi , Jack Lee , Rithin Skaria
Release Date: 2020/07/01
Topic:
0%
23
Chapters
0-1
Hours read
0k
Total Words
    Start Reading Now    
       Add to Wishlist       
View table of contents

Book Description

Build and design multiple types of applications that are cross-language, platform, and cost-effective by understanding core Azure principles and foundational concepts

Key Features

  • Get familiar with the different design patterns available in Microsoft Azure
  • Develop Azure cloud architecture and a pipeline management system
  • Get to know the security best practices for your Azure deployment

Book Description

Thanks to its support for high availability, scalability, security, performance, and disaster recovery, Azure has been widely adopted to create and deploy different types of application with ease. Updated for the latest developments, this third edition of Azure for Architects helps you get to grips with the core concepts of designing serverless architecture, including containers, Kubernetes deployments, and big data solutions.

You'll learn how to architect solutions such as serverless functions, you'll discover deployment patterns for containers and Kubernetes, and you'll explore large-scale big data processing using Spark and Databricks. As you advance, you'll implement DevOps using Azure DevOps, work with intelligent solutions using Azure Cognitive Services, and integrate security, high availability, and scalability into each solution. Finally, you'll delve into Azure security concepts such as OAuth, OpenConnect, and managed identities.

By the end of this book, you'll have gained the confidence to design intelligent Azure solutions based on containers and serverless functions.

What you will learn

  • Understand the components of the Azure cloud platform
  • Use cloud design patterns
  • Use enterprise security guidelines for your Azure deployment
  • Design and implement serverless and integration solutions
  • Build efficient data solutions on Azure
  • Understand container services on Azure

Who this book is for

If you are a cloud architect, DevOps engineer, or a developer looking to learn about the key architectural aspects of the Azure cloud platform, this book is for you. A basic understanding of the Azure cloud platform will help you grasp the concepts covered in this book more effectively.

Table of Contents

  1. Preface
    1. About Azure for Architects, Third Edition
      1. About the Authors
      2. About the Reviewers
      3. Learning Objectives
      4. Audience
      5. Approach
      6. Hardware Requirements
      7. Software Requirements
      8. Conventions
      9. Download Resources
  2. 1. Getting started with Azure
    1. Cloud computing
      1. The advantages of cloud computing
      2. Why cloud computing?
      3. Deployment paradigms in Azure
    2. Understanding Azure
    3. Azure as an intelligent cloud
    4. Azure Resource Manager
      1. The ARM architecture
      2. Why ARM?
      3. ARM advantages
      4. ARM concepts
    5. Virtualization
    6. Containers
    7. Docker
    8. Interacting with the intelligent cloud
      1. The Azure portal
      2. PowerShell
      3. The Azure CLI
      4. The Azure REST API
      5. ARM templates
    9. Summary
  3. 2. Azure solution availability, scalability, and monitoring
    1. High availability
    2. Azure high availability
      1. Concepts
      2. Load balancing
      3. VM high availability
      4. Compute high availability
      5. High-availability platforms
      6. Load balancers in Azure
      7. The Azure Application Gateway
      8. Azure Traffic Manager
      9. Azure Front Door
    3. Architectural considerations for high availability
      1. High availability within Azure regions
      2. High availability across Azure regions
    4. Scalability
      1. Scalability versus performance
      2. Azure scalability
      3. PaaS scalability
      4. IaaS scalability
    5. VM scale sets
      1. VMSS architecture
      2. VMSS scaling
    6. Upgrades and maintenance
      1. Application updates
      2. Guest updates
      3. Image updates
      4. Best practices of scaling for VMSSes
    7. Monitoring
      1. Azure monitoring
      2. Azure activity logs
      3. Azure diagnostic logs
      4. Azure application logs
      5. Guest and host OS logs
      6. Azure Monitor
      7. Azure Application Insights
      8. Azure Log Analytics
      9. Solutions
      10. Alerts
    8. Summary
  4. 3. Design pattern – Networks, storage, messaging, and events
    1. Azure Availability Zones and Regions
      1. Availability of resources
      2. Data and privacy compliance
      3. Application performance
      4. Cost of running applications
    2. Virtual networks
      1. Architectural considerations for virtual networks
      2. Benefits of virtual networks
    3. Virtual network design
      1. Connecting to resources within the same region and subscription
      2. Connecting to resources within the same region in another subscription
      3. Connecting to resources in different regions in another subscription
      4. Connecting to on-premises datacenters
    4. Storage
      1. Storage categories
      2. Storage types
      3. Storage features
      4. Architectural considerations for storage accounts
    5. Cloud design patterns
      1. Messaging patterns
      2. Performance and scalability patterns
    6. Summary
  5. 4. Automating architecture on Azure
    1. Automation
    2. Azure Automation
    3. Azure Automation architecture
      1. Process automation
      2. Configuration management
      3. Update management
    4. Concepts related to Azure Automation
      1. Runbook
      2. Run As accounts
      3. Jobs
      4. Assets
      5. Credentials
      6. Certificates
      7. Creating a service principal using certificate credentials
      8. Connections
    5. Runbook authoring and execution
      1. Parent and child runbooks
      2. Creating a runbook
    6. Using Az modules
    7. Webhooks
      1. Invoking a webhook
      2. Invoking a runbook from Azure Monitor
      3. Hybrid Workers
    8. Azure Automation State Configuration
    9. Azure Automation pricing
    10. Comparison with serverless automation
    11. Summary
  6. 5. Designing policies, locks, and tags for Azure deployments
    1. Azure management groups
    2. Azure tags
      1. Tags with PowerShell
      2. Tags with Azure Resource Manager templates
      3. Tagging resource groups versus resources
    3. Azure Policy
      1. Built-in policies
      2. Policy language
      3. Allowed fields
    4. Azure locks
    5. Azure RBAC
      1. Custom roles
      2. How are locks different from RBAC?
    6. Azure Blueprints
    7. An example of implementing Azure governance features
      1. Background
      2. RBAC for Company Inc
      3. Azure Policy
      4. Azure locks
    8. Summary
  7. 6. Cost management for Azure solutions
    1. Azure offer details
    2. Understanding billing
    3. Invoicing
      1. The Modern Commerce experience
    4. Usage and quotas
    5. Resource providers and resource types
    6. Usage and Billing APIs
      1. Azure Enterprise Billing APIs
      2. Azure Consumption APIs
      3. Azure Cost Management APIs
    7. Azure pricing calculator
    8. Best practices
      1. Azure Governance
      2. Compute best practices
      3. Storage best practices
      4. PaaS best practices
      5. General best practices
    9. Summary
  8. 7. Azure OLTP solutions
    1. OLTP applications
      1. Relational databases
    2. Azure cloud services
    3. Deployment models
      1. Databases on Azure Virtual Machines
      2. Databases hosted as managed services
    4. Azure SQL Database
      1. Application features
      2. Security
    5. Single Instance
    6. Elastic pools
    7. Managed Instance
    8. SQL database pricing
      1. DTU-based pricing
      2. vCPU-based pricing
      3. How to choose the appropriate pricing model
    9. Azure Cosmos DB
      1. Features
      2. Use case scenarios
    10. Summary
  9. 8. Architecting secure applications on Azure
    1. Security
      1. Security life cycle
      2. Azure security
    2. IaaS security
      1. Network security groups
      2. Firewalls
      3. Application security groups
      4. Azure Firewall
      5. Reducing the attack surface area
      6. Implementing jump servers
      7. Azure Bastion
    3. Application security
      1. SSL/TLS
      2. Managed identities
    4. Azure Sentinel
    5. PaaS security
      1. Azure Private Link
      2. Azure Application Gateway
      3. Azure Front Door
      4. Azure App Service Environment
      5. Log Analytics
    6. Azure Storage
    7. Azure SQL
    8. Azure Key Vault
    9. Authentication and authorization using OAuth
    10. Security monitoring and auditing
      1. Azure Monitor
      2. Azure Security Center
    11. Summary
  10. 9. Azure Big Data solutions
    1. Big data
      1. Process for big data
    2. Big data tools
      1. Azure Data Factory
      2. Azure Data Lake Storage
      3. Hadoop
      4. Apache Spark
      5. Databricks
    3. Data integration
    4. ETL
    5. A primer on Azure Data Factory
    6. A primer on Azure Data Lake
    7. Migrating data from Azure Storage to Data Lake Storage Gen2
      1. Preparing the source storage account
      2. Provisioning a new resource group
      3. Provisioning a storage account
      4. Provisioning the Data Lake Gen2 service
      5. Provisioning Azure Data Factory
      6. Repository settings
      7. Data Factory datasets
      8. Creating the second dataset
      9. Creating a third dataset
      10. Creating a pipeline
      11. Adding one more Copy Data activity
    8. Creating a solution using Databricks
      1. Loading data
    9. Summary
  11. 10. Serverless in Azure – Working with Azure Functions
    1. Serverless
    2. The advantages of Azure Functions
    3. FaaS
      1. The Azure Functions runtime
      2. Azure Functions bindings and triggers
      3. Azure Functions configuration
      4. Azure Functions cost plans
      5. Azure Functions destination hosts
      6. Azure Functions use cases
      7. Types of Azure functions
    4. Creating an event-driven function
    5. Function Proxies
    6. Durable Functions
      1. Steps for creating a durable function using Visual Studio
    7. Creating a connected architecture with functions
    8. Azure Event Grid
      1. Event Grid
      2. Resource events
      3. Custom events
    9. Summary
  12. 11. Azure solutions using Azure Logic Apps, Event Grid, and Functions
    1. Azure Logic Apps
      1. Activities
      2. Connectors
      3. The workings of a logic app
    2. Creating an end-to-end solution using serverless technologies
      1. The problem statement
      2. Solution
      3. Architecture
      4. Prerequisites
      5. Implementation
      6. Testing
    3. Summary
  13. 12. Azure Big Data eventing solutions
    1. Introducing events
      1. Event streaming
      2. Event Hubs
    2. Event Hubs architecture
      1. Consumer groups
      2. Throughput
    3. A primer on Stream Analytics
      1. The hosting environment
      2. Streaming units
    4. A sample application using Event Hubs and Stream Analytics
    5. Provisioning a new resource group
      1. Creating an Event Hubs namespace
      2. Creating an event hub
      3. Provisioning a logic app
      4. Provisioning the storage account
      5. Creating a storage container
      6. Creating Stream Analytics jobs
      7. Running the application
    6. Summary
  14. 13. Integrating Azure DevOps
    1. DevOps
    2. The essence of DevOps
    3. DevOps practices
      1. Configuration management
      2. Configuration management tools
      3. Continuous integration
      4. Continuous deployment
      5. Continuous delivery
      6. Continuous learning
    4. Azure DevOps
      1. TFVC
      2. Git
    5. Preparing for DevOps
      1. Azure DevOps organizations
      2. Provisioning Azure Key Vault
      3. Provisioning a configuration-management server/service
      4. Log Analytics
      5. Azure Storage accounts
      6. Docker and OS images
      7. Management tools
    6. DevOps for PaaS solutions
      1. Azure App Service
      2. Deployment slots
      3. Azure SQL
      4. The build and release pipelines
    7. DevOps for IaaS
      1. Azure virtual machines
      2. Azure public load balancers
      3. The build pipeline
      4. The release pipeline
    8. DevOps with containers
      1. Containers
      2. The build pipeline
      3. The release pipeline
    9. Azure DevOps and Jenkins
    10. Azure Automation
      1. Provisioning an Azure Automation account
      2. Creating a DSC configuration
      3. Importing the DSC configuration
      4. Compiling the DSC configuration
      5. Assigning configurations to nodes
      6. Validation
    11. Tools for DevOps
    12. Summary
  15. 14. Architecting Azure Kubernetes solutions
    1. Introduction to containers
    2. Kubernetes fundamentals
    3. Kubernetes architecture
      1. Kubernetes clusters
      2. Kubernetes components
    4. Kubernetes primitives
      1. Pod
      2. Services
      3. Deployments
      4. Replication controller and ReplicaSet
      5. ConfigMaps and Secrets
    5. AKS architecture
    6. Deploying an AKS cluster
      1. Creating an AKS cluster
      2. Kubectl
      3. Connecting to the cluster
    7. AKS networking
      1. Kubenet
      2. Azure CNI (advanced networking)
    8. Access and identity for AKS
    9. Virtual kubelet
    10. Virtual nodes
    11. Summary
  16. 15. Cross-subscription deployments using ARM templates
    1. ARM templates
    2. Deploying resource groups with ARM templates
      1. Deploying ARM templates
      2. Deployment of templates using Azure CLI
    3. Deploying resources across subscriptions and resource groups
      1. Another example of cross-subscription and resource group deployments
    4. Deploying cross-subscription and resource group deployments using linked templates
    5. Virtual machine solutions using ARM templates
    6. PaaS solutions using ARM templates
    7. Data-related solutions using ARM templates
    8. Creating an IaaS solution on Azure with Active Directory and DNS
    9. Summary
  17. 16. ARM template modular design and implementation
    1. Problems with the single template approach
      1. Reduced flexibility in changing templates
      2. Troubleshooting large templates
      3. Dependency abuse
      4. Reduced agility
      5. No reusability
    2. Understanding the Single Responsibility Principle
      1. Faster troubleshooting and debugging
      2. Modular templates
      3. Deployment resources
    3. Linked templates
    4. Nested templates
    5. Free-flow configurations
    6. Known configurations
    7. Understanding copy and copyIndex
    8. Securing ARM templates
    9. Using outputs between ARM templates
    10. Summary
    11. IoT
    12. IoT architecture
      1. Connectivity
      2. Identity
      3. Capture
      4. Ingestion
      5. Storage
      6. Transformation
      7. Analytics
      8. Presentation
    13. Azure IoT
      1. Connectivity
      2. Identity
      3. Capture
      4. Ingestion
      5. Storage
      6. Transformation and analytics
      7. Presentation
    14. Azure IoT Hub
      1. Protocols
      2. Device registration
      3. Message management
      4. Security
      5. Scalability
      6. Azure IoT Edge
    15. High availability
    16. Azure IoT Central
    17. Summary
  18. 17. Designing IoT solutions
  19. 18. Azure Synapse Analytics for architects
    1. Azure Synapse Analytics
    2. A common scenario for architects
    3. An overview of Azure Synapse Analytics
      1. What is workload isolation?
      2. Introduction to Synapse workspaces and Synapse Studio
      3. Apache Spark for Synapse
      4. Synapse SQL
      5. Synapse pipelines
      6. Azure Synapse Link for Cosmos DB
    4. Migrating from existing legacy systems to Azure Synapse Analytics
      1. Why you should migrate your legacy data warehouse to Azure Synapse Analytics
      2. The three-step migration process
      3. The two types of migration strategies
      4. Reducing the complexity of your existing legacy data warehouse before migrating
      5. Converting physical data marts to virtual data marts
      6. Migrating existing data warehouse schemas to Azure Synapse Analytics
      7. Migrating historical data from your legacy data warehouse to Azure Synapse Analytics
      8. Migrating existing ETL processes to Azure Synapse Analytics
      9. Re-developing scalable ETL processes using ADF
      10. Recommendations for migrating queries, BI reports, dashboards, and other visualizations
      11. Common migration issues and resolutions
    5. Common SQL incompatibilities and resolutions
      1. SQL DDL differences and resolutions
      2. SQL DML differences and resolutions
      3. SQL DCL differences and resolutions
      4. Extended SQL differences and workarounds
    6. Security considerations
      1. Data encryption at rest
      2. Data in motion
    7. Tools to help migrate to Azure Synapse Analytics
      1. ADF
      2. Azure Data Warehouse Migration Utility
      3. Microsoft Services for Physical Data Transfer
      4. Microsoft Services for data ingestion
    8. Summary
  20. 19. Architecting intelligent solutions
    1. The evolution of AI
    2. Azure AI processes
      1. Data ingestion
      2. Data transformation
      3. Analysis
      4. Data modeling
      5. Validating the model
      6. Deployment
      7. Monitoring
    3. Azure Cognitive Services
      1. Vision
      2. Search
      3. Language
      4. Speech
      5. Decision
    4. Understanding Cognitive Services
      1. Consuming Cognitive Services
    5. Building an OCR service
      1. Using PowerShell
      2. Using C#
      3. The development process
    6. Building a visual features service using the Cognitive Search .NET SDK
      1. Using PowerShell
      2. Using .NET
    7. Safeguarding the Cognitive Services key
      1. Using Azure Functions Proxies
    8. Consuming Cognitive Services
    9. Summary
  21. Index
18.191.241.51