Recent Discussions
AVD RemoteApp disconnects after sleep — any way to mimic Citrix Session Reliability?
In Azure Virtual Desktop (AVD), whenever my laptop goes into sleep/hibernate and I wake it up, my RemoteApp disconnects and throws an error. With Citrix, the session stays “alive” because of Session Reliability, but AVD doesn’t seem to handle this the same way. I’ve already set session timeouts and keep-alive settings via RDP properties/GPO, but the problem isn’t policy-related — it’s triggered by the local device going to sleep and dropping the network. I have full permissions to configure and manage host pools, session hosts, and RDP properties. Is there any way to mimic Citrix’s behavior (Session Reliability / seamless resume) so users don’t get disconnected after sleep? Or is this simply a limitation of the AVD client?Burst / B series VMs
Hi everyone, in Cost Management reports I see a line item called “Windows Server Burst” associated with B-Series VMs. I’ve been trying to understand this for a while, but I haven’t been able to find any official Microsoft documentation that clearly explains what this charge covers. My assumption is that it refers to the Windows Server license cost for burstable VMs, and not an additional variable charge when the CPU actually goes into burst mode but I’d like to confirm. Has anyone found an official Microsoft reference or can provide clarification? Thanks a lot!Top 7 Azure Services You Didn’t Know You Needed
When most people think of Microsoft Azure, they immediately picture the big players: virtual machines, databases, and storage. But Azure is more than just the backbone of cloud computing—it’s a treasure chest of lesser-known services that can transform the way your business operates. Whether you’re a developer, IT leader, or entrepreneur, these hidden gems can unlock new possibilities, save time, and cut costs. Here are 7 Azure services you didn’t know you needed—until now. https://dellenny.com/top-7-azure-services-you-didnt-know-you-needed/Azure for Beginners How to Launch Your First Cloud Project in 30 Minutes
Cloud computing might sound intimidating if you’re just getting started, but launching your first project on Microsoft Azure can actually be quick and beginner-friendly. Whether you’re a student, a developer testing ideas, or an IT professional exploring the cloud, Azure provides all the tools you need to spin up resources in minutes. In this guide, we’ll walk through the basics and show you how to launch your first cloud project on Azure in about half an hour. https://dellenny.com/azure-for-beginners-how-to-launch-your-first-cloud-project-in-30-minutes/How to Cut Your Azure Bill in Half Without Losing Performance
Cloud services like Microsoft Azure give you the scalability and flexibility to run nearly any workload, but they also come with a downside: costs can spiral quickly if you’re not careful. The good news? With the right strategies, you can reduce your Azure bill by up to 50% without sacrificing performance. Let’s walk through some practical steps you can apply today. https://dellenny.com/how-to-cut-your-azure-bill-in-half-without-losing-performance/
How to update the proxyAddresses of a Cloud-only Entra ID user
I currently have a client with an Entra ID user (not migrated from on-premises) that is cloud-based, but has proxyAddresses values assigned. Now, I want to update the proxyAddresses through the Graph Explorer and have used this link as a guide: https://learn.microsoft.com/en-us/answers/questions/2280046/entra-connect-sync-blocking-user-creation-due-to-h. Now this guide is suggesting you can use the BETA model and this URL format... https://graph.microsoft.com/beta/users/%USERGUID% It states you can use that URL to do both 'GET' and 'PATCH' queries - the PATCH query being the one that will change the settings. You have to put forth a body for the proxyAddresses property in the PATCH query, which represents all of the addresses you want the user to utilise as proxy addresses. Now the GET query works... The PATCH query does not... Screenshot provided: Now, regarding the error message, I have applied ALL possible permissions in the 'Modify Permissions' tab. It is still erroring, Now I cannot use Exchange Online PowerShell, as the user does not have a mailbox! Aside from potentially using a license for Exchange Online or provisioning a mailbox for the user, and making the necessary changes, would the only other option be to delete/recreate the user?Centralized Logging in Azure Proven Observability Patterns for Modern Apps
As modern applications move to distributed and cloud-native architectures, observability becomes critical for ensuring system reliability, diagnosing issues, and improving performance. Among the three pillars of observability—logs, metrics, and traces—logs often form the foundation for troubleshooting. However, in distributed environments, logs are scattered across multiple services, making centralized logging an essential pattern. https://dellenny.com/centralized-logging-in-azure-proven-observability-patterns-for-modern-apps/Riding in Tandem Unlocking the Sidecar Pattern in Azure Microservices
In the world of cloud-native applications, microservices bring agility, scalability, and speed. But with this modular approach comes complexity: logging, monitoring, proxying, and configuration often become tricky. That’s where the Sidecar Pattern steps in — and Azure makes it easier than ever to implement. https://dellenny.com/riding-in-tandem-unlocking-the-sidecar-pattern-in-azure-microservices/Mysterious Nightly CPU Spikes on App Service Plans (22:00-10:00) Despite Low Traffic
For several months now, all of our Azure App Service Plans have been experiencing consistent CPU spikes during off-peak hours, specifically from approximately 22:00 PM to 10:00 AM. This pattern is particularly puzzling because: This timeframe corresponds to our lowest traffic and activity periods We've conducted thorough investigations but haven't identified the root cause No scheduled timer functions or planned jobs are running during these hours that could explain the spikes What we've already checked: Application logs and metrics Scheduled functions and background jobs Traffic patterns and user activity Has anyone encountered similar behavior? What could be causing these nightly CPU spikes on otherwise idle App Service Plans?How to use the newly launched MCP Registry
The newly launched Model Context Protocol (MCP) Registry in preview is as an open catalog for publicly available MCP servers. This is key in providing discoverability of MCP servers and standardization of this process. The Registry serves as a source of truth for MCP Servers and has also published a process for adding MCP servers. The MCP Registry also allows to register public and private sub-registries. This is an interesting addition and bears some semblance to DNS in its design. The public sub-registry can be likened to a MCP marketplace for servers while a private sub-registry would be suitable for enterprises with stricter privacy and security requirements. Accessing Data The Registry data can be accessed through the API provided. No authentication is required for read only access. The base URL is https://registry.modelcontextprotocol.io GET /v0/servers - List all servers with pagination GET /v0/servers/{id} - Get full server details including packages and configuration For instance, the following curl query can be used to get the list of servers curl --request GET \ --url https://registry.modelcontextprotocol.io/v0/servers \ --header 'Accept: application/json, application/problem+json' The details on usage is in the github link here Publishing Servers This requires authentication and the client package to be installed After installing the mcp-publisher client, the server.json file has be populated with the MCP server details to be added. Authentication can be done using github or DNS verification. The last step is to publish the server. The github link here has the complete set of steps for adding servers. More details can be found in the link here.fslogix printing does not work after changing profile from UPM to fslogix
I use Manuel Winkel's script <www.deyda.net> to convert UPM profiles to FSLogix profiles. Which users then encounter the problem that they can no longer print? Deleting printers from the registry and restarting the printer queue does not help. If I then create a new profile for the employees, they can print. Equipment: Windows 2019, Citrix 7 2203 CU6, FSLogix 3.25.626.21064Implementing Zero-Trust Network Security for Azure Web Apps Using Private Endpoints
Author: Sai Min Thu, http://www.innomax.space, https://www.youtube.com/@SaiMinThuu, http://www.linkedin.com/in/saiminthuaws Date: 6.9.2025 Lab Objective: To demonstrate how to completely remove public internet access from an Azure App Service Web App and secure it within a private virtual network using Private Endpoints, adhering to a zero-trust network model. In today's threat landscape, the principle of "never trust, always verify" is paramount. While Azure Web Apps are publicly accessible by default, many enterprise scenarios require workloads to be isolated from the public internet to meet strict compliance and security requirements. This guide provides a step-by-step walkthrough of configuring an Azure Web App to be accessible only through a private network connection via an Azure Private Endpoint. We will: Establish a foundational resource group and virtual network. Deploy a basic web application. Implement core security controls by creating a Private Endpoint and integrating with Private DNS. Enforce network isolation by applying access restrictions. Validate the security configuration. Documents Details:http:// https://docs.google.com/document/d/1ci17PsPCILbP8JVZMMLkjAolHK3pomgT-RE76InEkqA/edit?usp=sharingImplementing Zero-Trust Network Security for Azure Web Apps Using Private Endpoints
Author: Sai Min Thu Date: 7.9.2025 Lab Objective: To demonstrate how to completely remove public internet access from an Azure App Service Web App and secure it within a private virtual network using Private Endpoints, adhering to a zero-trust network model. In today's threat landscape, the principle of "never trust, always verify" is paramount. While Azure Web Apps are publicly accessible by default, many enterprise scenarios require workloads to be isolated from the public internet to meet strict compliance and security requirements. This guide provides a step-by-step walkthrough of configuring an Azure Web App to be accessible only through a private network connection via an Azure Private Endpoint. We will: Establish a foundational resource group and virtual network. Deploy a basic web application. Implement core security controls by creating a Private Endpoint and integrating with Private DNS. Enforce network isolation by applying access restrictions. Validate the security configuration. Documents Details: https://docs.google.com/document/d/1ci17PsPCILbP8JVZMMLkjAolHK3pomgT-RE76InEkqA/edit?usp=sharing
Azure DevOps Releases are failing for all the repo all of sudden
Before 1st of Sept all the release succeeded without any issue , but all of sudden all the release pipelines are failing due to the below error. Error: 2025-09-05T05:52:56.8522017Z error: error parsing STDIN: error converting YAML to JSON: yaml: mapping values are not allowed in this context What could be the issue ?? Can anyone come across this issue, Please suggest.
AKS Log Analytics Workspace records the log for only 3 hours problem
Dear AKS service provider, My AKS Log Analytics Workspace only records from 13:30 UTC to 16:30 UTC container logs each day in the "ContainerLogV2". I wonder what config causes it. How to diagnose and revive to whole day logs? How to troubleshoot? I am sure the container is working properly and has a full log for the day.Service Discovery in Azure Dynamically Finding Service Instances
Modern cloud-native applications are built from microservices—independently deployable units that must communicate with each other to form a cohesive system. In dynamic environments like Azure Kubernetes Service (AKS), Azure App Service, or Azure Container Apps, service instances can scale up, scale down, or move across nodes at any time. This creates a challenge: How do services reliably find and talk to each other without hardcoding IP addresses or endpoints? The answer lies in the Service Discovery architecture pattern. https://dellenny.com/service-discovery-in-azure-dynamically-finding-service-instances/Common Security & Governance Blind Spots in Azure Integration
"Hello everyone, I'm starting a discussion to gather insights on a critical topic: security and governance for Azure Integration Services (AIS). As environments grow with dozens of Logic Apps, Functions, APIM instances, etc., it becomes harder to maintain a strong security posture. I’d like to hear from your experience: What are the most common security and governance blind spots people miss when building out their integration platforms on Azure? To get us started, here are a few areas I'm thinking about: Secret Management: Beyond just "use Key Vault," what are the subtle mistakes or challenges teams face? Network Security: How critical is VNet integration and the use of Private Endpoints for services like Service Bus and Storage Accounts in your opinion? When is it overkill? Monitoring & Observability: What are the best ways to get a single, unified view of a business transaction that flows through multiple Azure services for security auditing? Looking forward to a great discussion and learning from the community's collective experience!"
Recent Blogs
- What Is Disciplined Guardrail-Based Development? In AI-assisted software development, approaches like Vibe Coding—which prioritize momentum and intuition—often fail to ensure code quality and maint...Sep 19, 2025
- Join us for an Ask Me Anything with the Foundry Local team on September 29th, 2025! Discover how Foundry Local is redefining edge AI with powerful features like on-device inference, enabling you ...Sep 19, 2025
