AzUpdate: Azure VM Cross Region Restore, Azure Firewall Premium and more
Published Feb 19 2021 12:01 AM 3,783 Views
Microsoft

Just under two weeks before MS Ignite but the news keeps on coming. This week's news includes Cross Region Restore of Azure VMs now generally available, Azure Firewall Premium now in public preview, Azure role-based access control (RBAC) for Azure Key Vault data plane authorization is now generally available, Azure Machine Learning updates for native terminal is now generally available and as always, the Microsoft Learn Module of the Week.

 

 

Cross Region Restore of Azure VMs now generally available
  
azure_vm_cross_region_restore.png
 

The backup data in the Azure Backup Recovery service vault stores backup data which defaults storage settings to geo-redundancy, and the backed up data in the primary region is geo-replicated to an Azure-paired secondary region. The data replicated to the secondary region is available to restore in the secondary region only if Azure declares a disaster in the primary region. Customers who opt-in for this feature can initiate restores in the secondary region at any time making the customer controlled secondary region restores possible in both times of primary region being available or unavailable.

 

Further details can be found here: Cross Region Restore

 

Azure Firewall Premium now in public preview

The following capabilities can now be preformed under the new Azure Firewall Premium public preview:

 

  1. Transport Layer Security (TLS) Inspection: decrypts outbound traffic, performs the required value-added security functions and re-encrypt the traffic which is sent to the original destination.
     
  2. Intrusion Detection and Prevention System (IDPS): provides signature-based IDPS to allow rapid detection of attacks by looking for specific patterns, such as byte sequences in network traffic, or known malicious instruction sequences used by malware.
     
  3. Web Categories: Allows admins to allow or deny user access to the Internet based on categories (e.g. social networking, search engines, gambling), reducing the time spent on managing individual FQDNs and URLs. This capability is also available for Azure Firewall Standard based on FQDNs only.
     
  4. URL Filtering: Allow users to access specific URLs for both plain text and encrypted traffic, typically being used in congestion with web categories.

For more information, see the Azure Firewall Premium documentation.

 

Azure role-based access control (RBAC) for Azure Key Vault data plane authorization is now generally available

System admins can now achieve unified management and access control across Azure Resources with Azure role-based access control (RBAC) for Azure Key Vault on data plane. This capability now allows the ability to manage RBAC for Key Vault keys, certificates, and secrets with roles assignment scope available from management group to individual key, certificate, and secret. When enabled, Azure AD users and services will be validated exclusively by Azure RBAC.

 

Further details can be found here: Provide access to Key Vault keys, certificates, and secrets with an Azure role-based access control

 

Azure Machine Learning updates for native terminal now generally available

Terminal in Azure Machine Learning  can now be used to perform any CLI operation directly in the Azure Machine Learning studio. CLI operations include cloning notebook files from Git Repository , installing a Python package, and executing Python Files.  

 ​ 

For more information, see the Azure Machine Learning CLI documentation.

 

Community Events

  • Microsoft Ignite - Registration is now available for the upcoming event.  Stay tuned for more details as they become available.
  • Azure admin jump start - Live, demo-heavy deep dives into scenarios detailing core Azure services, workloads, security, and governance.
     

MS Learn Module of the Week

Microsoft_Learn_Banner.png

Deploying and managing compute resources for Azure administrators

The goal of this Azure fundementals learning path is to learn how to deploy and configure virtual machines, containers, and Web Apps in Azure.
 

This 11 hour learning path can be completed here: Deploy and manage compute resources for Azure administrators

 

Let us know in the comments below if there are any news items you would like to see covered in the next show. Be sure to catch the next AzUpdate episode and join us in the live chat.

 
 
Co-Authors
Version history
Last update:
‎Feb 18 2021 11:51 AM
Updated by: