governance
38 TopicsEnd-to-end TLS with AKS, Azure Front Door, Azure Private Link Service, and NGINX Ingress Controller
This article shows how Azure Front Door Premium can be set to use a Private Link Service to expose an AKS-hosted workload via NGINX Ingress Controller configured to use a private IP address on the internal load balancer.15KViews2likes4CommentsFastTrack for Azure (FTA) program retiring December 2024
ATTENTION: As of December 31st, 2024, the FastTrack for Azure (FTA) program will be retired. FTA will support any projects currently in motion to ensure successful completion by December 31st, 2024, but will no longer accept new nominations. For more information on available programs and resources, visit: Azure Migrate, Modernize, and Innovate | Microsoft Azure369Views0likes0CommentsAzure Backup vs. Azure Site Recovery: Key Differences Explained
When it comes to safeguarding your data and ensuring business continuity, Microsoft Azure offers two powerful solutions: Azure Backup and Azure Site Recovery (ASR). Although both services are critical components of a comprehensive disaster recovery strategy, they serve distinct purposes. Based on my experience working with the hundreds of Customers sometimes they are not sure to use which services or their use cases. In some cases, Customers need both services to meet their business requirements. Here's a breakdown of their key differences: Purpose and Functionality Azure Backup: This service focuses on data backup and restoration. It provides a simple, secure, and reliable way to back up files, folders, applications, and virtual machines (VMs) to Azure. Azure Backup protects against data loss due to accidental deletion, ransomware attacks, or corruption. Azure Site Recovery (ASR): ASR is designed for disaster recovery and business continuity. It replicates workloads running on physical or virtual machines to a secondary location to ensure seamless failover during a disaster. Use Case: Azure Backup is ideal for long-term data retention, whereas ASR is critical for minimizing downtime and ensuring workload availability during outages. Core Capabilities Azure Backup: Creates backups for Azure VMs, On-prem VMs, Azure Managed Disks, Azure file shares, SQL server in Azure VMs, SAP HANA databases in Azure VMs, Azure Blobs, Azure Kubernetes services and Azure Database for PostgreSQL servers. Supports both on-premises and cloud-based resources. Provides long-term retention and lifecycle management for backups. Offers encryption at rest and in transit to secure data. Azure Site Recovery: Replicate Azure VMs, On-premises VMs and VMWare VMs. Continuous replication of workloads for low recovery point objectives (RPOs). Orchestrated failover and failback capabilities. Multi-region disaster recovery for VMs and physical servers. Integration with BCDR (Business Continuity and Disaster Recovery) plans. Key Differentiator: Azure Backup is about data recovery, while ASR is about workload continuity. Recovery Objectives Azure Backup: Focuses on the Recovery Time Objective (RTO) and Recovery Point Objective (RPO) for restoring individual files or entire systems. RPO depends on the backup schedule (e.g., daily or hourly backups). Azure Site Recovery: Aims to minimize downtime by ensuring applications and workloads are quickly available in a secondary location during an outage. It delivers lower RTO and RPO compared to backup solutions. Data Recovery vs. Workload Recovery Azure Backup: Restores data at a granular level (e.g., files, folders, or entire systems). Azure Site Recovery: Ensures entire workloads, including infrastructure and applications, are replicated and can be failed over to another location. Cost Azure Backup: Costs are primarily based on the size of backed-up data and the number of recovery points stored in the Recovery Services Vault. Azure Site Recovery: Pricing is driven by the number of instances being replicated and the storage consumed by replicated data. Comparison: Azure Backup is generally more cost-effective for data protection, whereas ASR justifies its higher cost by providing enterprise-grade disaster recovery capabilities. Final Thoughts Azure Backup and Azure Site Recovery are complementary solutions that address different aspects of data protection and disaster recovery. For long-term data retention and restoration, Azure Backup is the go-to solution. For mission-critical applications requiring business continuity during disruptions, Azure Site Recovery ensures workloads remain operational with minimal downtime. A robust IT strategy often involves leveraging both services to cover the spectrum of data protection and recovery needs, ensuring business resilience no matter the scenario.1KViews4likes0CommentsUsing Azure Automation to perform Azure Site Recovery post failover tasks in virtual machines
This article shows how to effectively perform post failover tasks using an Azure Automation Account and a PowerShell runbook. While this article focuses on enabling encryption at host in failed over Azure VMs, a similar approach can be used for other post failover actions.9.6KViews3likes3CommentsThe Ultimate Guide to Deciphering Azure Agents + Defender for Servers: Part 1
Welcome to our multi-part series! Have you read all the docs only to find yourself overwhelmed by all the features and agents available and need help deciding which to onboard? Do you need help with the nuances of setting up Private Link for Azure Arc? Are you using SCOM to onboard MMA to your servers still and unsure of the path forward to AMA? Then look no further! With this multi-part series, we will guide you through the decision process to find the best path on your monitoring and endpoint protection journey with the end goal being successfully deployment of Defender for Servers.7.4KViews8likes5Comments