O'Reilly logo
live online training icon Live Online training

Implementing Azure for Enterprises

A comprehensive approach to implement and manage multiple robust solutions on Microsoft Azure for Enterprises

Krishnaswamy Venkataraman

Microsoft Azure is a cloud computing platform that enables a user to securely host a multitude of services like Virtual Machine, Storage, Network, and Databases. Customers have a choice of hosting their solution as PaaS (Platform as Service), IaaS (Infrastructure as Service) and Serverless architecture to build, deploy and manage applications across a global network of Microsoft managed datacenters. There is no upfront cost, customers pay for service based on the usage and this enables enterprises to adopt Azure with low cost footprint and ramp up adoption based on the adoption and business demand. The goal of this session is to train you with the best practices for implementing Azure in Enterprises. We begin the course with a quick introduction to the Enterprise management features like Subscription, Defining policies, Securing enterprise access of azure services through RBAC (Role based access control). You will learn to build Management Groups, Resource groups and understand the core elements of Enterprise subscription and resource management. With the help of this knowledge, you will learn to build a subscription framework and implement policies to manage the azure resources and also implement Roles based access control.

As we move further, you will understand the functionality of Serverless computing and learn to build Logic App resource, Azure functions and events using Azure Event Grid. Next up, you will dive into the App services that will allow you to host web applications, REST APIs, and mobile back ends. After which, you will learn to build an App Service plan which defines a set of computing resources for a web app to run.

As the session proceeds, you will learn to create and configure storage accounts. Take a deep look into Azure virtual machines for Windows and Linux and then automate the deployment of Virtual Machines using Azure Resource Manager templates. Next up, you will learn about Azure networking by communicating between Azure resources, on premises resources, filtering network traffic and connecting virtual networks. We will complete the session by coming across techniques to build containers that use Azure Kubernetes service. By the end of this course, you will be well versed with the practices required for implementing Azure in an enterprise.

What you'll learn-and how you can apply it

  • Build Management Groups, Resource groups and understanding the foundation of Enterprise subscription and resource management.
  • Build Policies, Role based access controls
  • Building PaaS components
  • Build Core Azure infrastructure (IaaS) components
  • Building a Kubernetes cluster

This training course is for you because...

You are a Cloud Engineer, Developer, Solution Architect , IT Operation executive who want to get started with Azure implementation at your Enterprise. This course will give you all the advance skills and knowledge to get you start with the cloud journey.

Prerequisites

  • Working knowledge of Azure

Materials, downloads, or Supplemental Content needed in advance

About your instructor

  • Krishna is a Cloud Solution Architect working at Microsoft. He has worked with large Public Sectors, Finserv customers around the world building by deploying innovate solutions that solves their business challenges through technology and business process changes.

Schedule

The timeframes are only estimates and may vary according to how the class is progressing

DAY 1

Section 1: Introduction to Azure enterprise features and Management groups (25 minutes)

  • Introduction to Azure enterprise features.
  • Designing Azure subscription for enterprises.
  • An Overview of all Management Groups and Resource groups.
  • Share use cases for adopting management groups, role-based access, Resource tagging.

Lab 1: We will build Management Groups and Resource groups and understand the core elements of Enterprise subscription and resource management. (20 minutes)

Q&A – 10 minutes

Section 2: Introduction to Azure subscription design, Azure Policies, Role based access control feature sets (25 minutes)

  • Assign a policy to enforce a condition for resources you create in the future
  • Create and assign an initiative definition to track compliance for multiple resources
  • Resolve a non-compliant or denied resource
  • Implement a new policy across an organization
  • Discuss and showcase features and functions of Role Based access control (RBAC)

Lab 2: We will build and implement Policies, Role based access controls (20 minutes)

Q&A – 10 minutes Break – 10 minutes

Section 3: Configure serverless computing (25 minutes)

  • Logic apps can be used to process and route orders across on-premises systems and cloud services, send emails with 0365, upload files from an SFTP or FTP server to Azure Storage.
  • Monitor tweets for a specific subject, analyze the sentiment, and create alerts or tasks for items that need review.
  • Azure Functions is a solution for easily running small pieces of code, or "functions," in the cloud. Customers can code to address the problem at hand, without worrying about a whole application or the infrastructure to run it.
  • Azure Event Grid allows you to easily build applications with event-based architectures.

Lab 3: In this lab we will cover the following: (25 minutes) - Build Logic App resource. - Implement a sample Azure Function. - Build event triggering on changes to Azure Resource using Azure Event Grid.

Q&A – 10 minutes

Section 4: Manage App Service plans (25 minutes)

  • Azure App Service Web Apps or just Web Apps is a service for hosting web applications, REST APIs, and mobile back ends.
  • An App Service plan defines a set of compute resources for a web app to run.

Lab 4: We will configure an application for scaling, enabling monitoring and diagnostics and then configuring. - Assign SSL certificates to the service. - Configure deployment slots and implement Azure content delivery network (CDN) integration. - Create and Manage security roles using RBAC. - Build and manage App Service environment.

Q&A – 10 minutes

DAY 2

Section 5: Understanding Storage on Azure (15 minutes)

During this session we will focus on understanding more in-depth into storage management on Azure. We will take in securing the storage and in addition to building RBAC and enabling DR Feature for the storage account.

Lab 5: In this lab we will cover the following: (20 minutes) - Configure network access to the storage account. - Create and configure storage account; generate shared access signature. - Install and use Azure Storage Explorer; manage access keys. - Configuring RBAC on storage. - Monitor activity log by using Log Analytics - Implement Azure storage replication to make data available during DR scenarios.

Q&A – 10 minutes

Section 6: Create and configure a Virtual Machine (VM) for Windows and Linux (15 minutes)

  • The Azure virtual machine can be used to host multitudes of workloads both Linux and Windows. Azure can host multiple types of Linux distros.
  • We will learn about HA and DR options available to safely host your workloads including networking and building scale sets for workloads that needs scale out performances based on workload demands.

Lab 6: In this lab we will cover the following: (15 minutes) - Configure high availability for virtual machines using Availability set. - Configure monitoring, networking, storage, and virtual machine size. - Deploy and configure scale sets

Q&A – 10 minutes Break – 10 minutes

Section 7: Automate deployment of Virtual Machines (15 minutes)

  • Enabling you to work with the resources in your solution as a group wherein you can deploy, update, or delete all the resources for your solution in a single, coordinated operation.
  • Azure Resource Manager Templates can work for different environments such as testing, staging, and production.
  • It provides security, auditing, and tagging features to help you manage your resources after deployment.

Lab 7: In this lab we will cover the following: (20 minutes) - Modify Azure Resource Manager (ARM) template. - Configure location of new VMs. - Configure VHD template and deploy from template. - Save a deployment as an ARM template. - Deploy Windows and Linux VMs.

Q&A – 10 minutes

Section 8: Understanding Azure Networking (15 minutes)

Azure Virtual Network enables many types of Azure resources, such as Azure Virtual Machines (VM), to securely communicate with each other, the internet, and on-premises networks. Azure Virtual Network provides the following key capabilities: - Communicate between Azure resources - Communicate with on-premises resources - Filter network traffic using NSG - Connect virtual network using VNET Peering

Lab 8: Configure private and public IP addresses, network routes, network interface, subnets, and virtual network. (20 minutes) - Create and configure VNET peering. - Create and configure VNET to VNET. - Verify virtual network connectivity. - Create virtual network gateway.

Q&A – 10 minutes Break – 10 minutes

Section 9: Building container instances and understanding orchestration process (15 minutes)

  • Create solutions and containers using Azure Kubernetes Service.
  • Container orchestration process.

Lab 9: In this lab we will cover the following: (20 minutes) - Create solutions that use Azure Kubernetes Service. - Configure diagnostic settings on resources. - Create a container image by using a Docker file. - Create an Azure Kubernetes cluster by using the Azure CLI and Azure Portal. - Publish an image to the Azure Container Registry. - Implement an application that runs on an Azure Container Instance. - Implement container instances by using Azure Kubernetes Service, Azure Service Fabric, and other tools. - Manage container settings by using code.

Wrap-up and remaining Q&A (10 minutes)