Your guide to Azure!
When moving your applications to the cloud, it makes sense to start using Azure Services to get the best service, highest availability (SLA) and worry free maintenance provided by Azure. The next step is to use Azure AD identities with Azure SQL Database.
Within a few steps you will have Azure AD user authentication setup.
Continue reading “Azure SQL configure Azure AD user authentication (Manual)”This simple manual has been created to create an user in Azure SQL and assign appropriate permissions. First connect to your SQL server. Either use and AAD admin account or the SQL Admin account.
Once connected, open a New Query window and run the following command on the Master database to create the user on the server in the Master database:
CREATE LOGIN '<Username>' WITH password='<strong-password>';
Now open again a New Query window, and select the database where you want to provision permissions to the just created user. Make sure to match the Username from the command above.
CREATE USER "<Username>";
The last step is to assign the desired role to the user. Change the value of the role, and match again the Username.
EXEC sp_addrolemember 'db_datawriter', '<Username';
This should do the trick. Let me know if you have any problems or need help.
Azure Application Gateway is an advance type of load-balancer. Where an Azure Load-balancer routes traffic on the transport layer (OSI Layer 4 | TCP + UDP) the Application Gateway is a way more advanced load-balancer. It can route based on URL as well on path’s. On top of that it can do much more, like SSL offloading, autoscaling, redirection, multiple site hosting and the most import of all, it can include a web application firewall (WAF)
With all the features that the Azure application gateway provides, we should be able to setup multiple websites listening on different ports and url’s behind one Azure Application Gateway with just one external IP address.
With this guide you should be able to setup an application gateway with multiple site hostname match and http to https redirect. In this manual we will be using Atlassian Jira and Confluence as an example.
So what are we going to setup:
For this guide the VNET, subnets and the virtual machine hosting both websites have already been deployed. During this guide we will not deploy a Web Application Firewall, I will tell more about that in upcoming blog article.
Last week I came across another post about Azure Heatmap. Every time when I need to find out what’s new on a specific feature in Azure, I will use Azure Heatmap. Awesome tool, I would recommend it to everybody!
Also, check out the new region lookup function to find out what is changing in your Azure Region
https://azureheatmap.azurewebsites.net/highlights
With Azure Lighthouse it is possible to manage your customers portals from one portal. Microsoft has added cross-tenant management for Security Center making it easy to overview customer security status and settings.
This way Service providers can leverage security from their own tenant.
If you want to learn more about Security Center and Lighthouse go to Microsoft Docs
Tonight I was honored to give a masterclass in Azure Basics. By going over the Azure Basics using lab exercises everybody learned how to:
Special thanks to Proxsys for hosting the Masterclass!
Last week I received the question from a customer where to get the SQL license key… By default you will see the key during SQL installation, but with an Azure deployed SQL virtual machine you will never get to see the key, as its deployed from the Azure Portal.
So within a few clicks you will be able to retreive the key.
Continue reading “How to get the license key for SQL Server Reporting Services in Azure”If you still have doubts about moving to Azure because of compliance and regulatory requirements, they will now be gone with Azure Dedicated hosts. Still in preview but ready for testing. Azure dedicated hosts are physical machines that are single-tenant configured where you can run your Linux and Windows virtual machines. This includes your own infrastructure, as well as your own maintenance policies for that host.
Azure Dedicated Hosts provide visibility over the server infrastructure running your Azure Virtual Machines. You get more control over the following:
You can mix and match different Azure Virtual Machine sizes within the same virtual machine series on a given host.
If you have any second thoughts, it is now open in preview for testing.
Last 2 months I’ve been working on renewing my Office 365 and Azure certifications. 4 years ago I already passed the “old” exams: 533, 534, 345, 346 and 347. This saved me a few exams. I was able to upgrade to Azure Administrator and Messaging administrator by passing the upgrade exams. For the Azure Solutions Architect I had to take the AZ-300 and AZ-301 exam as an upgrade exam was only valid for those who have passed the follow up exam of 534: 535.
So here is the final result, I will be looking into the Azure Security exam in the future (AZ-500) as well as the Microsoft 365 Certified Enterprise Administrator Expert (MS100 & MS101)
