- Azure subscription and service limits, quotas, and constraints
- Azure Documentation Center
- Azure Free Trial
Topics:
- Extend on-premises;
- Leverage Azure networking services: implement load balancing using Azure Load Balancer and Azure Traffic Manager;
- Define DNS, DHCP, and IP addressing configuration;
- Define static IP reservations;
- Apply Network Security Groups (NSGs) and User Defined Routes (UDRs);
- Deploy Azure Application Gateway.
Resources:
- https://azure.microsoft.com/en-us/resources/videos/extending-your-premises-to-microsoft-azure-with-virtual-networks-and-expressroute/
- https://technet.microsoft.com/en-us/library/dn786406.aspx
- https://docs.microsoft.com/en-us/azure/virtual-network/virtual-networks-overview
- https://docs.microsoft.com/en-us/azure/virtual-network/virtual-networks-nsg
- https://docs.microsoft.com/en-us/azure/virtual-network/virtual-networks-udr-overview
- https://docs.microsoft.com/en-us/azure/application-gateway/application-gateway-introduction
Topics:
- Describe Azure point-to-site (P2S) and site-to-site (S2S) VPN, leverage Azure VPN and ExpressRoute in network architecture
Resources:
- https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-about-vpngateways
- https://docs.microsoft.com/en-us/azure/architecture/reference-architectures/hybrid-networking/
- https://docs.microsoft.com/en-us/azure/expressroute/
- https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-howto-point-to-site-resource-manager-portal
- https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-howto-site-to-site-resource-manager-portal
Topics:
- Describe the differences between Active Directory on-premises and Azure Active Directory (Azure AD), programmatically access Azure AD using Graph API, secure access to resources from Azure AD applications using OAuth and OpenID Connect.
Resources:
- https://docs.microsoft.com/en-us/azure/active-directory/active-directory-whatis
- https://docs.microsoft.com/en-us/azure/architecture/reference-architectures/identity/azure-ad
- https://blogs.technet.microsoft.com/chrisavis/2013/04/24/active-directory-differences-between-on-premise-and-in-the-cloud/
- https://docs.microsoft.com/en-us/azure/active-directory/develop/active-directory-graph-api
- https://docs.microsoft.com/en-us/azure/active-directory/develop/active-directory-graph-api-quickstart
- https://docs.microsoft.com/en-us/azure/active-directory/develop/active-directory-v2-protocols-oidc
- https://docs.microsoft.com/en-us/azure/active-directory/develop/active-directory-protocols-openid-connect-code
Topics:
- Use SAML claims to authenticate to on-premises resources, describe AD Connect synchronization, implement federated identities using Active Directory Federation Services (ADFS).
Resources:
- https://docs.microsoft.com/en-us/azure/active-directory/develop/active-directory-single-sign-on-protocol-reference
- https://docs.microsoft.com/en-us/azure/active-directory/connect/active-directory-aadconnectsync-whatis
- https://docs.microsoft.com/en-us/windows-server/identity/active-directory-federation-services
- https://docs.microsoft.com/en-us/azure/active-directory/connect/active-directory-aadconnect-azure-adfs
- https://docs.microsoft.com/en-us/azure/app-service-web/web-sites-authentication-authorization
Topics:
- Provide access to resources using identity providers, such as Microsoft account, Facebook, Google, and Yahoo!;
- Manage identity and access by using Azure AD B2C;
- Implement Azure AD B2B.
Resources:
- https://docs.microsoft.com/en-us/azure/active-directory-b2c/active-directory-b2c-overview
- https://docs.microsoft.com/en-us/azure/active-directory-b2c/active-directory-b2c-setup-msa-app
- https://docs.microsoft.com/en-us/azure/active-directory-b2c/active-directory-b2c-setup-goog-app
- https://docs.microsoft.com/en-us/azure/active-directory-b2c/active-directory-b2c-setup-fb-app
- https://azure.microsoft.com/en-us/resources/videos/consumer-identity-and-access-management-in-the-cloud-azure-ad-b2c/
- https://docs.microsoft.com/en-us/azure/active-directory/active-directory-b2b-what-is-azure-ad-b2b
Topics:
- Identify security requirements for data in transit and data at rest;
- Identify security requirements using Azure services, including Azure Storage Encryption, Azure Disk Encryption, and Azure SQL Database TDE.
Resouces:
- https://docs.microsoft.com/en-us/azure/security/azure-security-data-encryption-best-practices
- https://docs.microsoft.com/en-us/azure/security/azure-security-getting-started
- https://docs.microsoft.com/en-us/azure/security/security-best-practices-and-patterns
- https://docs.microsoft.com/en-us/azure/storage/storage-service-encryption
- https://docs.microsoft.com/en-us/azure/security/azure-security-disk-encryption
- https://msdn.microsoft.com/en-us/library/dn948096(v=sql.120).aspx
- https://docs.microsoft.com/en-us/sql/relational-databases/security/encryption/transparent-data-encryption-tde
Topics:
- Secure resource scopes, such as the ability to create VMs and Azure Web Apps;
- Implement Azure RBAC standard roles;
- Design Azure RBAC custom roles.
Resouces:
- https://docs.microsoft.com/en-us/azure/active-directory/role-based-access-control-what-is
- https://docs.microsoft.com/en-us/azure/active-directory/role-based-access-built-in-roles
- https://docs.microsoft.com/en-us/azure/active-directory/role-based-access-control-configure
- https://docs.microsoft.com/en-us/azure/active-directory/role-based-access-control-custom-roles
Topics:
- Identify, assess, and mitigate security risks by using Azure Security Center, Operations Management Suite, and other services .
Resources:
- https://docs.microsoft.com/en-us/azure/security-center/security-center-incident-response
- https://docs.microsoft.com/en-us/azure/security-center/security-center-policies
- https://docs.microsoft.com/en-us/azure/security-center/security-center-managing-and-responding-alerts
- https://docs.microsoft.com/en-us/azure/security-center/security-center-threat-report
- https://docs.microsoft.com/en-us/azure/security-center/security-center-planning-and-operations-guide
- https://channel9.msdn.com/Blogs/Azure-Security-Videos/Mitigating-Security-Issues-using-Azure-Security-Center
- https://docs.microsoft.com/en-us/azure/operations-management-suite/
- https://channel9.msdn.com/Blogs/Taste-of-Premier/ToP1703
Topics:
- Design storage options for data, including Table Storage, SQL Database, DocumentDB, Blob Storage, MongoDB, and MySQL;
- Design security options for SQL Database or Azure Storage.
Resouces:
- https://azure.microsoft.com/en-us/blog/azure-storage-table-design-guide/
- https://docs.microsoft.com/en-us/azure/storage/storage-introduction
- https://docs.microsoft.com/en-us/azure/storage/storage-decide-blobs-files-disks
- https://docs.microsoft.com/en-us/azure/storage/storage-scalability-targets
- https://docs.microsoft.com/en-us/azure/storage/storage-premium-storage-performance
- https://docs.microsoft.com/en-us/azure/storage/storage-create-storage-account
- https://docs.microsoft.com/en-us/azure/sql-database/sql-database-security-overview
- https://download.microsoft.com/download/A/C/3/AC305059-2B3F-4B08-9952-34CDCA8115A9/Security_and_Azure_SQL_Database_White_paper.pdf
- https://docs.microsoft.com/en-us/azure/storage/storage-security-guide
- https://docs.microsoft.com/en-us/azure/security/security-storage-overview
- https://docs.microsoft.com/en-us/azure/storage/storage-concurrency
Topics:
- Select the appropriate storage for performance, identify storage options for cloud services and hybrid scenarios with compute on-premises and storage on Azure.
Resources:
- https://docs.microsoft.com/en-us/azure/storage/storage-performance-checklist
- https://docs.microsoft.com/en-us/azure/storage/storage-scalability-targets
- https://docs.microsoft.com/en-us/azure/storage/storage-premium-storage
Topics:
- Design high-performance computing (HPC) and other compute-intensive applications using Azure Services.
Resources:
- https://docs.microsoft.com/en-us/azure/batch/batch-hpc-solutions
- https://docs.microsoft.com/en-us/azure/virtual-machines/windows/sizes-hpc
- https://azure.microsoft.com/en-us/solutions/architecture/hpc-cluster/
- https://docs.microsoft.com/en-us/azure/virtual-machines/windows/hpcpack-cluster-options
Topics:
- Implement Azure Batch for scalable processing, design stateless components to accommodate scale, use Azure Scheduler.
Resources:
- https://docs.microsoft.com/en-us/azure/batch/batch-technical-overview
- https://docs.microsoft.com/en-us/azure/batch/batch-api-basics
- https://docs.microsoft.com/en-us/azure/batch/
- https://docs.microsoft.com/en-us/azure/service-fabric/service-fabric-application-scenarios
- https://docs.microsoft.com/en-us/azure/service-fabric/service-fabric-reliable-services-introduction
- https://docs.microsoft.com/en-us/azure/service-fabric/service-fabric-application-scenarios#design-applications-composed-of-stateless-and-stateful-microservices
- https://docs.microsoft.com/en-us/azure/service-fabric/service-fabric-application-scenarios#an-application-built-using-stateless-services
- https://docs.microsoft.com/en-us/azure/scheduler/scheduler-get-started-portal
- https://docs.microsoft.com/en-us/azure/scheduler/
Topics:
- Design Azure architecture using Azure services, such as Azure AD, Azure App Service, API Management, Azure Cache, Azure Search, Service Bus, Event Hubs, Stream Analytics, and IoT Hub;
- Identify the appropriate use of Azure Machine Learning, big data, Azure Media Services, and Azure Search services.
Resources:
- https://docs.microsoft.com/en-us/azure/architecture/
- https://docs.microsoft.com/en-us/azure/architecture/guide/
- https://docs.microsoft.com/en-us/azure/architecture/resiliency/
- https://docs.microsoft.com/en-us/azure/architecture/patterns/
- https://docs.microsoft.com/en-us/azure/architecture/reference-architectures/
- https://docs.microsoft.com/en-us/azure/security/security-application-architecture-on-azure
- https://docs.microsoft.com/en-us/azure/active-directory/active-directory-architecture
- https://azure.microsoft.com/en-us/resources/videos/build-2015-azure-app-service-architecture/
- https://docs.microsoft.com/en-us/azure/architecture/best-practices/caching
Topics:
- Use a queue-centric pattern for development;
- Select appropriate technology, such as Azure Storage Queues, Azure Service Bus queues, topics, subscriptions, and Azure Event Hubs.
Resources:
- https://docs.microsoft.com/en-us/aspnet/aspnet/overview/developing-apps-with-windows-azure/building-real-world-cloud-apps-with-windows-azure/queue-centric-work-pattern
- https://docs.microsoft.com/en-us/azure/architecture/patterns/priority-queue
- https://docs.microsoft.com/en-us/azure/service-bus-messaging/service-bus-azure-and-service-bus-queues-compared-contrasted
- http://www.codemag.com/article/1112041
- https://docs.microsoft.com/en-us/azure/event-hubs/event-hubs-what-is-event-hubs
- https://docs.microsoft.com/en-us/azure/service-bus-messaging/service-bus-queues-topics-subscriptions
- https://docs.microsoft.com/en-us/azure/service-bus-messaging/service-bus-fundamentals-hybrid-solutions
- https://docs.microsoft.com/en-us/azure/service-bus-messaging/service-bus-architecture
Topics:
- Implement Azure Batch for compute-intensive tasks, use Azure WebJobs to implement background tasks, use Azure Functions to implement event-driven actions, leverage Azure Scheduler to run processes at preset/recurring timeslots.
Resources:
- https://docs.microsoft.com/en-us/azure/batch/
- https://docs.microsoft.com/en-us/azure/app-service-web/websites-webjobs-resources
- https://docs.microsoft.com/en-us/azure/azure-functions/functions-overview
- https://docs.microsoft.com/en-us/azure/scheduler/
Topics:
- Connect to on-premises data from Azure applications using Service Bus Relay, Hybrid Connections, or the Azure Web App virtual private network (VPN) capability;
- Identify constraints for connectivity with VPN;
- Identify options for joining VMs to domains or cloud services.
Resources:
- https://docs.microsoft.com/en-us/azure/service-bus-relay/relay-what-is-it
- https://docs.microsoft.com/en-us/azure/biztalk-services/integration-hybrid-connection-overview
- https://docs.microsoft.com/en-us/azure/app-service/app-service-hybrid-connections
- https://docs.microsoft.com/en-us/azure/service-bus-relay/relay-hybrid-connections-protocol
- https://docs.microsoft.com/en-us/azure/app-service-web/web-sites-integrate-with-vnet
Topics:
- Design Azure App Service Web Apps, design custom web API, offload long-running applications using WebJobs, secure Web API using Azure AD, design Web Apps for scalability and performance, deploy Azure Web Apps to multiple regions for high availability, deploy Web Apps, create App Service plans, design Web Apps for business continuity, configure data replication patterns, update Azure Web Apps with minimal downtime, back up and restore data, design for disaster recovery.
Resources:
- https://docs.microsoft.com/en-us/azure/app-service-web/app-service-best-practices
- https://docs.microsoft.com/en-us/azure/architecture/best-practices/api-design
- https://docs.microsoft.com/en-us/azure/active-directory/develop/active-directory-devquickstarts-webapi-dotnet
- https://docs.microsoft.com/en-us/azure/api-management/api-management-howto-protect-backend-with-aad
- https://docs.microsoft.com/en-us/azure/architecture/reference-architectures/managed-web-app/scalable-web-app
- https://docs.microsoft.com/en-us/azure/architecture/reference-architectures/managed-web-app/multi-region-web-app
- https://docs.microsoft.com/en-us/azure/app-service-web/web-sites-deploy
- https://docs.microsoft.com/en-us/azure/app-service/azure-web-sites-web-hosting-plans-in-depth-overview
- https://docs.microsoft.com/en-us/azure/architecture/resiliency/
- https://azure.microsoft.com/en-us/blog/updated-azure-business-continuity-technical-guidance/
- https://docs.microsoft.com/en-us/azure/sql-database/sql-database-designing-cloud-solutions-for-disaster-recovery
- https://docs.microsoft.com/en-us/azure/app-service-web/web-sites-staged-publishing
- https://docs.microsoft.com/en-us/azure/backup/backup-introduction-to-azure-backup
- https://channel9.msdn.com/Events/Ignite/2016/BRK3284
- https://docs.microsoft.com/en-us/azure/site-recovery/site-recovery-network-design
Topics:
- Design Azure Mobile Services;
- Consume Mobile Apps from cross-platform clients;
- Integrate offline sync capabilities into an application;
- Extend Mobile Apps using custom code;
- Implement Mobile Apps using Microsoft .NET or Node.js;
- Secure Mobile Apps using Azure AD;
- Implement push notification services in Mobile Apps;
- Send push notifications to all subscribers, specific subscribers, or a segment of subscribers.
Resources:
- https://docs.microsoft.com/en-us/azure/app-service/app-service-value-prop-what-is
- https://docs.microsoft.com/en-us/azure/app-service-mobile/app-service-mobile-value-prop
- https://docs.microsoft.com/en-us/azure/app-service/app-service-how-works-readme
- https://azure.microsoft.com/en-in/documentation/learning-paths/appservice-mobileapps/
- https://developer.xamarin.com/guides/xamarin-forms/cloud-services/consuming/azure/
- https://developer.xamarin.com/guides/xamarin-forms/cloud-services/sync/azure-mobile-apps/
- https://docs.microsoft.com/en-us/azure/app-service-mobile/app-service-mobile-offline-data-sync
- https://channel9.msdn.com/Shows/Azure-Friday/Azure-App-Service-Mobile-Apps-with-Kirill-Gavrylyuk
- https://docs.microsoft.com/en-us/azure/app-service-mobile/app-service-mobile-node-backend-how-to-use-server-sdk
- https://azure.microsoft.com/en-in/resources/samples/app-service-mobile-nodejs-backend-quickstart/
- https://docs.microsoft.com/en-us/azure/app-service-mobile/app-service-mobile-dotnet-backend-how-to-use-server-sdk
- https://docs.microsoft.com/en-us/azure/app-service-mobile/app-service-mobile-dotnet-backend-how-to-use-server-sdk
- https://azure.microsoft.com/en-us/resources/videos/building-native-client-and-mobile-apps-using-active-directory-for-sign-in/
- https://docs.microsoft.com/en-us/azure/app-service-mobile/app-service-mobile-how-to-configure-active-directory-authentication
- https://docs.microsoft.com/en-us/azure/app-service-mobile/app-service-mobile-android-get-started-push
- https://docs.microsoft.com/en-us/azure/app-service-mobile/app-service-mobile-ios-get-started-push
- https://docs.microsoft.com/en-us/azure/notification-hubs/notification-hubs-windows-mobile-push-notifications-mpns
- https://docs.microsoft.com/en-us/azure/notification-hubs/notification-hubs-aspnet-backend-windows-dotnet-wns-notification
- https://docs.microsoft.com/en-us/azure/notification-hubs/notification-hubs-push-notification-overview
- https://docs.microsoft.com/en-us/azure/notification-hubs/notification-hubs-aspnet-cross-platform-notification
Topics:
- Identify the Microsoft products and services for monitoring Azure solutions;
- Leverage the capabilities of Azure Operations Management Suite and Azure Application Insights for monitoring Azure solutions;
- Leverage built-in Azure capabilities;
- Identify third-party monitoring tools, including open source;
- Describe Azure architecture constructs, such as availability sets and update domains, and how they impact a patching strategy;
- Analyze logs by using the Azure Operations Management Suite.
Resources:
- https://docs.microsoft.com/en-us/azure/monitoring-and-diagnostics/monitoring-overview
- https://docs.microsoft.com/en-us/azure/operations-management-suite/operations-management-suite-overview
- https://docs.microsoft.com/en-us/azure/application-insights/app-insights-overview
- https://docs.microsoft.com/en-us/azure/virtual-machines/windows/manage-availability
- https://docs.microsoft.com/en-us/azure/virtual-machines/windows/infrastructure-availability-sets-guidelines
- https://blogs.msdn.microsoft.com/plankytronixx/2015/05/01/azure-exam-prep-fault-domains-and-update-domains/
- https://docs.microsoft.com/en-us/azure/virtual-machines/windows/infrastructure-availability-sets-guidelines
- https://docs.microsoft.com/en-us/azure/virtual-machines/windows/regions-and-availability
- https://docs.microsoft.com/en-us/azure/virtual-machines/windows/infrastructure-virtual-machine-guidelines
- https://docs.microsoft.com/en-us/azure/virtual-machines/windows/infrastructure-subscription-accounts-guidelines
- https://docs.microsoft.com/en-us/azure/virtual-machines/windows/infrastructure-naming-guidelines
- https://docs.microsoft.com/en-us/azure/virtual-machines/windows/infrastructure-resource-groups-guidelines
- https://docs.microsoft.com/en-us/azure/virtual-machines/windows/infrastructure-storage-solutions-guidelines
- https://docs.microsoft.com/en-us/azure/virtual-machines/windows/infrastructure-networking-guidelines
- https://docs.microsoft.com/en-us/azure/virtual-machines/windows/infrastructure-example
- https://docs.microsoft.com/en-us/azure/log-analytics/log-analytics-overview
- https://docs.microsoft.com/en-us/azure/log-analytics/
- https://channel9.msdn.com/Events/Ignite/2015/BRK3500
Topics:
- Leverage the architectural capabilities of BC/DR, describe Hyper-V Replica and Azure Site Recovery (ASR), describe use cases for Hyper-V Replica and ASR.
Resouces:
- https://docs.microsoft.com/en-us/azure/best-practices-availability-paired-regions
- https://docs.microsoft.com/en-us/azure/architecture/resiliency/disaster-recovery-azure-applications
- https://docs.microsoft.com/en-us/azure/site-recovery/site-recovery-vmm-to-azure
- https://docs.microsoft.com/en-us/azure/site-recovery/site-recovery-architecture-hyper-v-to-azure
- https://docs.microsoft.com/en-us/azure/site-recovery/site-recovery-support-matrix-to-azure
- https://docs.microsoft.com/en-us/azure/site-recovery/hyper-v-site-walkthrough-overview
Topics:
- Design and deploy Azure Backup and other Microsoft backup solutions for Azure, leverage use cases when StorSimple and System Center Data Protection Manager would be appropriate, design and deploy Azure Site recovery.
Resources:
- https://docs.microsoft.com/en-us/azure/storsimple/
- https://azure.microsoft.com/en-us/resources/videos/getting-started-with-azure-backup-1-of-3-set-up-a-backup-vault-on-azure/
- https://docs.microsoft.com/en-us/azure/backup/backup-introduction-to-azure-backup
- https://docs.microsoft.com/en-us/azure/backup/backup-azure-dpm-introduction
- https://docs.microsoft.com/en-us/azure/site-recovery/
Topics:
- Create a PowerShell script specific to Azure, automate tasks by using the Azure Operations Management Suite.
Resources:
- https://docs.microsoft.com/en-us/azure/virtual-machines/windows/classic/create-powershell
- https://docs.microsoft.com/en-us/powershell/azure/overview
- https://azure.microsoft.com/en-us/resources/videos/install-and-use-azure-powershell/
- https://www.youtube.com/watch?v=UpAGtyasTbI
- https://channel9.msdn.com/Events/Ignite/2016/BRK2178-TS
- https://blogs.technet.microsoft.com/msoms/2016/04/18/getting-started-with-oms-automation-making-the-connection/
- https://docs.microsoft.com/en-us/azure/operations-management-suite/operations-management-suite-solutions-resources-automation
- https://channel9.msdn.com/Blogs/Regular-IT-Guy/Automate-everywhere-with-the-new-Azure-Automation-in-OMS--with-special-guest-Jeffrey-Snover
Topics:
- Evaluate when to use Azure Automation, Chef, Puppet, PowerShell, or Desired State Configuration (DSC)
Resources:
- https://docs.microsoft.com/en-us/azure/automation/automation-dsc-overview
- https://azure.microsoft.com/en-us/blog/what-why-how-azure-automation-desired-state-configuration/
- https://powershell.org/forums/topic/chef-vs-dsc-implementation/
- https://powershell.org/forums/topic/chef-vs-dsc-implementation/
- https://docs.chef.io/azure_portal.html
- https://docs.microsoft.com/pt-br/azure/virtual-machines/windows/chef-automation
- https://puppet.com/product/managed-technology/microsoft-windows-azure
- https://puppet.com/blog/get-started-azure-puppet
- https://azure.microsoft.com/pt-br/blog/azure-virtual-machines-using-chef-puppet-and-docker-for-managing-linux-vms/
Topics:
- Design VM deployments leveraging availability sets, fault domains, and update domains in Azure; select appropriate VM SKUs.
Resources:
- https://docs.microsoft.com/en-us/azure/virtual-machines/windows/create-availability-set
- https://docs.microsoft.com/en-us/azure/virtual-machines/windows/quick-create-portal
- https://docs.microsoft.com/en-us/azure/azure-resource-manager/best-practices-resource-manager-design-templates
- https://blogs.msdn.microsoft.com/azuregov/2017/03/29/microsoft-azure-iaas-architecture-best-practices-for-arm/
- https://docs.microsoft.com/en-us/azure/virtual-machines/windows/overview
- https://docs.microsoft.com/en-us/azure/virtual-machines/windows/quick-create-portal
- https://docs.microsoft.com/en-us/azure/virtual-machines/windows/
Topics:
- Author ARM templates;
- Deploy ARM templates via the portal, PowerShell, and CL.
Resources:
- https://docs.microsoft.com/en-us/azure/azure-resource-manager/resource-group-authoring-templates
- https://docs.microsoft.com/en-us/azure/azure-resource-manager/resource-manager-create-first-template
- https://azure.microsoft.com/en-us/resources/templates/
- https://docs.microsoft.com/en-us/azure/azure-resource-manager/resource-group-template-deploy
- https://docs.microsoft.com/en-us/azure/azure-resource-manager/resource-group-template-deploy-cli
- https://docs.microsoft.com/en-us/azure/azure-resource-manager/resource-group-template-deploy-portal
Topics:
- Implement regional availability and high availability for Azure deployments.
Resources: