Availability Set & Availability Zone

 Availability Set: -

Many definitions of availability set have been read but as far as I know in a few words Availability set is a service that protects your infrastructure from MS azure datacenters outage.

 

In Availability set we can see two services Fault domain and Update domain

 

Fault Domain: - If there is ever a power outage or any problem in the network, the fault domain helps keep the applications in your virtual machine running smoothly. The group of virtual machines that share a common power source and network switch. The virtual machines configured within your availability set are separated across up to three fault domains.

 

Update Domain: - It will help to make sure any 1 VMs will reboot at a time if there are any patches applied by MS as per their regular patches scheduled.

How to Create Availability Set: -

·       Click on all services

·       Then select the Availability set or search the Availability set

·        Provided the Name, resource Group Location etc.

·        Select the Fault domain/ Update Domain

    ·        Click on Create 

Availability Zone: - 

 This concept from Microsoft Azure I am recommended to prefer this concept only.

Azure Availability Zones are physically separate locations within each Azure region that tolerate local failures. Failures can range from software and hardware failures to events such as earthquakes, floods and fires. Failure tolerance is achieved through redundancy and logical isolation of Azure services. To ensure resiliency, at least three separate Availability Zones are present in all Availability Zone-enabled zones.

  There are three Availability Zones per supported Azure region

How to Enable MFA in Azure AD user

How to Enable MFA in Azure AD user :- 

Multi-factor authentication is a process in which user are promoted for sign -in process which is additional from an identification process.

The main benefit of MFA is it will enhance your organization's security by requiring our users to identify themselves by more than a username and password. While important, usernames and passwords are vulnerable to brute force attacks and can be stolen by third parties. It is necessary to secure our application and data by attackers and we can secure from MFA.

How to enable the multifactor -authentication, how you can enable the same?

 

·         Click on Azure Active Directory.

·         Under Security tab click on MFA

·         Under get started click on Configuration

·         Select: Allow users to create app passwords to sign in to non-browser apps

·         verification options: Methods available to users

ü  Call to phone

ü  Text message to phone

ü  Notification through the mobile app

ü  Verification code from mobile app or hardware token

 

Then go to directory and click on security option-

Click on MFA.

Click on additional Cloud based MFA settings.

I need to enable MFA on Charlie user  

We can select method for authentication

Azure

 

It is Cloud Computing service provided by Microsoft. It is an online portal that allows you to access and   manage cloud services and resources provided by Microsoft.

 Is Microsoft Azure is free?

When you start using Azure with a free account, you get USD2001 credit to spend in the first 30 days after you sign up. In addition, you get free monthly amounts of two groups of services: popular services, which are free for 12 months, and more than 40 other services that are free always.

What is Azure and examples?

Azure is a cloud computing platform which was launched by Microsoft in February 2010. It is an open and flexible cloud platform which helps in development, data storage, service hosting, and service management. The Azure tool hosts web applications over the internet with the help of Microsoft data centers.

Cloud Computing

Cloud Computing means it is the use of server on the internet to do your work and store the data, Manage and process data. Simple word, Instead of using your own server you would use someone else's server and pay them for that amount of time. 

 Here is a list of  top 10 cloud service providers: 

1. Amazon Web Services (AWS)
2. Microsoft Azure
3. Google Cloud
4. Alibaba Cloud
5. IBM Cloud
6. Oracle
7. Salesforce
8. SAP
9. Rackspace Cloud
10. VMWare

 Advantages of cloud computing :-

• Cloud computing is scalable and reliable 
• Quickly and easily access store information anywhere.
• Not required own infrastructure like server, Switch, router, firewall, datacenter, software licenses.
• Eventually, it will reduce the need for IT resources, including people, other maintenance and save our cost.
•  Easily access  anywhere, anytime in the whole world, using an internet connection.
•  Security. 
•  On-Demand Self-Service. It is one of the important and essential features of cloud computing.

Cloud

Cloud is a server that we can access from anywhere via the Internet. Cloud servers are available in data canters around the world. It is the use of servers on the internet to “store”, “manage” and “process” data.

 Different types of Services in Cloud:- 

 1- IAAS 

 2- PAAS 

 3- SAAS

Azure Regions

 A set of Azure datacenters that are deployed inside a latency-defined perimeter. The datacenters are connected through a dedicated, regional, low-latency network. Most Azure resources run in a specific Azure region. 

With 60+ announced regions, more than any other cloud provider, Azure makes it easy to choose the datacenter and regions that are right for you and your customers.

Microsoft Azure is now generally available from three new India regions: Central India (Pune), South India (Chennai), and West India (Mumbai). This marks the beginning of Microsoft cloud service availability from local datacenters in India.

Let's Start Microsoft Azure Journey

Here, We can learn Microsoft Azure Admin 104. In my blog, I am trying to tell Azure Admin work,  Provide practical knowledge and theory concept. If anyone has any issue or something went wrong in the blog, feel free to email me so I will make the correction accordingly. We are human so mistake will be happen from everyone. 

Resource Group:- 

It is logical group of container, that hold azure related resources and instance. We can use resource groups to control all of their members collectively. Without Resource groups we can not move ahead in azure portal. For every services we need resources group to perform next action.

Resources group is free service of azure. We can create multiple resources group.

Azure Resource Group Creation:-

• Sign in to the Azure portal. 
• Select Resources Group 

• Select Add
• Subscription: Select your Azure subscription
• Resource group: Enter a new resource group name
• Region: Select an Azure location, such as East US
•  Select Review + Create
• Create

Azure AD Dynamic Group

We can use this feature only when you have upgraded your Azure AD from Free to Premium.

 

Why we required dynamic group Azure AD: -

If we have 300 users in azure AD. We have received requirement from project team that we need to provide access those user under particular RG or subscription. How Azure Admin handle this situation? Is it  possible to add one by one user? Here is the solution for perform this action. 

We can create Dynamic group and add those user in group. Here is simple solution which azure ad provide us.

 

We required Azure AD Premium License: -

 

 

1-      We need to create one group in Azure AD

 

 

 

2-      Need to mention group name and other details while creating group. Make sure group type should be security. After that we need to add dynamic query. we need to defined query of users.

 

3-      Once we selected exact parameter and click outside portal then we can see below “Rule syntax”

 

 

 

4-      After Save and click on create

5-      Go to users and select user which we want to add in group. Select user properties and mention city name of the users.

6-      Then Please go to group and check its update or not with current time when you have been created.

 

7-      After that click on members and check whether your members are added in group or not.

 

One member added in group and come time it will take time to add other members as well.