AZ-305: Designing Microsoft Azure Infrastructure Solutions

https://www.pluralsight.com/courses/az-305-designing-microsoft-azure-infrastructure-solutions

by A Cloud Guru

Section I - Welcome to the Course

  1. Course Introduction
  2. Important Information about This Course

Section 2 - Architecting Azure Solutions
  1. Being a Solution Architect
    • roles of a solution architect
      • - initial requirements gathering
      • - solution scoping and pricing
      • - detailed solution design
      • - solution implementation
      • - handover to operations
    • Azure Well-Architected Framework: 
    • A set of architectural pillars, which help when designing a modern cloud solution.
    • Azure Architecture Center: A variety of patterns, practices, and guidelines for architecting solutions on Azure. Includes networking, hosting, applications, and more.
  2. Exploring the Cloud Adoption Framework
    • Cloud Adoption Framework: a set of steps that Microsoft have put together to help you on being successful on Azure
    • Service Map: Map communication between app components on Windows or Linux.
    • TCO Calculator: Estimate monthly Azure running costs compared to on-premises.
    • Azure Migrate: Tools for assessment and migration of machines, data, web apps, and more to Azure.
    • Cost Management: Native Azure cost monitoring and reporting.
    • Azure Advisor: Personalized recommendations ranging from performance to cost for your Azure resources.
    • Azure Monitor: Centralized, multi-faceted monitoring platform for both Azure and on-premises resources.
Section 3 - Design Identity and Access Management
  1. Introduction
    • identity is at the center of everything you do
    • authentication vs authorization
  2. Recapping Azure AD
    • you will have an azure subscription associated with an az ad tenant
    • A tenant can be associated with multiple subscriptions
    • A subscription is associated with only one tenant
    • Identities: user account, application, managed identity
    • To find applications registered with azure AD, from the azure portal go to Azure Active Directory then click on the App Registrations blade
    • two types of security groups: assigned and dynamic
  3. Understanding Azure AD Hybrid Identities
    • if you are looking for traditional on-premises Active Directory features, that aren't available for Azure AD, that's when you're probably going to use Azure AD Domain Services in the cloud.
    • Azure AD Connect is for synchronizing user identities and passwords between on-premises AD and Azure AD to enable single sign-on (SSO) for cloud applications, migrate user identities to Azure AD, and manage user access to Azure resources
  4. Exploring Azure AD Extemal Identities
    • for Azure B2B, you send an email invite to the external user
    • shows how to invite an external user
    • more external identity proviers are supported through Azure B2C than Azure AD B2B
    • for Azure B2C, you need to create an Azure Active Directory B2C tenant resource
      • you then switch into the new tenant and register your app and configure identity providers
  5. Recapping Azure Access Control
    • azure rback and azure ad roles overview
  6. Scenario: Design for Identity and Access Management
    • scenario of an app moving identity management to the cloud
    • an azure B2C tenant supports local accounts as well as social accounts
Section 4 - Design for Identity Security
  1. Introduction
  2. Securing Identities with Azure AD Identity Protection
    • az azure AD identity protection protects identities from being compromised
      • requires azure ad premium p2 license
    • demo of the Identity Protection resource
      • demo of Sign-in risk policy
      • demo of User risk policy
    • explains difference between Sign-in risk policy and user risk policy
  3. Protecting Resources with Azure AD Conditional Access
    • you need azure ad premium p1 licensing to use Conditional Access
    • you can have multiple Conditional Access policies
    • demo of creating Named Location
    • demo of creating a Conditional Access Policy 
  4. Protecting Privileges with Azure AD Privileged Identity Management (PIM)
  5. Designing Identity Govemance
  6. Scenario: Design for Identity Security
Section 5 - Design a Compute Strategy
  1. Introduction
  2. Architecting Virtual Machine-Based Solutions
  3. Architecting Container—Based Solutions
  4. Architecting Application Hosting in Azure
  5. Architecting Large-Scale Compute
  6. Isolating Compute-Based Solutions
  7. Scenario: Design a Compute Strategy
Section 6 - Design a Networking Strategy
  1. Introduction
  2. Recapping Virtual Networks
  3. Recapping Integrated Networks
  4. Recapping Hybrid Networks
  5. Designing Networks for Azure Services
  6. Scenario: Design a Networking Strategy
Section 7 - Design Connectivity and Security
  1. Introduction
  2. Recapping Azure Global Infrastructure
  3. Designing Highly Available Connectivity - Part I
  4. Designing Highly Available Connectivity - Part 2
  5. Exploring Network Security Services
    • azure firewall has network rules, application rules and DNAT rules
      • web based rules should go in application rules
    • azure firewall manager lets you centralize firewall policies
      • policies can be hierarchal
        • the policies have to be in the same region but the firewalls can be anywhere
    • WAF polcies are created per load balancer type: Application Gateway, Front Door, etc
  6. Scenario: Design Connectivity and Security
    • gives scenario why you would use traffic manager over front door
      • something to do with proxied vs direct call (huh?)
Section 8 - Design Apps for the Cloud
  1. Introduction
  2. Design Message-Driven Solutions
    • azure queue storage is a component of azure storage
      • - order not guarantied
      • - message can only be up to 64kb
    • service bus queues is a more advanced messaging service
      • - messages can only be up to 100mb
      • - order is guaranteed
    • service buy topics allow you to implement publish/subscribe messaging 
      • - it allows you to have more than on recipient 
  3. Design Event-Driven Solutions
    • Event Grid is very similar to azure service bus topics
    • demo of Event Grid
  4. Exploring Caching Services
    • azure cdn is very similar to frontdoor
    • besides microsoft's network, CDNs can use akamai or verizon
  5. Designing App Configuration and Deployments
    • two types of ARM templates
      • JSON
      • bicep
    • azure app configuration
      • centrally store application settings for all app components 
  6. Exploring Application Integration Services
  7. Exploring Azure AD App Proxy
  8. Scenario: Design Apps for the Cloud
Section 9 - Design Security for Apps in the Cloud
  1. Introduction
  2. Using Service Principals
    • demo of create a client secret for a user principal
    • demo of creating a storage account with a user principal and client secret
  3. Using Managed Identities
  4. Understanding API Security and OAuth 20
  5. Exploring Delegated Permissions and Consent - Part 1
  6. Exploring Delegated Permissions and Consent - Part 2
  7. Exploring Application Permissions and Consent
  8. Understanding Key Vault
  9. Scenario: Design Security for Apps in the Cloud
Section 10- Design Data Platforms
  1. Introduction
  2. Recapping Storage Accounts
  3. Recapping Azure Files Services
  4. Exploring Azure SQL Services
  5. Exploring Cosmos DB and Table Storage
  6. Scenario: Design Data Platforms
Section 11 - Design an Analytics Platform
  1. Introduction
  2. Exploring Azure Data Lake Storage
  3. Exploring Azure Analytics Services
  4. Exploring Azure Data Factory
  5. Exploring Azure Databricks
  6. Scenario: Design an Analytics Platform
Section 12 - Design Security for Data
  1. Introduction
  2. Controlling Access to Azure Storage
  3. Protecting Data in Azure Storage
  4. Controlling Access to Azure SQL Services
  5. Protecting Data in Azure SQL Services
  6. Scenario: Design Security for Data
Section 13 - Design Recovery and Resilience
  1. Introduction
  2. Design Recovery and Resilience for Azure Storage
  3. Design Recovery and Resilience for Azure SQL Services - Part I
  4. Design Recovery and Resilience for Azure SQL Services - Part 2
  5. Design Recovery and Resilience for Cosmos DB
  6. Back Up Workloads with Azure Backup
  7. Design for Business Continuity with Azure Site Recovery
  8. Scenario: Design Recovery and Resilience
Section 14 - Design Migrations
  1. Introduction
  2. Migrate Workloads with Azure Migrate
  3. Migrate Data with Database Migration Service
  4. Explore Azure Data Transfer Technologies
  5. Scenario: Design Migrations
Section 15 - Design Governance
  1. Introduction
  2. Organizing Azure Resources
  3. Organizing Azure AD
  4. Understanding Azure Policy
  5. Exploring Tools to Enforce Standards
  6. Scenario: Design Governance
Section 16 - Designing an Auditing and Monitoring Strategy
  1. Introduction
  2. Design Monitoring in Azure
  3. Exploring Logging and Retention
  4. Exploring Resource Monitoring Tools
  5. Design Monitoring for Security and Standards
  6. Design Monitoring Alerts and Actions
  7. Scenario: Design an Auditing and Monitoring Strategy
Section 17 - Final Steps
  1. Preparing for the Exam
  2. Course Completion

Comments

Post a Comment

Popular posts from this blog

Angular Routing and Navigation Playbook

Image
https://www.pluralsight.com/courses/angular-routing-navigation-playbook by Lara Newsom Course Overview Course Overview Course Introduction and Code Examples Course Introduction and Code Examples Basic Angular Routing Setup Introduction to Angular Routing Discussion: Angular RouterModule Exports Demo: Bootstrap Angular RouterModule Discussion: Declaring Routes angular has tow route path match strategies: prefix based or full match prefix is the default Demo: Declaring Default and Home Routes two options for declaring a default route: {path: ' ', componenet: DefaultComponent} {path: ' ', redirectTo: 'home', pathMatch: 'full'} Discussion: Child Routes and Route Order Demo: Declaring a Wildcard Route wild card routes is: path: '**' to enabled logging all navigation events to the console, enable tracing Demo: Hooking into Router Events Routing in Standalone Component Applications Introduction to Standalone Components and Routing Demo: Bootstrapping Ro...
Read more

Working with Files in C# 10

https://www.pluralsight.com/courses/c-sharp-10-working-files by Jason Roberts Course Overview Course Overview Sandbox Managing Files and Directories Introduction Creating a New Console App Checking if a File Exists you can use to check if file path is an absolute path: Path.IsPathFullyQualified Getting the Parent Directory of a Path Checking if a Directory Exists and Creating New Directories Copying a File Moving a File Getting the File Extension from a File Name Checkpoint 01- Get the Parent Directory for a Path Changing a Filename Extension Checkpoint 02 - Get the Extension Part of a Filename Deleting a Directory Enumerating All the Files in a Directory Summary Exercise 01- Copying and Deleting Files Monitoring the File System for Changes Introduction Introducing the FileSystemWatcher Class The IntemalBufferSize Property Configuring Notification Filters Additional Properties Refactoring to Use a FileSystemWatcher use FileSystemWatcher to watch for file changes in a folder Checkpo...
Read more

Mastering Git

https://app.pluralsight.com/library/courses/master-git/table-of-contents by Paolo Perrotta Module 1: Course Overview Course Overview Module 2: The Four Areas: Introduction Version Check About This Training A Note About the Command Line Introducing the Four Areas The Working Area The Repository The Index Module 3: The Four Areas: Basic Workflow Revisiting the Basics Moving Data to the Right Moving Data to the Left Removing Files Renaming Files A Quick Summary Module 4: The Four Areas: Git Reset Understanding Reset A Reset Example More Reset Examples Module 5: The Four Areas: Advanced Tools Stashing Data Solving Conflicts Working with Paths Committing Parts of a File Introducing Switch and Restore Git Is a Toolbox Module 6: History: Exploring the Past Becoming a History Surgeon Referencing Commits to show changes in a commit: git show HEAD to show changes in a commit parent: git show HEAD^ Tracking Changes in History Browsing the Log Module 7: History: Fixing Mistakes Reviewing the Golde...
Read more