jikypEJz

1How does azure work? 
2Virtualization 
3
4Virtualization separates the tight coupling between a computer’s hardware and its operating system using an abstraction layer called a hypervisor.  
5
6The hypervisor emulates all the functions of a real computer and its CPU in a Virtual Machine (VM). It can run multiple VMs at the same time, optimize the capacity of the obstructed hardware, and each VM can run any compatible OS – such as Windows or Linux. 
7
8Azure essentially repeats what we just learned – but on a large scale in Microsoft datacentres throughout the world. Each data center has mini racks filled with servers; each server includes a hypervisor to run multiple VMs. A network switch provides connectivity to all those servers. And one server in each rack runs a special piece of software called a Fabric Controller. Each Fabric controller is connected to another special piece of software – knows as The Orchestrator 
9
10The Orchestrator is responsible for managing everything that happens in Azure, including responding to user requests, and users make requests using The Orchestrator’s Web API. The Web API can be called by many tools, including the user interface of the Azure Portal. So, when a user makes the request to create a VM; The Orchestrator packages everything that’s needed, picks the best server rack, and then sends the package and request to the fabric controller. Once the Fabric controller has created the VM, the user can connect to it.  Azure makes it easy for developers and IT administrators to be agile when they build, deploy and manage their applications and services. 
11
12Elasticity / Scalability 
13
14Scale refers to adding network bandwidth, memory, storage, or compute power to achieve better performance. 
15
16Scaling up, or vertical scaling means to increase the memory, storage, or compute power on an existing virtual machine. For example, you can add additional memory to a web or database server to make it run faster. 
17
18Scaling out, or horizontal scaling means to add extra virtual machines to power your application. For example, you might create many virtual machines configured in the same way and use a load balancer to distribute work across them. 
19
20The cloud is elastic. You could scale down or scale in your deployment if you needed to scale up or scale out only temporarily. Scaling down or scaling in can help you save money. Azure Advisor and Azure Cost Management are two services that help you optimize cloud spend. You can use these services to identify where you're using more than you need, and then scale back to the capacity you're using. 
21
22 
23
24 
25
26 
27
28 
29
30What is cloud computing? 
31
32Cloud computing is the delivery of computing services over the Internet using a pay-as-you-go pricing model. Put another way; it's a way to rent compute power and storage from someone else's data center. This is often favourable for business because of its intrinsic flexibility. 
33
34 
35
36Pillars of Azure 
37
381) Compute Services 
39
40Compute services cover VMs, containers and serverless computing including microservices. These services are primarily for performing calculations, executing logic and running applications.  
41
422) Cloud Storage 
43
44Cloud storage includes disks attached to VMs as well as more structured formats such as vault shares or databases, all of which can expand and shrink as necessary. 
45
463) Networking 
47
48Networking features let you set up private network connections to your on-premises environments and configure and control traffic into and out of Azure efficiently, helping to optimize application performance and scalability.  
49
504) App Hosting 
51
52Azure app host is a feature that lets you run your entire web application on a managed platform in Windows or Linux. Plus, the Azure marketplace has a huge range of third-party products you can run in Azure, including SAP and SQL database solutions. 
53
54 
55
565) Artificial Intelligence 
57
58AI, including machine learning and prebuilt cognitive services. These services help you search and analyze existing data to forecast future behaviors, outcomes and trends. These predictions can even be used to make absent devices smarter. 
59
606) Internet of Things 
61
62Azure enables you to integrate sensors and devices and manage them with IoT-Hubs. Allowing you to create full-feature dashboards and apps to monitor and control all your assets. 
63
647) Integration 
65
66Logic apps and service bus connect applications and services and allow for workflows to orchestrate business processes. Whether those connected systems are on premises or in the cloud. 
67
688) Security 
69
70Security is integrated into every aspect of Azure, including a harden of the structure and global security intelligence monitoring. With Azure’s identity management you have tight control over who has access to each service and the data in it 
71
72 
73
74Infrastructure As A Service ( IaaS ) 
75
76Common IaaS business scenarios 
77
78Typical things businesses do with IaaS include: 
79
80Test and development. Teams can quickly set up and dismantle test and development environments, bringing new applications to market faster. IaaS makes it quick and economical to scale up dev-test environments up and down. 
81
82 
83
84Website hosting. Running websites using IaaS can be less expensive than traditional web hosting. 
85
86 
87
88Storage, backup, and recovery. Organizations avoid the capital outlay for storage and complexity of storage management, which typically requires a skilled staff to manage data and meet legal and compliance requirements. IaaS is useful for handling unpredictable demand and steadily growing storage needs. It can also simplify planning and management of backup and recovery systems. 
89
90 
91
92Web apps. IaaS provides all the infrastructure to support web apps, including storage, web and application servers, and networking resources. Organizations can quickly deploy web apps on IaaS and easily scale infrastructure up and down when demand for the apps is unpredictable. 
93
94 
95
96High-performance computing. High-performance computing (HPC) on supercomputers, computer grids, or computer clusters helps solve complex problems involving millions of variables or calculations. Examples include earthquake and protein folding simulations, climate and weather predictions, financial modeling, and evaluating product designs. 
97
98Big data analysis. Big data is a popular term for massive data sets that contain potentially valuable patterns, trends, and associations. Mining data sets to locate or tease out these hidden patterns requires a huge amount of processing power; which IaaS economically provides. 
99
100 
101
102Understand Region Pairs 
103
104Availability zones are created using one or more datacenters, and there is a minimum of three zones within a single region. However, it's possible that a large enough disaster could cause an outage large enough to affect even two datacenters. That's why Azure also creates region pairs. 
105
106What is a region pair? 
107
108Each Azure region is always paired with another region within the same geography (such as US, Europe, or Asia) at least 300 miles away. This approach allows for the replication of resources (such as virtual machine storage) across a geography that helps reduce the likelihood of interruptions due to events such as natural disasters, civil unrest, power outages, or physical network outages affecting both regions at once. If a region in a pair was affected by a natural disaster, for instance, services would automatically fail over to other region in its region pair. 
109
110Examples of region pairs in Azure are West US paired with East US, and South-east Asia paired with East Asia. 
111
112 
113
114Azure Certificates 
115
116Types of certificates: 
117
118Service certificates – are used for cloud services! 
119
120 
121
122Attached to cloud services and enable secure communication to and from the service - (For example if you deploy a website, you want to supply a certificate that can authenticate an exposed HTTPS endpoint. Service certificates, which are defined in your service definition, are automatically deployed to the VM that is running an instance of your role.) 
123
124 
125
126Uploadable to Azure either using the Azure portal or by using the classic deployment model. Service certificates are associated with a specific cloud service. They are assigned to a deployment in the service definition file. 
127
128 
129
130You can manage service certificates separately from your services, and you can have different people managing them. 
131
132 
133
134Updating without a new service package is possible because the logical name, store name, and location of the certificate is in the service configuration file. To update the certificate, it’s only necessary to upload a new certificate and change the thumbprint value in the service configuration file. 
135
136 
137
138 
139
140Management certificates – are used for authenticating with the management API! 
141
142 
143
144Management certificates allow you to authenticate with the classic deployment model. Many programs and tools (such as Visual Studio or the Azure SDK) use these certificates to automate configuration and deployment of various Azure services. However, these types of certificates are not related to cloud services. 
145
146 
147
148Using Azure Key Vault with certificates: 
149
150You can store your certificates in Azure Key Vault – much like any other secret. However, key vault provides additional features above and beyond the typical certificate management. 
151
152 
153
154Create certificates in Key Vault or import existing certificates. 
155
156 
157
158Securely store and manage certificates without having to interact with private key material. 
159
160 
161
162Create a policy that directs Key Vault to manage the life-cycle of a certificate. 
163
164 
165
166Provide contact information for notification about life-cycle events such as expiration and renewal of certificate. 
167
168 
169
170Automatically renew certificates with selected issuers – Key Vault partner x509 certificate providers / certificate authorities 
171
172 
173
174 
175
176Protect your network