Category: Best Practices

0

Error 0x800F081F when adding features on Windows Server 2016 on Azure Virtual Machine

At one of my costumers, I needed to add the SMBv1 feature to enable communication with a legacy File Server running on Windows Server 2003. After the process I run into this error: So then, I download the Windows Server 2016 ISO and tried to install pointing to the Source folder as mention on the error (similar approach when you want to try to install .NET 2.0 on a Windows...

1

File level restore on an encrypted Azure virtual machine

At the costumer site, I was delivering an Azure Workshop, on the topic of Azure Backup, comes the following questions: On a VM that have encrypted disks, how can we restore it? What is the solution to restore file level (files or folders) without restoring the entire VM? On the Microsoft Azure Backup documentation – Backup Azure VM Encryption, the limitation is documented: “Encrypted VMs can’t be recovered at the...

0

Best practices to architect Resource Groups in Azure

On a workshop at the client, we were talking about what are the best practices to design an architecture for Resource Groups (RG) in Azure. This time we have a good time debating what will be the scenarios and what are the limitations when you come to architect and standardize the deployment of RG. The most interesting scenario was evolving the limitation that RG have at the time of a...

0

Monitoring Azure File Sync

After implementing Azure File Sync, you wonder, how I can monitor what I just implemented? My first thought was to investigate in the Azure Resource himself, to look the sync service and see whether there are any diagnostics settings which can be enabled in order to send logs to Log Analytics where we could set up alerts. However, there weren`t any diagnostics options on the Azure resource, so I then...

0

Infrastructure as a Code (IaC) Series #1 – The beginning!

From the past months, I’ve been upgrading all my scripts that I have been using along the years to a platform that allows me to be more productive, reusing all the IP that I have been gathering and creating along the years. But in what way I should enhance/improve this? Then I got stroked by a light! What I was doing from all of those years was kind of an...

0

Azure Policy – Auditing public blob storage

In a Governance project, one of the most common policy to implement is the one that you don’t allow any blob storage to be public. That usually could be a major information breach. When you make a blob storage in Azure public, you are giving at least reading privilege to the world. In this case, the idea is to audit what blob storage are public. This policy is not denying...

0

Azure Policy – Allowing only define VM sizes

Azure Policy is the big step to start to have some sort of governance on your Azure environment. It’s really easy to implement, efficient and powerful. With Azure Policies, you can control how and what you allow users to deploy. It’s important to have such policies to control the cost of the subscription, special when you have a monthly budget like mine. On other hand, you are limiting the number...

0

Choosing the type of Azure Blob storage for SQL Backups

During the storage design on the Azure Foundation workshop that I usually deliver on a beginning of a new Azure project, come the topic and following that, the discussion about what type of storage should we choose for the SQL Backups. After reviewing the different offerings that Azure provide for storage, we start to brainstorm. Assuming that we are using blob storage for SQL Backups on a running SQL on...

0

Instant VM Recovery using Azure Backup

We all know that Azure is grow and evolving in a very fast pace. On a project that I’m working right now, I had the opportunity to work with big VMs (M Series), although working with those kinds of VMs is always a challenge, when it comes to the operations side, in this particular case, backups. How you will backup that “Monster” and how fast can you recovery the virtual...

0

Adding an IP to an existing Azure Virtual Network Gateway

So, you have a Virtual Network Gateway deployed in Azure and it’s working just fine, although you would like to add another public IP to an existing Azure Virtual Network Gateway to be used as an Active/Active BGP scenario. The question is: Can I update the IP configuration for the existing gateway or do I have to remove/rebuild the gateway to add the new public IP? The answer is: You...