Just posted a new video walking through Blob permission options in Azure Storage including using the access key, shared access signatures, storage access policies and the new user delegation key with Azure AD and ARM RBAC integration. The whiteboard from this video is below.
Author Archives: John Savill
Isolation and Resiliency Guidance in Azure
I recently created some guidance for my customer around isolation and resiliency and figured I would share if helpful for others. Warning, this gets kind of complex ๐ Lets get to it! Overview Isolation is a key component in deploying resilient services. Understanding the various isolation options in Azure is critical to deploying services thatContinue reading “Isolation and Resiliency Guidance in Azure”
Azure Infrastructure Update – March 2020
Just recorded the latest Azure Infrastructure update and below are the key updates. Note a weekly update is available via subscribe action on the right hand side of this side (hint click Subscribe) or at https://savilltech.wordpress.com/azure-weekly-update-subscribe/. Lets get to it. Azure AD B2B – Unmanaged/viral tenants will not be created after 3/31/2021. Make sure youContinue reading “Azure Infrastructure Update – March 2020”
March 20th 2020 Azure Weekly Update
Sent out the latest Azure weekly update on Friday. Can be viewed at here. Subscribe at https://atomic-temporary-140096332.wpcomstaging.com/azure-weekly-update-subscribe/.
Mid-March 2020 Azure Infrastructure Update
Just recorded the latest Azure Infrastructure update and below are the key updates. Note a weekly update is available via subscribe action on the right hand side of this side (hint click Subscribe) or at https://savilltech.wordpress.com/azure-weekly-update-subscribe/. Lets get to it. PowerShell 7 was released. PowerShell 7 removes the โcoreโ tag signaling its position as theContinue reading “Mid-March 2020 Azure Infrastructure Update”
Small Script to Grant Azure AD Roles to Groups
Today it is not possible to grant roles in Azure AD to groups and is not likely to support dynamic groups anytime soon. I created a little script that grants a role to all users in a group. It checks and only adds the role to users in the group who don’t already have itContinue reading “Small Script to Grant Azure AD Roles to Groups”
Full Azure Data Engineer Associate Learning Track Available
Over Q2 and Q3 of 2019 I have been working on a series of courses to cover the content required to pass exams DP-200 and DP-201 that once passed award the Azure Data Engineer Associate certification. I completed the final two courses and now the 11 part learning track is available. It will shortly beContinue reading “Full Azure Data Engineer Associate Learning Track Available”
Hell’s Cloud Ops
Been watching Hell’s Kitchen in the background while working on some projects and I think it would make an awesome cloud operations show and a fun way to communicate some core concepts. Imagine….. Chef in calm voice – OK team, today we are working on providing a tasty SQL service for our customer that willContinue reading “Hell’s Cloud Ops”
Using AD extensionAttributes in Azure AD
I had a value in one of my extensionAttributes in AD populated with a data I needed to leverage in Azure AD dynamic groups. The specific attribute was extensionAttribute5. Without doing anything else this attribute is replicated to Azure AD and can be used as part of a dynamic group. For example I created aContinue reading “Using AD extensionAttributes in Azure AD”
Deploying Agents to Azure IaaS VMs using the Custom Script Extension
In an ideal world organizations should try to avoid creating custom images with their own special agents and configurations. This means a lot of image management as each time an agent is updated the image has to be updated in addition to the normal patching of OS instances. The Azure marketplace has a large numberContinue reading “Deploying Agents to Azure IaaS VMs using the Custom Script Extension”