Microsoft Azure: Managing Subscriptions and Resources by Jennifer Balsom

Microsoft Azure: Managing Subscriptions and Resources

Richard Oertle Netcom Learning www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

ÂŠ1998-2019 NetCom Learning

Agenda ⚫

Managing Azure subscriptions

⚫

Assigning administrator roles and accounts

⚫

Analyzing resource utilization and consumption

⚫

Configuring diagnostic settings on resources using the portal and PowerShell Creating a baseline for resources

www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

Azure Hierarchy • An account is created when you first sign up, and is managed by an Account Administrator. You can only have One, but you can have up to 200 co-administrators and assign them appropriately. • An Organization is a container created to hold Subscriptions • An Azure AD tenant is a specific instance of Azure AD containing accounts and groups. Usually it mirrors a subscription. • A Subscription is a financial division of resource usage billing. Typically assigned to divisions or departments or even projects for management. • Domains are NOT Active Directory domains, but rather Internet Domains. Think of them as a path to a resource. • Azure Active Directory is a massive database holding 10’s of millions of accounts, and each Tenant gets a “partition” of that database for their own use. www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

Azure Subscriptions and Accounts

• A subscription is a logical unit of Azure services that is linked to an Azure account • An account is an identity in Azure AD or in a directory that is created in and trusted by Azure AD

Users, groups, and service principles Azure Active Directory Authentication & Authorization

Azure resources in resource groups Azure Subscription(s) www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

Getting an Azure Subscription

❑ Enterprise Agreement ❑ Reseller -Open Licensing program ❑ Microsoft partner ❑ Free trial account ❑ Solution providers https://www.microsoft.com/en-us/solutionproviders/home

www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

Check Resource Usage

• • • •

All resourceshave a maximum limit listed in Azurelimits Helpful to trackcurrent usage, and plan for future use You can request an increase Check resourceusage against limits -https://docs.microsoft.com/en-us/azure/networking/check-usage-against-limits www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

Tags

• Tags logically organize your resources to measure utilization • Tags consist of a name and value • Useful especially in billing across subscriptions, projects or departments For more information, you can see: Use tags to organize your Azure resources - https://docs.microsoft.com/en-us/azure/azure-resource-manager/resource-groupusing-tags PowerShell (Tagging) - https://docs.microsoft.com/en-us/azure/azure-resource-manager/resource-group-using-tags#powershell CLI (Tagging) - https://docs.microsoft.com/en-us/azure/azure-resource-manager/resource-group-using-tags#azure-cli www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

Billing

• • • •

Get Resource usage data Predict future costs Set up billing alerts The very first thing you do is get control of this! https://docs.microsoft.com/ en-us/azure/cost-management/

www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

Pricing Calculator

• Estimates in compute, networking, storage, web, and databases BEFORE you implement. • Prices are estimates and are not intended as actual price quotes

www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

Billing Alert Service

• Available to Account Administrators • Monitor and manage billing activity for your Azure accounts • Five billing alerts per subscription, two email recipients for each alert www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

Roles

• Owner can manage everything, including access • Contributors can manage everything except access • Readers can view everything but can't make changes www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

RBAC Concepts

1. Define what actions are allowed and/or denied 2. Associate the role with a user, group or service principal 3. Scope to a subscription, a resource group, or specific resources www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

ÂŠ1998-2019 NetCom Learning

Introducing Azure Monitor Service

www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

ÂŠ1998-2019 NetCom Learning

Azure Monitor: Key Capabilities

• • • •

Core monitoring for Azure services Collects metrics, activity logs, and diagnostic logs Use for time critical alerts and notifications https://azure.microsoft.com/en-us/services/monitor/ www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

Azure Advisor

• Personalized cloud consultant • Analyzes your configuration and recommends solutions • Four areas: High Availability, Security, Performance, and Cost www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

Query the Activity Log

• Filter by: Subscription, Resource group, Resource (name), Resource type, Operation name, Timespan, Category, Severity, and Event initiated by

www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

Collect Across Subscriptions

• Low latency and minimal coding • Azure Activity Log sends events to an Event Hub where a Logic Appsends them to your Log Analytics workspace www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

Additional Links: Activity Log

❑ Configure activity logs in the Azure portal • Create an activity log alert • View the Activity Log in the Azure portal • Configure log profiles using the Azure portal • Enable streaming of the Activity Log • Archive the Activity Log using the portal • Configure the Activity Log Analytics solution for your workspaces

www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

Connected Sources

• Connected sources generate data • Data can be collected from Windows, Linux, SCOMand Azure Storage

www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

Data Sources

• Data sources include: Windows Event Logs, Windows Performance Counters, Linux Performance Counters, IIS Logs, Custom Fields, Custom Logs, and Syslog. • Each data source has additional configuration options. www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

Analyzing Log Analytics Data

• Leverage log searches, construct queries, customize views • OMS portal capabilities are moving to the Azure portal www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

Log Analytics Querying

• • • •

Log Analytics provides a query syntax Quickly retrieve and consolidate data in the repository Saveor have log searches run automatically to create an alert Export the data to Power BI or Excel www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

Azure Resource Manager

• A resourceis simply a single service instance in Azure • A resource group is a logical grouping of resources • A resource group template is a JSONfile that allows you to declaratively describe a set of resources www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

ARM Template Advantages

• • • •

Ensures idempotency Simplifies orchestration Configure multiple resources simultaneously Use variables/parameters/functions to create dependencies • Can be configured and managed using a source control provider • Reusable and nestable • https://docs.microsoft.com/en-us/azure/azureresource-manager/resource-group-overview www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

Resource Groups and Deployments

• Resources can only exist in one resource group • Groups cannot be renamed • Groups can have resources of many different types (services) • Groups can have resources from many different regions • Deployments are incremental

www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

Azure PowerShell

• • • • •

Set of cmdlets that use Azure Resource Manager to manage resources Use locally or with the Azure Cloud Shell Update Azure PowerShell installation with Update-Module Use multiple versions of Azure PowerShell if needed BUT you can also use BASH!

www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

Azure PowerShell Cross-Platform

• Run PowerShell on Linux and Mac systems • PowerShell is now PowerShell Core 6 • Built on .NET, PowerShell modules converted to .NetCore

www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

Resource Explorer • Standalone app for working with Azure Storage data on Windows, Mac OS, and Linux • Connect and manage your storage accounts

www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

Recorded Webinar Video

To watch the recorded webinar video for live demos, please access the link: http://bit.ly/31rA0T3

www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

ÂŠ1998-2019 NetCom Learning

About NetCom Learning

www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

ÂŠ1998-2019 NetCom Learning

Recommended Courses Courses: » AZ-103: Microsoft Azure Administrator Associate – Class scheduled on July 16 » AZ-203: Microsoft Azure Developer Associate – Class scheduled on July 15 » AZ-900T01: Microsoft Azure Fundamentals – Class scheduled on July 15 » AZ-300: Microsoft Azure Architect Technologies Expert – Class scheduled on July 15 » AZ-301: Microsoft Azure Architect Design Expert – Class scheduled on July 22 » EDX1031: Microsoft Azure Administrator - AZ-103.1

o Other Cloud Courses you might be interested in: ▪ Understanding Cisco Cloud Fundamentals (CLDFND) v1.1 (Associate) ▪ CompTIA Cloud Essentials+ Certification Prep (Exam CLO-002) ▪ Designing the Cisco Cloud (CLDDES) v1.1 (Professional) eLearning

www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

Recommended Marketing Assets Marketing Assets: • • •

Free 1hr Training - Master the New Microsoft Azure Administrator Associate (AZ-103) Exam Blog - How to Prepare for the AZ-103 Microsoft Azure Administrator Certification Exam? Blog - Upgrade Your Team Cloud Skills with Role-based Azure Solutions Architect Expert Certification

www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

• • • • • • •

Explore Photoshop CC for the Web Designers Explore Data Warehousing and Business Intelligence Explore the Ways to Navigate Your Career in Cybersecurity CCNP: Switching and EC Fundamentals Artificial Intelligence for Project Managers Azure DevOps: Understanding Continuous Delivery & DevOps Time Management Power Tips: Prioritize Tasks for Better Productivity

& More

www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

Promotions

Bridge tech & business skills gap to empower workforce! Learn More about our Expert Training In High-Demand Cloud, Data & Ai, Dev, Security, and Business Skills and start building your companyâ&#x20AC;&#x2122;s tech and business skill set.

www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

ÂŠ1998-2019 NetCom Learning

www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

ÂŠ1998-2019 NetCom Learning

www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266

ÂŠ1998-2019 NetCom Learning

THANK YOU !!!

www.netcomlearning.com | info@netcomlearning.com | (888) 563 8266