Azure Container Registry (ACR) is a manged, private container registry provided by Azure for storing Docker and Kubernetes images. This registry-based on the open-source Docker Registry 2.0 Image scanning is important for any Docker registry. This helps developers and administrates to visible the vulnerabilities affecting the images and they canRead More →
Azure resource graph is a service designed by Azure to extend the capability of the management of Azure resources. This provides efficiency and performance for querying and exploring resources in multiple subscriptions on a large scale. This help organization IT teams to implement governance on a large scale over themRead More →
Azure AD Privileged Identity Manager (PIM) is a security service that helps organizations manage, monitor and control access to sensitive, important resources in Azure, Azure AD, Microsoft Online Services such as Office 365 and Intune. Why Organizations use Azure AD PIM? It’s important for an organization to limit the peopleRead More →
Securing cloud infrastructure and services plays a vital role in architecting a solution. As a solution designer or architect, it is an important task to take account of all the possible security measurements need for the solution. It can be from infrastructure to application and database When security plays aRead More →
What is RBAC in Azure? RBAC stands for Role-Based Access Control, RBAC is an important component for cloud resources. Because Access management is a critical function for cloud resources. RBAC helps cloud administrators, architectures to follow best practice and provide a secure management environment for cloud resources. RBAC is anRead More →
Every week, I publish my reading notes. Those are the articles, blog posts, podcasts, tech videos, and books that catch my interest and that I found interesting. Blogs Linked ARM Templates for a Multi Resource Azure Solution Linux Lift and Shift Hands-on Lab ā Microsoft Cloud Workshop Azure Sentinel: automatingRead More →
To start with 2020, I will be speaking at Azure Squad January 2020 meetup. In this meetup, I deep dive into the Kubernetes Services networking concept called Services. I would like to invite all to participate in this meetup. Event LinkRead More →
When organizations are deploying the application in microservice architecture to Kubernetes it has multiple service components. Some services may communicate each within the cluster services and some services need to expose to the internet. In Kubernetes, to expose service to the internet can possible with the use of LoadBalance serviceRead More →
In Azure some services are encrypted by default by using the keys that managed by Azure. When you create a storage account for the first time that storage account is by default encrypted with Azure managed key. Azure storage account is is encrypted and decrypted transparently using 256-bitĀ AES encryption, andRead More →
Azure recently start to support the Generation 2 VMs. Before When we create a VMs inside Azure it uses the Generation 1 VMs. If your work with Hyper-V in on-premises environment generation of the VMs are not an strange thing. Because Hyper-V support Generation 2 VMs from Windows Server 2012Read More →