When moving to a DevOps way of working it is important to have a good set of rules on how to work with software and infrastructure. When looking into Azure this rule set can be converted into Azure Policy and policies rules. Azure policies enforce rules and effects over the resources, so those resources stay…
The last couple of months I haven’t been blogging as much as I would like because it has been a real roller coaster for me and my family. For some reason we always do everything at the same time. My girlfriend was pregnant of our third child and we also decided to move to a…
Since a couple of weeks I’m part of the AIMS Performance Pro team because of my knowledge on Azure and other related topics. The AIMS performance Pro team (#aimsperformancepro) is a program for ambitious and outspoken technical professionals who have interests in the intersection of IT integration, monitoring, analytics, performance tuning and troubleshooting. It is…
Recently, Microsoft released new certifications and the corresponding learning paths. These certifications are more focused on job profiles. Microsoft also calls this “rolebased learning”. This is the biggest reason why Microsoft has created these paths. The old existing certifications for Microsoft Azure (70-532, 70-533, 70-535) are very broad in scope and cover a wide range…
A client of my had an error while connecting to different resources within their Kubernetes cluster in Azure (AKS). Kubectl error On the kubectl commands kubectl proxy and kubectl get nodes they got the error: connectex: No connection could be made because the target machine actively refused it. The complete message after visiting the dashboard (that…
Kubernetes (AKS) can be used for many situations. For a client we needed to make files available trough a Kubernetes Pod. The files needed to be shared between containers, nodes and pods. To make these files available we used a file share that gave us a couple of advantages: Files can be made read-only for…
Instead of storing user credentials of an external system in a configuration file, you should store them in the Azure Key Vault. Before MSI (Managed Service Identity) you would have to store the credentials to use the key vault in the configuration file so this wasn’t really helpful. With MSI (Managed Service Identity) you do…
Most of the times companies have rules in place for managing their Azure environment. The main rules that should be in place are “Azure Policies” and naming conventions. Naming convention should be used to easily identify Azure resources and making consistency within the Azure Portal. These naming convention could then also be written up into…
In some situations you will look into a current Azure Environment and the setup/governance of it and need to migrate or move resources around. The below script will help you with exporting the Azure resources into a CSV file, from that CSV file you can join the data within Excel to make plans. Script …
As you may know almost everything that is deployed to Azure is publicly available. As with Azure SQL Database you do not have a firewall available for Azure Web Applications. That means other options need to be used to restrict access to Azure Web Application. Restrict access by IP A possible option is to restrict…
On-Premise connections for Azure App Services can be created by using Hybrid Connections. Hybrid connections do not need any development or re-configuration of your application. It only needs a small client service in the private network (downloadable from the Azure Portal) and the hybrid connection configured in the Azure Portal. Hybrid Connection Hybrid Connections give…
This post is the second in a series of three posts and will help you with the creation of identity pass-through authentication from a client application to API and then to an Azure SQL Database. In this post we will create an Azure API Application with .Net Core to query the Azure SQL Database. Previous…