© Copyright Microsoft Corporation. All rights reserved.

FOR USE ONLY AS PART OF MICROSOFT VIRTUAL TRAINING DAYS PROGRAM. THESE MATERIALS ARE NOT AUTHORIZED
FOR DISTRIBUTION, REPRODUCTION OR OTHER USE BY NON-MICROSOFT PARTIES.

Classified as Microsoft Confidential

Microsoft Azure Virtual Training
Day: Fundamentals
Agenda

Part 1 Part 2

Cloud fundamentals Azure storage

Azure identity, access and security and Azure cost

Azure architecture and Azure compute services
management

Azure governance and compliance, Azure resource

Azure networking
management, and Azure monitoring services
Cloud Fundamentals
 • Cloud Computing
o What is cloud computing
o Shared responsibility
o Cloud models
Learning Objectives o Capital vs Operational costing

• Cloud Benefits
o Benefits of the cloud

• Cloud Service Types

o IaaS, PaaS, and SaaS
Learning Objective: Cloud Computing
What is cloud computing?

Cloud Computing is the delivery of computing services over the internet,

enabling faster innovation, flexible resources, and economies of scale.

Compute Networking Storage

Private cloud

• Organizations create a cloud

environment in their datacenter.
• Organization is responsible for
operating the services they provide.
• Does not provide access to users
outside of the organization.
Public cloud

• Owned by cloud services or hosting

provider.

• Provides resources and services to

multiple organizations and users.

• Accessed via secure network connection

(typically over the internet).
Hybrid cloud

Combines Public and Private clouds to allow applications to run in the

most appropriate location.
Cloud model comparison

• No capital expenditures to scale up

Public Cloud • Applications can be quickly provisioned and deprovisioned
• Organizations pay only for what they use

• Hardware must be purchased for start-up and maintenance

Private Cloud • Organizations have complete control over resources and security
• Organizations are responsible for hardware maintenance and updates

• Provides the most flexibility

Hybrid Cloud • Organizations determine where to run their applications
• Organizations control security, compliance, or legal requirements
Compare CapEx vs. OpEx

Capital Expenditure (CapEx) Operational Expenditure (OpEx)

• The up-front spending of money on physical • Spend on products and services as needed, pay-
infrastructure as-you-go
• Costs from CapEx have a value that reduces over • Get billed immediately
time
Consumption-based model

Cloud service providers operate on a consumption-based model, which means

that end users only pay for the resources that they use. Whatever they use is what
they pay for.

• Better cost prediction

• Prices for individual resources and services are provided

• Billing is based on actual usage

Learning Objective: Cloud Benefits
Cloud Benefits

High availability Elasticity

Scalability
Scalability and Elasticity
• Scalability - The ability to scale Vertically (up or down), and horizontally (in or out)
• Elasticity - The ability to scale automatically

12GB of ram

8GB of ram 8GB of ram 8GB of ram

4GB of ram

Vertically
(UP & DOWN) Horizontally (IN & OUT)
Scalability and Elasticity
• Scalability - The ability to scale Vertically (up or down), and horizontally (in or out)
• Elasticity - The ability to scale automatically

80% 80% 80%

Vertically
(UP & DOWN)
Horizontally (IN & OUT)
Cloud Benefits

High availability Elasticity

Scalability Reliability

Predictability Security

Governance Manageability
Learning Objective: Cloud Service Types
Infrastructure as a Service (IaaS)

Build pay-as-you-go IT infrastructure

by renting servers, virtual machines, IaaS
storage, networks, and operating
systems from a cloud provider.

Servers and Networking Datacenter

storage firewalls/Security Physical
Plant/building
Platform as a Service (PaaS)
Provides environment for building, testing, and deploying software applications; without
focusing on managing underlying infrastructure.

PaaS
IaaS

Servers and Networking Datacenter Operating Development Tools,

storage firewalls/Security Physical systems database Management,
Plant/building Business analytics
Software as a Service (SaaS)
Users connect to and use cloud-based apps over the internet: for example, Microsoft
Office 365, email, and calendars.

SaaS
PaaS
IaaS

Servers and Networking Datacenter Operating Development Tools, Hosted

storage firewalls/Security Physical systems database Management, applications/apps
Plant/building Business analytics
Cloud service comparison

IaaS PaaS SaaS

The most flexible cloud Focus on application Pay-as-you-go pricing
service development model

You configure and manage Platform management is Users pay for the software
the hardware for your handled by the cloud they use on a subscription
application provider model
Shared responsibility model
On-
Responsibility SaaS PaaS IaaS prem
Information and data
Responsibility always
Devices (Mobile and PCs)
Retained by the customer
Accounts and identities

Identity and directory infrastructure

Responsibility Applications
varies by type
Network controls

Operating system

Physical hosts
Responsibility transfers
Physical network
to cloud provider
Physical datacenter

Microsoft Customer Shared

 • The shared responsibility model
• Public, private, and hybrid-cloud
Session 01 Review • Benefits of cloud computing
• Cloud service types
Azure architecture and Azure compute
services​
 • Azure Architectural Components
o Regions and Availability Zones
o Subscriptions and Resource Groups
Learning Objectives • Compute
o Compute types
o Application hosting
Learning Objective: Azure Architectural
Components
Regions

Azure offers more global regions

than any other cloud provider
with 60+ regions representing
over 140 countries

• Regions are made up of one or more datacenters in close proximity.

• Provide flexibility and scale to reduce customer latency.
• Preserve data residency with a comprehensive compliance offering.
Availability zones

Provide protection against downtime due to Azure Region

datacenter failure Availability Zone 1 Availability Zone 2

Physically separate datacenters within the same

region

Each datacenter is equipped with independent

power, cooling, and networking

Connected through private fiber-optic

networks Availability Zone 3
Region Pairs Region
North Central US​
Region
South Central US​
East US​ West US​

 At least 300 miles (500 kms) of West US 2​ West Central US​

separation between region pairs. US East 2​ Central US​

Canada Central​ Canada East​
 Automatic replication for some North Europe​ West Europe​
services. UK West​ UK South​

 Prioritized region recovery in the Germany Central​ Germany Northeast​

event of outage. South East Asia​ East Asia​

East China​ North China​
 Updates are rollout sequentially to Japan East​ Japan West​
minimize downtime. Australia Southeast​ Australia East​
India South​ India Central​
Web Link: https://aka.ms/PairedRegions Brazil South (Primary)​ South Central US
Azure Sovereign Regions (US Government services)

Meets the security and compliance needs of US federal agencies, state and local
governments, and their solution providers.

Azure Government:
• Separate instance of Azure
• Physically isolated from non-US government
deployments
• Accessible only to screened, authorized personnel
Azure Sovereign Regions (Azure China)

Microsoft is China’s first foreign public cloud service provider, in compliance with
government regulations.

Azure China features:

• Physically separated instance of Azure cloud services
operated by 21Vianet
• All data stays within China to ensure compliance
 Explore the Azure global infrastructure
1. Select Explore the Globe (after intro)
Demo 2. Notice the different icons (geography, regions,
points of presence (PoP), and so on)
3. Find your location on the globe, then find the
nearest PoP and region to your location
Azure Resources
Azure resources are components like storage, virtual machines, and networks that are
available to build cloud solutions.

Virtual Machines Storage Accounts Virtual Networks

App Services SQL Databases Functions

Resource groups
A resource group is a container to Resource groups
manage and aggregate resources in a (web + DB, VM, Storage) in one group
single unit.
• Resources can exist in only one resource
group.
OR
• Resources can exist in different regions.
• Resources can be moved to different
resource groups.
Web and Virtual
• Applications can utilize multiple resource DB machine Storage
groups. resource resource resource
group group group
Azure Subscriptions Azure
Account

An Azure subscription provides you

with authenticated and authorized Dev Test Production
access to Azure accounts. Subscription Subscription Subscription

• Billing boundary: generate separate

billing reports and invoices for each Billing account

subscription. Invoice Payment

methods

• Access control boundary: manage Billing profile Billing profile

and control access to the resources

that users can provision with specific Invoice section Invoice section Invoice section Invoice section

subscriptions.
Azure Azure Azure Azure Azure Azure Azure Azure
Subscription Subscription Subscription Subscription Subscription Subscription Subscription Subscription
Management Groups

Management groups can include multiple

Management
Azure subscriptions groups

Subscriptions inherit conditions applied to

the management group Subscriptions

10,000 management groups can be Resource

groups
supported in a single directory

A management group tree can support up Resources

to six levels of depth
 Create an Azure resource
Demo 1. Create a virtual machine
2. Monitor the resource group
Learning Objective: Compute
Azure compute services

Azure compute is an on-demand computing service that provides computing resources

such as disks, processors, memory, networking, and operating systems.

Virtual App Services Container Azure Azure Virtual

Machines Instances Kubernetes Desktop
Services (AKS)
Azure virtual machines

Azure Virtual Machines (VM) are software

emulations of physical computers.
• Includes virtual processor, memory, storage,
and networking.
• IaaS offering that provides total control and
customization.
VM scale sets

Scale sets provide a load-balanced opportunity

to automatically scale resources.
• Scale out when resource needs increase.
• Scale in when resource needs are lower.
VM availability sets

Fault Domain 0 Fault Domain 1 Fault Domain 2

Rack Rack Rack

VM #1 VM #2 VM #3
UD #1 UD #2 UD #3

VM #4 VM #5 VM #6
UD #4 UD #5 UD #1
 Create and autoscale Virtual Machine
Demo Scale Sets
Azure Virtual Desktop

Azure Virtual Desktop is a desktop and app

virtualization that runs in the cloud.

1. Create a full desktop virtualization

environment without having to run additional
gateway servers.
2. Reduce risk of resource being left behind.
3. True multi-session deployments.
Azure Container Services
Azure Containers are a light-weight, virtualized environment that does not
require operating system management, and can respond to changes on demand.

Azure Container Instances: a PaaS offering that runs a container or pod of containers
in Azure.

Azure Container Apps: a PaaS offering like container instances that can load balance
and scale.

Azure Kubernetes Service: an orchestration service for containers with distributed

architectures and large volumes of containers.

© Copyright Microsoft Corporation. All rights reserved.

Comparing Azure compute options

Virtual machines Virtual Desktop Containers

Cloud based server that supports Provides a cloud based personal Lightweight, miniature environment
either Windows or Linux computer Windows desktop well suited for running
environments. experience. microservices.

Useful for lift-and-shift migrations Dedicated applications to connect Designed for scalability and
to the cloud. and use, or accessible from any resiliency through orchestration.
modern browser.

Complete operating system Multi-client login allows multiple Applications and services are
package, including the host users to log into the same machine packaged in a container that sits on-
operating system. at the same time. top of the host operating system.
Multiple containers can sit on one
host OS.
Azure Functions

Azure Functions: a PaaS offering that supports serverless compute

operations. Event-based code runs when called without requiring
server infrastructure during inactive periods.
Azure App Services

Azure App Services is a fully managed platform to build,

deploy, and scale web apps and APIs quickly.

• Works with .NET, .NET Core, Node.js, Java, Python, or php.

• PaaS offering with enterprise-grade performance, security,
and compliance requirements.
 • Physical and management infrastructure of
Microsoft Azure

Session 02 Review • Azure virtual machines

• Azure container services
• Azure compute service comparison
Azure networking​
 • Networking
o Virtual networking
Learning Objectives o Virtual private network gateway
o Azure ExpressRoute
o Azure DNS
Learning Objective: Networking
Azure networking services

Azure Virtual Network (VNet) enables Azure resources to

communicate with each other, the internet, and on-premises
networks.
Public endpoints, accessible from anywhere on the internet
Private endpoints, accessible only from within your network
Virtual subnets, segment your network to suit your needs
Network peering, connect your private networks directly together
 Configure network access
1. Verify currently open ports
Demo 2. Create a network security group
3. Configure RDP access
4. Test the connection
Azure Virtual Private Network Gateway
Virtual Private Network Gateway (VPN) is used to send encrypted traffic
between an Azure virtual network and an on-premises location over the public
internet.

Virtual network 1
East US

On-premises
10.10.0.0/16 Azure VPN IPsec IKE S2S LocalSite1
Gateway Virtual private network
Tunnel
10.0.0.0/24
20.0.0.0/24
Virtual private network Virtual private network
Virtual IP Virtual IP
131.1.1.1 33.2.1.5
Azure ExpressRoute
Azure ExpressRoute extends on-premises networks into Azure over a private
connection that is facilitated by a connectivity provider.

Customer’s Partner Customer’s Microsoft

network Edge connection Edge

Traffic to Microsoft 365 Service and CRM Online

Traffic to public IP addresses in Azure
Traffic to Virtual Networks
Azure DNS
Reliability and performance by leveraging a global network of DNS name servers using
Anycast networking

Azure DNS security is based on Azure resource manager, enabling role-based access
control and monitoring and logging

Ease of use for managing your Azure and external resources with a single DNS service

Customizable virtual networks allow you to use private, fully customized domain names
in your private virtual networks

Alias records supports alias record sets to point directly to an Azure resource.
 • Virtual networking
• Virtual private network gateway
Session 03 Review • Azure ExpressRoute
• Azure DNS
Azure storage​
 • Storage
Learning Objectives o Storage services
o Redundancy options
o File management and migration
Learning Objective: Storage
Storage accounts

• Must have a globally unique name

• Provide over-the-internet access worldwide
• Determine storage services and redundancy options
Storage redundancy

Redundancy configuration Deployment Durability

Locally redundant storage (LRS) Single datacenter in the primary region 11 nines

Zone-redundant storage (ZRS) Three availability zones in the primary region 12 nines

Single datacenter in the primary and secondary

Geo-redundant storage (GRS) 16 nines
region

Geo-zone-redundant-storage Three availability zones in the primary region and

16 nines
(GZRS) a single datacenter in secondary region
Storage redundancy
REGION 1 REGION 2

Datacenter 1 Datacenter 2 Datacenter 3

Azure storage services
Azure Blob: optimized for storing massive amounts of unstructured data, such as text
or binary data.

Azure Disk: provides disks for virtual machines, applications, and other services to
access and use.

Azure Queue: message storage service that provides storage and retrieval for large
amounts of messages, each up to 64KB.

Azure Files: sets up a highly available network file share that can be accessed by using
the Server Message Block protocol.

Azure Tables: provides a key/attribute option for structured non-relational data

storage with a schema-less design.
Storage service public endpoints

Storage service Public endpoint

Blob Storage https://<storage-account-name>.blob.core.windows.net

Data Lake Storage Gen2 https://<storage-account-name>.dfs.core.windows.net

Azure Files https://<storage-account-name>.file.core.windows.net

Queue Storage https://<storage-account-name>.queue.core.windows.net

Table Storage https://<storage-account-name>.table.core.windows.net

Azure storage access tiers

Hot Cool Cold Archive

Optimized for Optimized for Optimized for Optimized for
storing data that is storing data that is storing data that is storing data that is
accessed frequently. infrequently infrequently rarely accessed and
accessed and stored accessed and stored stored for at least
for at least 30 days. for at least 90 days. 180 days with
flexible latency
requirements.

You can switch between these access tiers at any time.

 Create a storage blob
Create a storage account
Demo 1.
2. Create a blob container
3. Upload and access a blob
Azure Migrate

• Unified migration platform

• Range of integrated and standalone tools
• Assessment and migration
Azure Data Box

• Store up to 80 terabytes of data.

• Move your disaster recovery backups to Azure.
• Protect your data in a rugged case during
transit.
• Migrate data out of Azure for compliance or
regulatory needs.
• Migrate data to Azure from remote locations
with limited or no connectivity.
File management options

AzCopy Azure Storage Explorer Azure File Sync

Command line utility Graphical user interface Synchronizes Azure and on-
(similar to Windows Explorer) premises Windows File Server in
a bidirectional manner

Copy blobs or files to or from Compatible with Windows, Cloud tiering keeps frequently
your storage account MacOS, and Linux accessed files local, while
freeing up space

One-direction synchronization Uses AzCopy to handle file Rapid reprovisioning of failed

operations local server (install and resync)
 • Storage services

Session 04 Review • Redundancy options

• File management and migration
Azure identity, access and security
and Azure Essentials: Cost management
 • Identity, access, and security
o Directory services
o Authentication methods

Learning Objectives o Security models

• Azure Essentials: Cost Management

o Cost and pricing calculators
o Cost Management and tags
Learning Objective: Identity, access, and security
Microsoft Entra ID

Microsoft Entra ID is Microsoft Azure’s cloud-based identity and access

management service.
• Authentication (employees sign-in to access resources).
• Single sign-on (SSO).
• Application management.
• Business to Business (B2B).
• Device management.
Microsoft Entra Domain Services

Sync users,
Sync users, groups,
groups,
passwords, SIDs
passwords, SIDs to
to ID
ID

Microsoft Entra
Connect Sync
Automatic background sync
Virtual network to your managed domain

Managed Domain Microsoft Entra ID tenant On-premises AD

• Gain the benefit of cloud-based domain services without managing domain controllers
• Run legacy applications (that can’t use modern auth standards) in the cloud
• Automatically sync from Microsoft Entra ID
Compare Authentication and Authorization

Authentication Authorization
Identifies the person or service seeking Determines an authenticated person’s or
access to a resource. service’s level of access.
Requests legitimate access credentials. Defines which data they can access, and
Basis for creating secure identity and what they can do with it.
access control principles.
Azure Multi-Factor Authentication

Provides additional security for your identities by requiring two or more elements for full
authentication.
• Something you know → Something you possess → Something you are

Username
[email protected]
Password
***********
Microsoft Entra External ID B2B

B2B collaboration

Invitation or Microsoft Entra External ID

self-service sign-up
Partners, vendors,
Suppliers, other
collaborators

Your tenant
External Identities B2C

B2C

Sign-up and sign-in

user flows, B2C Tenant
custom policies

Consumers of your
published app
B2C tenant
Conditional Access
Conditional Access is used to bring signals together, to make decisions,
and enforce organizational policies.

• User or Group Membership Signals Verify every access

attempt
Apps and data

• IP Location User and

location
Device

• Device Allow access

• Application Require MFA

• Risk Detection Application

Real-time
risk
Block access
Role-based access control

• Fine-grained access management.

Microsoft Entra ID • Segregate duties within the team
and grant only the amount of
access to users that they need to
perform their jobs.
Azure

• Enables access to the Azure portal

subscription

User Apps User groups

Resource group and controlling access to
resources.
Resource group
Defense in depth

• A layered approach to securing Physical Security

computer systems
Identity & Access
• Provides multiple levels of protection Perimeter

• Attacks against one layer are isolated Network

from subsequent layers
Compute

Application

Data
Zero Trust

Secure assets where they are with Zero Trust

Simplify security and make it more effective

Classic Approach Zero Trust

Restrict everything to a ‘secure’ network Protect assets anywhere with central policy
Microsoft Defender for Cloud

Microsoft Defender for Cloud is a

monitoring service that provides
threat protection across both Azure
and on-premises datacenters.
• Provides security recommendations
• Detect and block malware
• Analyze and identify potential attacks
• Just-in-time access control for ports
Learning Objective:
Azure Essentials – Cost Management
Factors affecting costs (part 1)

These are some of the factors affecting costs:

1) Resource Type 2) Consumption 3) Maintenance

Costs are resource-specific, With a pay-as-you-go Monitoring your Azure
so the usage that a meter model, consumption is one footprint and maintaining
tracks and the number of of the biggest drivers of your environment can help
meters associated with a costs. you identify and mitigate
resource, depend on the costs that aren’t necessary,
resource type. such as shutting down
under used virtual
machines.
Factors affecting costs (part 2)

These are some of the factors affecting costs:

4) Geography 5) Network traffic 6) Subscription

The same resource type can While some inbound data The type and configuration
cost different amounts transfers are free, the cost of your subscription can
depending on the for outbound data or data also impact your cost. For
geographic area, so between Azure resources is example, the free trial lets
geography has an impact impacted by Billing zones. you explore some Azure
on Azure costs. resources for free.
Explore Azure Marketplace
Azure Marketplace allows customers to find, try, purchase, and provision
applications and services from hundreds of leading service providers, which are
all certified to run on Azure.

• Open source container platforms.

• Virtual machine and database images.
• Application build and deployment software.
• Developer tools.
• And much more, with 10,000+ listings!
Pricing Calculator
The Pricing Calculator is a tool that helps you estimate the cost of Azure
products. The options that you can configure in the Pricing Calculator vary
between products, but basic configuration options include:
• Region
• Tier
• Billing options
• Support options
• Programs and offers
• Azure dev/test pricing
 Use the Azure Pricing Calculator
Demo 1. Configure the pricing calculator
2. Review the pricing estimate
Total Cost of Ownership Calculator

• A tool to estimate cost

savings you can realize by $ 30,702,495
Total on-premises cost
$ 595,618
Total Azure cost
migrating to Azure.
• A report compares the
costs of on-premises
infrastructures with the
costs of using Azure
products and services in
the cloud. 0%
Compute
93%
Datacenter
2%
Networking
4%
Storage
7%
Compute
0%
Datacenter
43%
Networking
50%
Storage
 Use the Azure TCO Calculator
Demo 1. Configure the TCO calculator
2. Review the results and save a copy
Azure Essentials: Microsoft Cost Management

• Reporting – billing reports

• Data enrichment
• Budgets – set spend budget
• Alerting – when cost exceed limits
• Recommendation – cost
recommendations
Tags

• Provides metadata for your Azure

resources.
• Logically organizes resources into a
taxonomy.
• Consists of a name-value pair.
• Very useful for rolling up billing OR

information.
owner: joe
department: marketing cost-center: marketing
environment: production
 • Directory services
• Authentication methods
• Security models
Session 05 Review • Azure Essentials: Cost Management
o Cost and pricing calculators
o Cost management and tags
o Cost management
Azure governance and compliance, Azure
resource management, and Azure
monitoring services
 • Governance and compliance
o Microsoft Purview
o Policies and resource locks
o Service Trust portal

Learning Objectives • Resource deployment tools

o Portal, PowerShell, CLI, and others
o Azure Arc and Azure Resource Manager

• Monitoring tools
o Azure Advisor, Azure Service Health, and Azure
Monitor
Learning Objective: Governance and compliance
Microsoft Purview
Microsoft Purview is a family of data governance, risk, and compliance solutions
that helps you get a single, unified view into your data. Microsoft Purview brings
insights about your on-premises, multi-cloud, and software-as-a-service data
together.

• Automated data discovery

• Sensitive data classification
• End-to-end data lineage
Azure Policy
Azure Policy helps to enforce organizational standards and to assess compliance
at-scale. Provides governance and resource consistency with regulatory
compliance, security, cost, and management.

• Evaluates and identifies Azure resources that do

not comply with your policies.
• Provides built-in policy and initiative definitions,
under categories such as Storage, Networking,
Compute, Security Center, and Monitoring.
Resource locks

• Protect your Azure resources from accidental deletion or modification.

• Manage locks at subscription, resource group, or individual resource levels
within Azure Portal.

Lock Types Read Update Delete

Delete Yes Yes No

ReadOnly Yes No No
 Manage Resource Locks
1. Create a resource
2. Add a ReadOnly resource lock to prevent resource
Demo modification
3. Update lock and retest
4. Remove the resource lock
5. Delete the resource
Service Trust portal
Learning Objective: Resource deployment tools
Tools for interacting with Azure

Azure Portal Azure PowerShell

Azure Cloud Shell Command-Line

Interface (CLI)
Azure Resource Manager

Azure portal Azure Powershell Azure CLI Rest clients The Azure Resource
Manager (ARM) provides a
management layer that
SDKs
enables you to create,
update, and delete resources
Azure Resource Manager Authentication
in your Azure subscription.

Data Web App Virtual Service Other

Store Machine Management services
Infrastructure as code

• Ensure consistency in deployment

across your cloud ecosystem.
• Manage configuration at scale.
• Rapidly provision additional
environments based on a standard
configuration and build.
Azure Resource Manager (ARM) templates
Azure Resource Manager (ARM) templates are JavaScript Object Notation (JSON) files that can
be used to create and deploy Azure infrastructure without having to write programing commands.

• Declarative syntax Resource Manager Non-template

Template Infrastructure as code
• Repeatable results
One template Multiple imperative
submitted PUT calls
• Orchestration
• Modular files
• Built-in validation Azure Resource
Manager
• Exportable code
Resource Providers
Bicep

© Copyright Microsoft Corporation. All rights reserved.

JSON

© Copyright Microsoft Corporation. All rights reserved.

JSON

© Copyright Microsoft Corporation. All rights reserved.

Azure Arc

Azure
On-premises, multicloud, and edge

Azure Arc
Azure Resource Manager (Extend Azure management to on-premises, multicloud, and edge)
Tools and
experiences Single-pane-of-glass Role-based access
for management control
Example: Cloud-native Security and
Azure Portal practices compliance Local
Customers management
PowerShell
Resources in Azure tools
Azure CLI
Resources in other locations
Learning Objective: Monitoring tools
Azure Essentials: Azure Advisor
Azure Advisor analyzes deployed Azure resources and makes recommendations
based on best practices to optimize Azure deployments.

• Reliability
• Security
• Performance
• Cost
• Operational Excellence
Azure Service Health
Azure Service Health is a collection of services that keep you informed of general Azure status,
service status that may impact you, and specific resource status that is impacting you.

Azure Status: global view of the health of all Azure

services across all Azure regions

Service Health: focused view on only the services and regions

that you’re using. If a service is experiencing a problem in a
region you’re not using, it won’t show up here

Resource Health: tailored view of your actual Azure resources.

It provides information about the health of your individual
cloud resources
Azure Monitor

Azure Monitor maximizes the availability and performance of applications and

services by collecting, analyzing, and acting on telemetry from cloud and on-
premises environments.

• Application Insights
• Log Analytics
• Smart Alerts
• Automation Actions
• Customized Dashboards
 • Governance and compliance

Session 06 Review • Resource deployment tools

• Monitoring tools