Architecting Microsoft Azure Solutions

Transcription

1 Architecting Microsoft Azure Solutions Duración: 5 Días Código del Curso: M20534 Temario: This course is intended for architects who have experience building infrastructure and applications on the Microsoft Azure platform. Students should have a thorough understanding of most services offered on the Azure platform. The students typically work for organizations that have an activesolution on Azure and are planning to enhance existing solutions or deploy more solutions to the Azure platform. This course also is intended for architects who want to take the Microsoft Certification exam, , Architecting Microsoft Azure Solutions. Dirigido a: This course is intended for students who have experience building infrastructure and applications on the Microsoft Azure platform. Students should have a thorough understanding of most services offered on the Azure platform.for the interactive component, this course offers students the opportunity to deploy Azure solutions using built-in DevOps tools such as Azure Resource Manager templates, deployments, resource groups, tags and Role-Based Access Control. This course does not require any direct experience writing application code or configuring server machines. This course focuses on the architectural comparisons between services and technical decision making needed to deploy well-designed solutions on the Azure platform. This course also prepares the students for the : Architecting Microsoft Azure Solutions certification exam. The candidates targeted by this training have intermediate experience in designing, implementing and monitoring Azure solutions. Candidates are also proficient with the tools, techniques, and approaches used to build solutions on the Azure platform. Objetivos: Describe Azure architecture components, including infrastructure, tools, and portals. Create and deploy Azure Resource Manager (ARM) templates for various all-up solutions. Compare and contrast various infrastructure, serverless, database and communication services; such as App Services, Virtual Machine Scale Sets, Azure Cosmos DB, SQL Database, and Container Service in Azure. Secure, monitor and backup solutions deployed to Azure. Create automated DevOps solutions using a combination of ARM templates, configuration management utilities, Azure CLI, and the Cloud Shell. Create automated DevOps solutions using a combination of ARM templates, configuration management utilities, Azure CLI, and the Cloud Shell. Incorporate various Azure platform services, such as Cognitive Services and Media Servicers into an overall Azure solution. Prerequisitos: Before attending this course, students must have the following technical knowledge: Create resources and resource group in Azure. Manage users, groups, and subscriptions in an Azure Active Directory instance. Build an Azure Virtual Machine with related resources. Manage containers and blobs stored in an Azure Storage account. Create App Service Plans and manage apps related to the plan. Configure an Azure Virtual Network and enable S2S and P2S connectivity.

2 Protect networked application components using Network Security Groups. Automate everyday Azure resource tasks using Azure CLI or Azure PowerShell. Deploy an Azure SQL, MySQL, Postgres or Cosmos database instance. Monitor existing Azure solutions using built-in metrics, Application Insights, or Operational Insights. Monitor existing Azure solutions using built-in metrics, Application Insights, or Operational Insights.

3 Contenido: Module 1: Application Architecture Patterns in This module describes how solutions can Module 9: Managing Security and Identity for Azure leverage serverless application hosting Azure Solutions services in Azure to host web applications, REST APIs, integration workflows and HPC This module introduces and reviews common workloads without the requirement to manage This module discusses both security and Azure patterns and architectures as prescribed specific server resources. The module identity within the context of Azure. For by the Microsoft Patterns ; Practices team. focuses on App Services-related components security, this module reviews the various Each pattern is grouped into performance, such as Web Apps, API Apps, Mobile Apps, options for monitoring security, the options resiliency, and scalability categories and Logic Apps, and Functions. available for securing data and the options for described in the context of similar patterns securing application secrets. For identity, this within the category. module focuses specifically on Azure Active Lessons Directory (Azure AD) and the various features available such as Multi-Factor Authentication Lessons Pattern Resources (MFA), Managed Service Identity, Azure AD Performance Patterns Connect, ADFS and Azure AD B2B/B2C. Pattern Resources Resiliency Patterns Performance Patterns Scalability Patterns Resiliency Patterns Data Patterns Lessons Scalability Patterns ARM Templates Data Patterns Role-Based Access Control (RBAC) Pattern Resources ARM Templates Resource Policies Performance Patterns Role-Based Access Control (RBAC) Security Resiliency Patterns Resource Policies Building Blocks Scalability Patterns Security High Availability Data Patterns Building Blocks Templated Infrastructure ARM Templates High Availability Domain-Connected Machines Role-Based Access Control (RBAC) Templated Infrastructure Infrastructure-Backed Resource Policies Domain-Connected Machines Platform-as-a-Service (PaaS) Security Infrastructure-Backed Platform-as-a-Service High-Performance Compute (HPC) Building Blocks (PaaS) Migration High Availability High-Performance Compute (HPC) Azure Web App Templated Infrastructure Migration Azure Functions Domain-Connected Machines Azure Web App Integration Infrastructure-Backed Azure Functions High Performance Platform-as-a-Service (PaaS) Integration Pricing High-Performance Compute (HPC) High Performance Blob Storage Migration Pricing Files Azure Web App Blob Storage StorSimple Azure Functions Files Relational Integration StorSimple NoSQL Services High Performance Relational Azure Cosmos DB Pricing NoSQL Services Data Storage Blob Storage Azure Cosmos DB Data Analysis Files Data Storage VNETs StorSimple Data Analysis Load Balancing Relational VNETs External Connectivity NoSQL Services Load Balancing Hybrid Connectivity Azure Cosmos DB External Connectivity Security Monitoring Data Storage Hybrid Connectivity Data Security Data Analysis Security Monitoring Application Security Azure Active VNETs Data Security Directory (Azure AD) Load Balancing Application Security Azure Active Directory Hybrid Identity External Connectivity (Azure AD) Azure AD Application Integration Hybrid Connectivity Hybrid Identity Cognitive Services Security Monitoring Azure AD Application Integration Bot Services Data Security Cognitive Services Machine Learning Application Security Azure Active Directory Bot Services Media Services (Azure AD) Machine Learning Event Messaging Hybrid Identity Media Services Integration Azure AD Application Integration Event Messaging IoT Cognitive Services Integration Bot Services IoT Lab : Deploying Serverless Workloads to Machine Learning Azure Media Services After completing this module, students will be Event Messaging

4 Create Web App Integration Deploy Web App Code IoT Deploy Function App and Code Locate and reference the Cloud Design Cleanup Subscription Lab : Deploying Services to Secure Secrets in Patterns documentation. Azure After completing this module, students will be Deploy Key Vault using ARM Template Locate and reference the Azure Architecture Deploy Virtual Machine using Key Vault Center. Secret Select between hosting application code or Cleanup Subscription containers in an App Service instance. Describe various patterns pulled from the Cloud After completing this module, students will be Design Patterns. Describe the differences between API, Mobile, and Web Apps. Module 2: Deploying Resources with Azure Integrate their existing solutions with external Resource Manager identity providers using Azure AD B2B or Integrate an API or Logic App with the API B2C. Management service. This module establishes a basic understanding of Azure Resource Manager and the core Design a hybrid identity solution. concepts of deployments, resources, Design an App Service Plan or multi-region templates, resource groups, and tags. The deployment for high performance and scale. module will dive deeply into the automated Determine when to use advanced features of deployment of resources using ARM templates. Azure AD such as Managed Service Identity, Module 6: Backing Azure Solutions with Azure MFA and Privileged Identity Management. Storage Lessons Secure application secrets using Key Vault. Pattern Resources This module describes how many Azure Performance Patterns services use the Azure Storage service as a Resiliency Patterns backing store for other application solution in Secure application data using SQL Database Scalability Patterns Azure. The module dives into critical and Azure Storage features. Data Patterns considerations when using Azure Storage as ARM Templates a supplemental service for an all-up Azure Role-Based Access Control (RBAC) solution. Module 10: Integrating SaaS Services Resource Policies Available on the Azure Platform Security Building Blocks Lessons High Availability This module introduces multiple SaaS Templated Infrastructure Pattern Resources services available in Azure that are available Domain-Connected Machines Performance Patterns for integration into existing Azure solutions. Infrastructure-Backed Platform-as-a-Service Resiliency Patterns These services include Cognitive Services, (PaaS) Scalability Patterns Bot Service, Machine Learning and Media High-Performance Compute (HPC) Data Patterns Services. Migration ARM Templates Azure Web App Role-Based Access Control (RBAC) Azure Functions Resource Policies Lessons Integration Security High Performance Building Blocks Pattern Resources Pricing High Availability Performance Patterns Blob Storage Templated Infrastructure Resiliency Patterns Files Domain-Connected Machines Scalability Patterns StorSimple Infrastructure-Backed Data Patterns Relational Platform-as-a-Service (PaaS) ARM Templates NoSQL Services High-Performance Compute (HPC) Role-Based Access Control (RBAC) Azure Cosmos DB Migration Resource Policies Data Storage Azure Web App Security Data Analysis Azure Functions Building Blocks VNETs Integration High Availability Load Balancing High Performance Templated Infrastructure External Connectivity Pricing Domain-Connected Machines Hybrid Connectivity Blob Storage Infrastructure-Backed Security Monitoring Files Platform-as-a-Service (PaaS) Data Security StorSimple High-Performance Compute (HPC) Application Security Azure Active Directory Relational Migration

5 (Azure AD) NoSQL Services Azure Web App Hybrid Identity Azure Cosmos DB Azure Functions Azure AD Application Integration Data Storage Integration Cognitive Services Data Analysis High Performance Bot Services VNETs Pricing Machine Learning Load Balancing Blob Storage Media Services External Connectivity Files Event Messaging Hybrid Connectivity StorSimple Integration Security Monitoring Relational IoT Data Security NoSQL Services Application Security Azure Active Azure Cosmos DB Lab : Getting Started with Azure Resource Directory (Azure AD) Data Storage Manager Hybrid Identity Data Analysis Azure AD Application Integration VNETs Create Resource Groups Cognitive Services Load Balancing Deploy an Empty Template Bot Services External Connectivity Deploy a Simple Template Machine Learning Hybrid Connectivity Cleanup Subscription Media Services Security Monitoring Event Messaging Data Security After completing this module, students will be Integration Application Security Azure Active Directory IoT (Azure AD) Hybrid Identity Lab : Deploying Azure Storage to Support Azure AD Application Integration Create a resource group. Other Workloads in Azure Cognitive Services Bot Services Create Required Resources for a Virtual Machine Learning Add resources to a resource group. Machine Media Services Create a VM With a Storage Account Event Messaging Create a VM With a Managed Disk Integration Deploy an ARM template to a resource group. Cleanup Subscription IoT After completing this module, students will be Lab : Deploying Service Instances as Filter resources using tags. Components of Overall Azure Solutions Deploy Function App and Cognitive Author a complex deployment using the Azure Determine the ideal pricing option for Azure Service using ARM Template Building Blocks tools. Storage based on a solution s requirements. Cleanup Subscription After completing this module, students will be Module 3: Building Azure IaaS-Based Server Identify performance thresholds for the Azure Applications Storage service. Identify when Cognitive Services, Bot Service This module identifies workloads that are Determine the type of Storage blobs to use or Machine Learning is appropriate for their ideally deployed using for specific solution components. solution. Infrastructure-as-a-Service services in Azure. The module focuses on the VM Scale Sets and Virtual Machine services in Azure and how to Use the Azure Files service for SMB Compare the various features available in best deploy workloads to these services using operations. Media Services and determine the best practices and features such as Availability appropriate features for their solution. Sets. Identify solutions that could benefit from the use of StorSimple physical or virtual devices. Module 11: Integrating Azure Solution Lessons Components using Messaging Services Pattern Resources Module 7: Comparing Database Options in Performance Patterns Azure This module describes and compares the Resiliency Patterns integration and messaging services available Scalability Patterns for solutions hosted on the Azure platform. Data Patterns This module compares the various relational Messaging services described include Azure ARM Templates and non-relational data storage options Storage Queues, Service Bus Queues, Role-Based Access Control (RBAC) available in Azure. Options are explored as Service Bus Relay, IoT Hubs, Event Hubs, Resource Policies groups such as relational databases (Azure and Notification Hubs. Integration services Security SQL Database, MySQL, and PostgreSQL on include Azure Functions and Logic Apps. Building Blocks Azure), non-relational (Azure Cosmos DB, High Availability Storage Tables), streaming (Stream

6 Templated Infrastructure Analytics) and storage (Data Factory, Data Lessons Domain-Connected Machines Warehouse, Data Lake). Infrastructure-Backed Platform-as-a-Service Pattern Resources (PaaS) Performance Patterns High-Performance Compute (HPC) Lessons Resiliency Patterns Migration Scalability Patterns Azure Web App Pattern Resources Data Patterns Azure Functions Performance Patterns ARM Templates Integration Resiliency Patterns Role-Based Access Control (RBAC) High Performance Scalability Patterns Resource Policies Pricing Data Patterns Security Blob Storage ARM Templates Building Blocks Files Role-Based Access Control (RBAC) High Availability StorSimple Resource Policies Templated Infrastructure Relational Security Domain-Connected Machines NoSQL Services Building Blocks Infrastructure-Backed Azure Cosmos DB High Availability Platform-as-a-Service (PaaS) Data Storage Templated Infrastructure High-Performance Compute (HPC) Data Analysis Domain-Connected Machines Migration VNETs Infrastructure-Backed Azure Web App Load Balancing Platform-as-a-Service (PaaS) Azure Functions External Connectivity High-Performance Compute (HPC) Integration Hybrid Connectivity Migration High Performance Security Monitoring Azure Web App Pricing Data Security Azure Functions Blob Storage Application Security Azure Active Directory Integration Files (Azure AD) High Performance StorSimple Hybrid Identity Pricing Relational Azure AD Application Integration Blob Storage NoSQL Services Cognitive Services Files Azure Cosmos DB Bot Services StorSimple Data Storage Machine Learning Relational Data Analysis Media Services NoSQL Services VNETs Event Messaging Azure Cosmos DB Load Balancing Integration Data Storage External Connectivity IoT Data Analysis Hybrid Connectivity VNETs Security Monitoring Lab : Deploying Infrastructure Workloads to Load Balancing Data Security Azure External Connectivity Application Security Azure Active Directory Hybrid Connectivity (Azure AD) Deploy a Virtual Machine using PowerShell Security Monitoring Hybrid Identity DSC Data Security Azure AD Application Integration Deploy a Virtual Machine Scale Set using Application Security Azure Active Cognitive Services PowerShell DSC Directory (Azure AD) Bot Services Cleanup Subscription Hybrid Identity Machine Learning Azure AD Application Integration Media Services After completing this module, students will be Cognitive Services Event Messaging Bot Services Integration Machine Learning IoT Media Services Design an availability set for one or more virtual Event Messaging Lab : Deploying Messaging Components to machines Integration Facilitate Communication Between Azure IoT Resources Describe the differences between fault and Lab : Deploying Database Instances in Azure Deploy Service Bus Namespace update domains. Deploy Logic App Deploy a CosmosDB Database Instance Cleanup Subscription Validate the REST API Author a VM Scale Set ARM template. Cleanup Subscription After completing this module, students will be After completing this module, students will be Join a virtualized machine to a domain either in Azure or on a hybrid network. Compare Storage Queues to Service Bus Queues. Compare and contrast various database Module 4: Creating Managed Server options on Azure.

7 Applications in Azure Identify when to use Azure Functions or Logic Apps for integration components in a solution. Identify data streaming options for large-scale This module describes services that use data ingest. infrastructure but manage the infrastructure on Describe the differences between IoT Hubs, behalf of the user instead of obfuscating the Event Hubs and Time Series Insights. infrastructure resources. The module focuses Identify longer-term data storage options. on infrastructure-backed PaaS options such as Azure Service Fabric, Container Service, and Module 12: Monitoring and Automating Azure App Service Environments. The module will Module 8: Networking Azure Application Solutions explore how to deploy custom workloads to Components these services such as an HPC batch processing task. This module covers the monitoring and This module describes the various networking automation solutions available after an Azure and connectivity options available for solution has been architected, designed and Lessons solutions deployed on Azure. The module possibly deployed. The module reviews explores connectivity options ranging from services that are used to monitor individual Pattern Resources ad-hoc connections to long-term hybrid applications, the Azure platform, and Performance Patterns connectivity scenarios. The module also networked components. This module also Resiliency Patterns discusses some of the performance and covers automation and backup options to Scalability Patterns security concerns related to balancing enable business-continuity scenarios for Data Patterns workloads across multiple compute instances, solutions hosted in Azure ARM Templates connecting on-premise infrastructure to the Role-Based Access Control (RBAC) cloud and creating gateways for on-premise Resource Policies data..lessons Security Building Blocks Application Monitoring High Availability Lessons Platform Monitoring Templated Infrastructure Network Monitoring Domain-Connected Machines Pattern Resources Alerting Infrastructure-Backed Platform-as-a-Service Performance Patterns Backup (PaaS) Resiliency Patterns Azure Automation High-Performance Compute (HPC) Scalability Patterns Config Management Migration Data Patterns Auto-Scale Azure Web App ARM Templates Azure Functions Role-Based Access Control (RBAC) Lab : Deploying Configuration Management Integration Resource Policies Solutions to Azure High Performance Security Pricing Building Blocks Deploy a Chef Management Server using Blob Storage High Availability ARM Files Templated Infrastructure Configure Management Server StorSimple Domain-Connected Machines Deploy a VM Scale Set using Relational Infrastructure-Backed Chef-Configured VMs NoSQL Services Platform-as-a-Service (PaaS) Cleanup Subscription Azure Cosmos DB High-Performance Compute (HPC) Data Storage Migration After completing this module, students will be Data Analysis Azure Web App VNETs Azure Functions Load Balancing Integration External Connectivity High Performance Compare and contrast monitoring services for Hybrid Connectivity Pricing applications, the Azure platform, and Security Monitoring Blob Storage networking. Data Security Files Application Security Azure Active Directory StorSimple (Azure AD) Relational Design an alert scheme for a solution hosted Hybrid Identity NoSQL Services in Azure. Azure AD Application Integration Azure Cosmos DB Cognitive Services Data Storage Bot Services Data Analysis Select the appropriate backup option for Machine Learning VNETs infrastructure and data hosted in Azure. Media Services Load Balancing Event Messaging External Connectivity Integration Hybrid Connectivity Automate the deployment of future resources IoT Security Monitoring for backup recovery or scaling purposes. Data Security Lab : Deploying Managed Server Workloads to Application Security Azure Active

8 Azure Create Azure Container Service Cluster Deploy Docker Image Cleanup Subscription After completing this module, students will be Describe the differences between App Service Environments, Service Fabric and Container Service. Use Azure Batch to manage an HPC workload. Migrate to an Infrastructure-backed PaaS service from another IaaS service or a legacy Cloud Service. Directory (Azure AD) Hybrid Identity Azure AD Application Integration Cognitive Services Bot Services Machine Learning Media Services Event Messaging Integration IoT Lab : Deploying Network Components for Use in Azure Solutions Create an ARM Template for a Linux VM Duplicate the VM Resources Create a Load Balancer Resource Cleanup Subscription After completing this module, students will be Module 5: Authoring Serverless Applications in Azure Describe DNS and IP strategies for VNETs in Azure. Compare connectivity options for ad-hoc and hybrid connectivity. Distribute network traffic across multiple loads using load balancers. Design a hybrid connectivity scenario between cloud and on-premise. Más información: Para más información o para reservar tu plaza llámanos al (34) info.cursos@globalknowledge.es Global Knowledge Network Spain, C/ Retama 7, 6ª planta, Madrid