da Agency

DocumentDB updates in the Azure Portal: New metrics blade and improved collections management

Recently we released several updates to the #Azure DocumentDB portal experience. We added a new consolidated metrics experience with several new metrics available including new availability, throughput, consistency, and latency metrics which allows you to track how DocumentDB is meeting its SLA's. We also streamlined collection management by surfacing all collection operations and experiences on the left navigation bar, and eliminated excessive horizontal scrolling.

New metrics blade and SLA metrics

Azure DocumentDB is a globally distributed managed NoSQL database as a service that offers 99.99% guarantees for availability, throughput, <10ms read latency and <15ms write latency at 99th percentile, and guarantees 100% consistency.  We believe it is important for you to know how the service is performing against these guarantees. We also heard how important it is for you to have all metrics information readily available without browsing through multiple windows. In response to this feedback, we have added several new metrics to reflect service performance vs SLA, as well as introduced a new at-a-glance metrics experience for DocumentDB collections. If you click on the Metrics node under Collections, you will see all metrics DocumentDB provides for each of your collections on a single surface, including:

Actual collection availability vs. SLA
Requests rate grouped by status code
Consumed and provisioned throughput capacity measured in Request Units/second, as well as percentage of requests exceeding capacity
Observed latency in the regions where your collection is located
Percentage of requests that met consistency guarantees
Storage consumed vs. capacity

You can also zoom in and navigate to the standard metrics experience for the individual charts via zoom-in gesture.

Streamlined collections management

DocumentDB stores data in collections, and majority of your time working with DocumentDB is spent working with collections. With this portal change, we bring collections front and center in the portal experience and eliminate the excessive horizontal scrolling you used to encounter when working in the portal.

The overview blade now provides one-click access to collections, as well as "Add Collection" command.
All collection management experiences and tools are now available on the left navigation menu.
With this update, we eliminated the need for horizontal scrolling when working with DocumentDB in Azure portal.

We hope these new features will make your time in the Azure portal more efficient and provide you with the monitoring information that’s most important to you. As always, let us know how we are doing and what improvements you&039;d like to see going forward through Uservoice,  StackOverflow azure-documentdb, or Twitter @documentdb.
Quelle: Azure

da Agency

See how the Contoso Corporation is implementing Azure services

The new Contoso in the Microsoft Cloud poster shows how the Contoso Corporation, a fictional but representative global organization, is embracing a cloud-inclusive IT infrastructure that includes all of Microsoft’s cloud offerings (Microsoft Azure, Office 365, Dynamics 365, and Microsoft Intune).

This new poster contains the following:

An overview of the fictional Contoso Corporation, its three-tier design for its offices, and key elements of Contoso’s implementation of the Microsoft cloud.

A review of Contoso’s on-premises IT infrastructure and how its business needs map to Microsoft’s cloud offerings, including opportunities for Azure PaaS and IaaS.

Contoso’s private WAN infrastructure, its app design for its offices, its use of Azure ExpressRoute Premium, and its step-by-step path to cloud networking readiness.

Contoso’s on-premises Windows Server Active Directory (AD) forest, how it geographically distributes authentication traffic, and how it uses Azure IaaS to provide authentication infrastructure redundancy for the 15,000 workers in its Paris headquarters.

Contoso’s structure for Microsoft cloud offering subscriptions, licenses, its common Azure AD tenant, and user accounts synched with Azure AD from its on-premises Windows Server AD forest.

Contoso’s security requirements in the cloud, its data sensitivity classification and mapping of cloud features to each level, and its step-by-step path to cloud security readiness.

 

Download this multi-page poster in PDF or Visio format, or see it online on Docs.com. You can easily print the 9 pages of this poster on tabloid format paper (also known as 11×17, ledger, or A3 format).

 

Future additions to this poster will include end-to-end configurations of key cloud scenarios, such as an Azure PaaS app that replaces their current document access system and SQL Server Stretch Database for their historical transaction data. Stay tuned for the updates as we evolve the Contoso Corporation from an on-premises IT infrastructure to a cloud-enabled and agile IT infrastructure.

If there is a scenario you would like to see in a future update to this poster, send a quick email to CloudAdopt@microsoft.com.

Here are the additional posters in the Microsoft Cloud for Enterprise Architects Series.

Microsoft Cloud Services and Platform Options

Microsoft Cloud Identity for Enterprise Architects

Microsoft Cloud Security for Enterprise Architects

Microsoft Hybrid Cloud for Enterprise Architects

Microsoft Cloud Networking for Enterprise Architects

Microsoft Cloud Storage for Enterprise Architects

Microsoft Cloud Mobility and Security for Enterprise Architects

Quelle: Azure

da Agency

Top 4 reasons for using Azure Security Center for partner security solutions

As customers expand the boundaries of their environments to hybrid cloud, they often prefer to bring their trusted partners with them. Azure Marketplace includes a variety of security solutions from leading vendors. Azure Security Center takes this a step further, by partnering with these vendors to provide an integrated experience in Azure, while relying on Marketplace for partner certification and billing.

Security Center integrates with Endpoint Protection (Trend Micro), Web Application Firewall (Barracuda, F5, Imperva and soon Microsoft WAF and Fortinet), Next Generation Firewall (Check Point, Barracuda and soon Fortinet and Cisco) solutions. And just last week at Microsoft Ignite, we released integration with Vulnerability Assessment (Qualys – preview) solutions. If you missed the Azure Security Center session where these integrations were highlighted, you can catch it on demand. During FY17, Security Center will both expand the number of partners within these existing categories and introduce new categories.

So, why use Security Center to deploy and monitor security solutions from partners?

Ease of deployment: Deploying a partner solution by following the Security Center recommendation is much easier. The deployment process can be fully automated using a default configuration and network topology, or customers can choose a semi-automated option to allow more flexibility and customization of the configuration.
Integrated Detections: Security events from partner solutions are automatically collected, aggregated and displayed as part of Security Center alerts and incidents. These events are also fused with detections from other sources to provide advanced threat detection capabilities.
Unified Health Monitoring and Management: Integrated health events allow customers to monitor all partner solutions at a glance. Basic management is available with easy access to advanced configuration using the partner solution.
Export to SIEM: Customers can now export all Security Center and partners’ alerts in CEF format to on-premise SIEM systems using Microsoft Azure Log Integration (preview)

Currently, to leverage this advanced level of integration, partner solutions must be deployed from Security Center, by following a recommendation. Partner packages that are deployed directly from the Azure Marketplace or through automation, are not yet supported. Security Center plans to add this support over the next year where partner solutions will be auto discovered and connected to Security Center, regardless of their mode of deployment.

Interested in learning more on Azure Security Center and its partner ecosystem integration?

Managing security recommendations in Azure Security Center
 Monitoring partner solutions with Azure Security Center
 Integrating Security Center alerts with Azure log integration (Preview)
 Security Resource Provider REST API Reference

Quelle: Azure

da Agency

Azure Managed Cache and In-Role Cache Service shutdown reminder

As announced last December, we are on track to retire Azure Managed Cache service and Azure In-Role Cache support by November 30, 2016. We strongly suggest that all currently active users of these services to move off them as early as possible, before the deadline.

Azure Redis Cache, based on the popular open-source implementation, is a fully-managed and high-performance caching solution that supersedes the Managed Cache and In-Role Cache services. It offers more features and options. We recommend that you consider Redis Cache as a replacement for the caching needs in your application. We have updated the Migrate from Managed Cache Service to Azure Redis Cache documentation webpage to facilitate your migration efforts.

If you have any questions or need assistance, please feel free to contact us.
Quelle: Azure

da Agency

Simpler Azure Management Libraries for Java – Beta 3

Beta 3 adds support for the following Azure services and features

Virtual machine scale sets
Load balancers
Parallel creation of virtual machines and other resources
Virtual machine extensions
Key vault and
Batch

https://github.com/azure/azure-sdk-for-java

In July, we announced a developer preview of the new, simplified Azure management libraries for Java. Our goal is to improve the developer experience by providing a higher-level, object-oriented API, optimized for readability and writability. Thank you for trying the libraries and providing us with plenty of useful feedback.

Create a Virtual Machine Scale Set

You can create a virtual machine scale set instance by using another define() … create() method chain.

VirtualMachineScaleSet virtualMachineScaleSet = azure.virtualMachineScaleSets()
.define(vmssName)
.withRegion(Region.US_EAST)
.withExistingResourceGroup(rgName)
.withSku(VirtualMachineScaleSetSkuTypes.STANDARD_D3_V2)
.withExistingPrimaryNetworkSubnet(network, "Front-end")
.withPrimaryInternetFacingLoadBalancer(loadBalancer)
.withPrimaryInternetFacingLoadBalancerBackends(backendPoolName)
.withPrimaryInternetFacingLoadBalancerInboundNatPools(natPool50XXto22)
.withoutPrimaryInternalLoadBalancer()
.withPopularLinuxImage(KnownLinuxVirtualMachineImage.UBUNTU_SERVER_16_04_LTS)
.withRootUserName(userName)
.withSsh(sshKey)
.withNewStorageAccount(storageAccountName1)
.withNewStorageAccount(storageAccountName2)
.withCapacity(2)
.create();

Create a Network Load Balancer

You can create a network load balancer instance by using another define() … create() method chain.

LoadBalancerloadBalancer=azure.loadBalancers().define(loadBalancerName)
.withRegion(Region.US_EAST)
.withExistingResourceGroup(rgName)
.definePublicFrontend(frontendName)
.withExistingPublicIpAddress(publicIpAddress)
.attach()

// Add a backend pool for HTTP
.defineBackend(backendPoolName)
.attach()

// Add a probe for HTTP
.defineHttpProbe(httpProbe)
.withRequestPath("/")
.withPort(80)
.attach()

// Add a load balancing rule that uses the above backend and probe
.defineLoadBalancingRule(httpLoadBalancingRule)
.withProtocol(TransportProtocol.TCP)
.withFrontend(frontendName)
.withFrontendPort(80)
.withProbe(httpProbe)
.withBackend(backendPoolName)
.attach()

// Add a NAT pool to enable direct VM connectivity for
// SSH to port 22
.defineInboundNatPool(natPool50XXto22)
.withProtocol(TransportProtocol.TCP)
.withFrontend(frontendName)
.withFrontendPortRange(5000,5099)
.withBackendPort(22)
.attach()
.create();

Sample Code

You can find plenty of sample code that illustrates management scenarios in Azure Virtual Machines, Virtual Machine Scale Sets, Storage, Networking, Resource Manager, Key Vault and Batch …

Service
Management

Virtual Machines

Manage virtual machine
Manage availability set
List virtual machine images
Manage virtual machines using VM extensions
List virtual machine extension images

Virtual Machines – parallel execution

Create multiple virtual machines in parallel
Create multiple virtual machines with network in parallel

Virtual Machine Scale Sets

Manage virtual machine scale sets (behind an Internet facing load balancer)

Storage

Manage storage accounts

Network

Manage virtual network
Manage network interface
Manage network security group
Manage IP address
Manage Internet facing load balancers
Manage internal load balancers

Resource Groups

Manage resource groups
Manage resources
Deploy resources with ARM templates
Deploy resources with ARM templates (with progress)

Key Vault

Manage key vaults

Batch

Manage batch accounts

Give it a try

You can run the samples above or go straight to our GitHub repo. Give it a try and let us know what do you think (via e-mail or comments below), particularly –

Usability and effectiveness of the new management libraries for Java?
What Azure services you would like to see supported soon?
What additional scenarios should be illustrated as sample code?

The next preview version of the Azure Management Libraries for Java is a work in-progress. We will be adding support for more Azure services and tweaking the API over the next few months.

You can find plenty of additional info about Java on Azure at http://azure.com/java.
Quelle: Azure

da Agency

Azure Images: SQL Server 2016 on Windows Server 2016

We’re excited to announce images for SQL Server 2016 on Windows Server 2016 in the Azure Marketplace!

All SQL Server 2016 editions on Windows Server 2016 Data Center are available:

SQL Developer – Free full edition of SQL Server for development/testing (no production)

SQL Express – Entry level free database for lightweight workloads (1 GB memory, 10 GB storage)

SQL Web – Low-cost database for low to medium-size web applications

SQL Standard – Core Database capabilities for medium-size workloads

SQL Enterprise – Full edition of SQL Server with comprehensive capabilities for mission-critical or large transactional processing, data warehousing, and business intelligence workloads

In addition, we make BYOL versions of SQL Standard and SQL Enterprise available to easily leverage your Bring-Your-Own-License benefit.

The best thing – all our automated Portal experiences (storage configuration, optimization for a targeted workload, automated patching) work with these images.

SQL Server 2016

SQL Server 2016 is the industry-leading database platform for transactional processing and business intelligence. It’s the least vulnerable database, and has everything built-in, from advanced analytics to unparalleled in-memory performance.

Windows Server 2016

Windows Server 2016 is the cloud-ready operating system that supports your workloads while adding multiple security layers and introducing powerful storage and management capabilities.

SQL Server 2016 and Windows Server 2016 – better together

Windows Server 2016 further increases Windows Server’s performance and scalability. In addition, it introduces various features that enable new SQL Server scenarios or simplify existing ones; for example, Storage Spaces Direct, Multi-domain and Workgroup Windows Clusters, and Just-Enough Administration (JEA).

Provision a VM with SQL Server 2016 on Windows Server 2016 today!
Quelle: Azure

da Agency

Microsoft’s true hybrid cloud: consistent, not just connected

Today marked the announcement of Windows Server 2016 general availability, another milestone in Microsoft’s commitment to hybrid cloud. You can start using Windows Server 2016 today with the availability of Windows Server 2016 images in the Azure Marketplace.

Hybrid cloud is the reality for all enterprise customers we work with, even those with the most ambitious cloud plans. Some applications should and will move quickly to public cloud, while others face technological and regulatory obstacles.  As such, we’ve built-in hybrid capabilities across the Microsoft portfolio, covering data, identity, management, applications, and the infrastructure platform overall.

Figure 1: Hybrid cloud capabilities built-in across Microsoft products and services

True hybrid cloud enablement goes beyond connectivity and provides consistency. Great network connectivity and the ability to “lift and shift” virtual machines are basic requirements. Consistency goes a step further, providing IT professional, developer, and end user experiences that don’t change based on the location of the resource. Consistency across a hybrid cloud environment enables uniform development, unified dev-ops and management, common identity and security, and seamless extension of existing applications to the cloud. Consistent hybrid cloud helps customers execute on their cloud strategy faster, in a way that makes the most sense for their business.

Read more about Microsoft’s Hybrid Cloud and Windows Server 2016. 
Quelle: Azure

da Agency

Microsoft Cloud achieves Gov. of India’s provisional accreditation… in rare company

The Ministry of Electronics and Information Technology (MeitY) for the Government of India, announced that Microsoft is one of the first global cloud service providers to achieve MeitY’s provisional accreditation.  With this accreditation, Microsoft can now deliver a #cloud computing solution in India that provides truly innovative digital services to a wider range of customers. 

MeitY’s provisional accreditation empowers government agencies and departments in India to choose the Microsoft Cloud to advance their digital transformation, optimize IT operations, and transform societies.  The Microsoft Cloud provides industry-leading levels of security, privacy controls, compliance, and transparency for Indian government agencies to achieve higher efficiencies, with greater reliability and scalability.

MeitY is the key agency for IT related policies and guidelines.  It is the governing body that provides guidelines to all the public sector organizations, government funded and controlled organizations, state and local bodies, and state owned enterprises in India.  MeitY’s guidelines are then adopted by private sector organizations in regulated industries and other sectoral regulators which influences the criteria for the use of cloud services in all of India.

With this new accreditation, Microsoft can now do more to support the Government of India in its journey to provide transformational e-governance services, financial inclusion opportunities, quality healthcare, and education to billions of people in the country.
Quelle: Azure