Over the past few months, I have conducted many customer workshops, designed and implemented Landing Zones, and migrated or placed VMs into Azure. One of the most common customer questions has been about best practices for Azure VMs to maximize performance and efficiency, minimize costs, increase security, and reduce management overhead. This article is based on my real-world experience and recommendations based on several Azure projects.
In the last couple of days I get a lot of question how to move Azure VMs between regions. So I decided to write a blog post about this question. First of all it is really important to understand which topics this article covers and which not.
To understand the article right, keep the follow settings in mind:
This article will cover how to move Azure VMs between global regions with ASR
Global regions mean all the standard available regions
This article doesn´t cover the movement between Azure Global and Azure Germany, Azure Governance or China
For moving Azure VMs from Azure Germany to Azure Global there there is planned to write an additional article
For a general movement of Azure resources (SQL databases, Web Apps and more) a futher post will follow
This article focuses on how to move Azure VMs between Azure global regions using Azure Site Recovery (ASR). Another article will focus on how to move other Azure resources between regions.
To move Azure VMs between different global regions with ASR there are some requirements needed:
Azure subscriptions are allowed to create Azure VMs in the target regions
User rights to create the Azure ressources (Azure VMs, VNETs, NICs, etc.)
Install latest updates on Windows/Linux OS
Check that the VM has Internet access without Proxy or Firewall between VM and Internet
Configure the VNET and Subnet in the target destination before move the VM to a different region
The process to move Azure VMs between different Global regions is straight forward. But don´t forget, all related management tasks to the VM, like Backup, Log analytics Workspace, Start Stop Runbooks will be lost after the migration.
I reveived a cool mail some days ago with an information, that I had passed successful the new Azure Administrator Exam Az-104 and get the renewal of the Microsoft Certified: Azure Administrator Associate.
Two years ago Microsoft released the first new Rolebased exams with the Az-100/Az-101. I´ve passed both exams, but the exams are only valid for two years after passing. With the new Az-104 I got a renewal of the title for the next two years.
The Az-104 certification is a further development of the Az-103, as it will be discontinued at the end of July. To see the necessary skills and the differences to the Az-103, please have a look at the document “Az-104 Skills measured“.
Preparation and study guides
In preparation, all I can say is practice, practice, practice. Create different Azure Services, manage and administer them and interact with them. This helps a lot to understand the individual service and the different functions.
In the past I had a lot of talks about Azure File Sync, a lightwight solutions to sync servers from different locations and branches via Azure Files. One often questions was, it is possible to use Azure Files directly with integrated on-premises Active Directory (AD DS) authentication – the great answer since a few days is Yes, this is possible.
Now you can use Azure Files with on-premises Active Directory authentication as a fully replacement for Fileservers. No need for Azure Active Directory Domain Services (Azure AD DS) or different settings on Azure Files. This gives great new ways to use Azure Files as an replacement for Windows based fileservers or for using as an profile store for Windows Virtual Desktop and come closer to a cloud native solution.
In this article I will explain how Azure files AD DS authentication works, how to configure it, some basic steps and more. Please feel free to use the comment section or Twitter to get in touch with me and give me feedback or ask questions.
In the past I have taken several Azure exams, and yesterday I took the Azure Security exam Az-500. I am really glad that I passed the exam. In this article I will give you a brief overview of the topics I saw in the exam and what materials I used to prepare for the exam. I can say directly that the best way to succeed in the exam is practice.
In the past I do a lot of Azure Governance workshops. One part of this workshops are the high availabilty options in Azure. This article descripe the different SLAs for VM workloads in Azure. Often I get an ask about the SLA level and the requirements. In this discussion many people are confused about the difference of Availability Set and Availability Zone and how this compares to the SLA. The new feature about the Proximitiy Placement Groups comes into play to make the confusing complete. This article descripes the differences between these features.
The Microsoft Ignite is running since Monday and in this blog post I will give you a short overview about the new announcement in the range of Azure services.
To each service you have a headline link to additional information on the Microsoft Azure blog article or the update site. Did you have any questions about this announcements, please do not hesitate to contact me.
Don´t miss our MsIgnite Azure Recap Meetups in Thueringen and Bonn. Information about the Meetups at the end of the article.
Für Azure VM’s gibt es unterschiedliche Disk Typen mit unterschiedlichen Performancewerten. Dazu zählen Standard HDDs, Standard SSDs und Premium SSDs. Vor wenigen Tagen ganz neu hinzugekommen sind die Ultra SSDs.
In diesem Blog Beitrag gehe ich auf die neuen Ultra SSDs ein. Stelle die Leistungswerte der unterschiedlichen SSDs gegenüber und stelle die Besonderheiten der Ultra SSDs in ihrer jetzigen Form vor.
Gestern Vormittag wurden einige neue Azure Regionen angekündigt. Im offiziellen Azure Blog war zunächst die Ankündigung für die neuen Regionen aus der Schweiz zu finden. Zeitgleich erfolgte im offiziellen Microsoft Newscenter die Ankündigung, dass die Azure Regionen aus Deutschland West Central (Frankfurt) und North East (Berlin) allgemein verfügbar sind. Die neuen Regionen werden in den nächsten Wochen sukzessive in den Tenants zur Auswahl angezeigt.
Azure Global DE ist, im Gegensatz zur früheren Microsoft Cloud Deutschland (MCD), direkt mit den anderen Regionen verbunden. Das vorherige Datentreuhänder Modell mit der Telekom als Partner entfällt hier vollständig. Die neuen Regionen werden vollständig von Microsoft verwaltet und bieten somit die gleichen Vorteile im Bezug auf verfügbare Services, Verfügbarkeit und Wartung. Zusätzlich bieten die beiden neuen Regionen erweiterte Datenschutz Zertifikate.
Bis die einzelnen Regionen im eigenen Portal angezeigt werden, kann es noch etwas dauern. Dieser Artikel soll die bereits verfügbaren Dienste (Stand 28.08.19) vorstellen und wann die weiteren Dienste, wie Office 365, etc. verfügbar sind.