As the Age of the Customer dawns it’s an exciting time to be working in IT. Digital disruption, transformation, unicorns and the Internet of our Things.
“Customer-obsessed strategies are a shared agenda for business and technology leaders — requiring a common view of what is happening in the market and how best to respond.” #Forrester
Azure Network Watcher was announced yesterday and is available in Preview in the following regions:
- US West Central
- US North Central
- US West
Read more here.
Chris Austin Hadfield OC OOnt MSC CD (born 29 August 1959) is a retired Canadian astronaut who was the first Canadian to walk in space. An engineer and former Royal Canadian Air Force fighter pilot, Hadfield has flown two space shuttle missions and served as commander of the International Space Station.
I recently spent an incredible evening with International Space Commander Chris Hadfield at the Edinburgh User Hall. What a truly inspirational human being. Dream the impossible and inspire the next generation to achieve whatever they dream to be and do.
At the time of writing in excess of 50 services are available on Azure and both the number of available services and functionality within each service is being increased rapidly.
Azure Services are catalogued on the Azure website by category.
It is important to note not all services may be available in all regions or certain functionality or options may not be available. A common example of this is VM instance sizes which you should ensure are available for your region before initiating any design or planning activity.
Automation of infrastructure state is often refereed to as ‘infrastructure as code’. A key aspect of this practice is Desired State Configuration, that is ensuring through automation that infrastructure services are configured as expected.
- Azure Automation – Desired State Configuration
- Ensure installs / configures a component if missing
- Absent removes a component or configuration setting if present
- Scripts defined in Powershell Runbooks
- For Windows platforms automate almost any task
- Consider System Center Orchestrator for higher level management and GUI
- Chef – 3rd party product for management, automation & analytics
- Client installed which periodically checks server for updates
- Built on Ruby
- Supports Windows, Linux, Mac
- Cookbooks (group of scripts) known as recipes
- Knife plugin used for Azure integration
- Puppet – similar to Chef
- Azure supports automatic deployment of Puppet Enterprise Agent
- Configure client to communicate with Puppet Master Server
It is important to note the importance of PowerShell, it can be used to carry out any task available in the Azure portal and more beyond that. To get started download the Azure module for Powershell, which is installed by the Web Platform Installer. PowerShell must authenticate with Azure before carrying out any operations which can be achieved using:
- AD account – Add-AzureAccount
- Computer certificate – Get-AzurePublishSettingsFile
Some common commands to be aware of:
- Get-AzureAccount (accounts currently connected)
- Remove-AzureAccount (remove connected accounts)
- Get-Help (show help on PowerShell commands)
The MSDN Azure Cmdlet Reference site is one useful source of information on available Azure PowerShell cmdlets and commands. The Azure GitHub repository ‘contains a set of PowerShell cmdlets for developers and administrators to develop, deploy and manage Microsoft Azure applications.’
Windows PowerShell workflows (runbooks) can be configured in Azure Automation and provide powerful automation and orchestration capabilities.
Microsoft and Azure services which can be used as part of a DR strategy include:
- Azure Backup – scalable, off-site, encrypted backup service
- Create a recovery vault, specify the Azure region
- Download vault credentials
- Download agent
- Install agent
- Upload vault credentials
- Launch backup
- Configure backup properties
- Schedule backup
- StorSimple – hybrid storage appliance with tiered disk storage (SSD, SATA) and Azure storage.
- Uses de-duplication and compression techniques
- Use for backup and DR in addition to production storage
- Data encrypted in flight and at rest, store encryption keys on-premise
- Storage presented using iSCSI
- 2 physical appliances available and a virtual appliance
- Data Protection Manager – Microsoft’s enterprise backup and recovery solution which supports Bare Metal Restore (BMR) and file level recovery.
- Integrates with Azure by registering with the associated Azure Backup Vault
- Use tape, local disk storage or Azure
- Supports workloads including server, client, SQL Server, SharePoint, Hyper-V, VM, Exchange
StorSimple is the optimal solution for high performance storage and support of low RTO and RPO requirements. Azure Backup is a cost-effective, simple solution for providing block level backup and and file level restore with a supported agent. Data Protection Manager can be integrated with Azure Backup and provides additional capabilities for protecting and recovering Microsoft workloads.
When planning a BC / DR strategy it is important to understand:
- RPO (Recovery Point Objective) i.e. the maximum time in minutes for which data loss is acceptable when recovering from a disaster
- RTO (Recovery Time Objective) i.e. the maximum time in minutes it takes to recover service in the event of a disaster
- Synchronous vs. Asynchronous replication i.e. whether operations are carried out at the same time or queued
- SLA (Service Level Agreement) for the underlying services
When designing high availability into Azure services consider:
- Use of Availability Sets and load balancing for Virtual Machines
- SQL Server AlwaysOn (=> 3 node WSFC – Primary Replica, Secondary Replica, FSW)
- SQL Mirroring
Hyper-V Replica provides asynchronous replication of VMs without a shared storage requirement however shared storage can be leveraged with supported SANs for additional functionality. Azure Site Recovery also works wtih Hyper-V Replica.
System Center can provide orchestration for Site Recovery failovers.