Chris Hadfield

Chris Austin Hadfield OC OOnt MSC CD (born 29 August 1959) is a retired Canadian astronaut who was the first Canadian to walk in space. An engineer and former Royal Canadian Air Force fighter pilot, Hadfield has flown two space shuttle missions and served as commander of the International Space Station.

_68097337_67563612

I recently spent an incredible evening with International Space Commander Chris Hadfield at the Edinburgh User Hall. What a truly inspirational human being. Dream the impossible and inspire the next generation to achieve whatever they dream to be and do.

16143013_10154628825055589_1253543648795829454_n

Describe Azure services

At the time of writing in excess of 50 services are available on Azure and both the number of available services and functionality within each service is being increased rapidly.

Azure Services are catalogued on the Azure website by category.

It is important to note not all services may be available in all regions or certain functionality or options may not be available. A common example of this is VM instance sizes which you should ensure are available for your region before initiating any design or planning activity.

Describe the use cases for Azure Automation configuration

Automation of infrastructure state is often refereed to as ‘infrastructure as code’. A key aspect of this practice is Desired State Configuration, that is ensuring through automation that infrastructure services are configured as expected.

  • Azure Automation – Desired State Configuration
    • Ensure installs / configures a component if missing
    • Absent removes a component or configuration setting if present
    • Scripts defined in Powershell Runbooks
    • For Windows platforms automate almost any task
    • Consider System Center Orchestrator for higher level management and GUI
  • Chef – 3rd party product for management, automation & analytics
    • Client installed which periodically checks server for updates
    • Built on Ruby
    • Supports Windows, Linux, Mac
    • Cookbooks (group of scripts) known as recipes
    • Knife plugin used for Azure integration
  • Puppet – similar to Chef
    • Azure supports automatic deployment of Puppet Enterprise Agent
    • Configure client to communicate with Puppet Master Server

Design Azure Automation and PowerShell workflows

It is important to note the importance of PowerShell, it can be used to carry out any task available in the Azure portal and more beyond that. To get started download the Azure module for Powershell, which is installed by the Web Platform Installer. PowerShell must authenticate with Azure before carrying out any operations which can be achieved using:

  • AD account – Add-AzureAccount
  • Computer certificate – Get-AzurePublishSettingsFile

Some common commands to be aware of:

  • Get-AzureAccount (accounts currently connected)
  • Remove-AzureAccount (remove connected accounts)
  • Get-Help (show help on PowerShell commands)

The MSDN Azure Cmdlet Reference site is one useful source of information on available Azure PowerShell cmdlets and commands. The Azure GitHub repository ‘contains a set of PowerShell cmdlets for developers and administrators to develop, deploy and manage Microsoft Azure applications.’

Windows PowerShell workflows (runbooks) can be configured in Azure Automation and provide powerful automation and orchestration capabilities.

 

Design a disaster recovery strategy

Microsoft and Azure services which can be used as part of a DR strategy include:

  • Azure Backup – scalable, off-site, encrypted backup service
    • Create a recovery vault, specify the Azure region
    • Download vault credentials
    • Download agent
    • Install agent
    • Upload vault credentials
    • Launch backup
    • Configure backup properties
    • Schedule backup
  • StorSimple – hybrid storage appliance with tiered disk storage (SSD, SATA) and Azure storage.
    • Uses de-duplication and compression techniques
    • Use for backup and DR in addition to production storage
    • Data encrypted in flight and at rest, store encryption keys on-premise
    • Storage presented using iSCSI
    • 2 physical appliances available and a virtual appliance
  • Data Protection Manager – Microsoft’s enterprise backup and recovery solution which supports Bare Metal Restore (BMR) and file level recovery.
    • Integrates with Azure by registering with the associated Azure Backup Vault
    • Use tape, local disk storage or Azure
    • Supports workloads including server, client, SQL Server, SharePoint, Hyper-V, VM, Exchange

StorSimple is the optimal solution for high performance storage and support of low RTO and RPO requirements. Azure Backup is a cost-effective, simple solution for providing block level backup and and file level restore with a supported agent. Data Protection Manager can be integrated with Azure Backup and provides additional capabilities for protecting and recovering Microsoft workloads.

Design Azure BC and DR capabilities

When planning a BC / DR strategy it is important to understand:

  • RPO (Recovery Point Objective) i.e. the maximum time in minutes for which data loss is acceptable when recovering from a disaster
  • RTO (Recovery Time Objective) i.e. the maximum time in minutes it takes to recover service in the event of a disaster
  • Synchronous vs. Asynchronous replication i.e. whether operations are carried out at the same time or queued
  • SLA (Service Level Agreement) for the underlying services

When designing high availability into Azure services consider:

  • Use of Availability Sets and load balancing for Virtual Machines
  • SQL Server AlwaysOn (=> 3 node WSFC – Primary Replica, Secondary Replica, FSW)
  • SQL Mirroring

Hyper-V Replica provides asynchronous replication of VMs without a shared storage requirement however shared storage can be leveraged with supported SANs for additional functionality. Azure Site Recovery also works wtih Hyper-V Replica.

System Center can provide orchestration for Site Recovery failovers.