Table of Contents
Acknowledgments xv
Introduction xvii
Chapter 1 Cloud Computing Concepts 1
An Introduction to Cloud Computing 2
From the Data Center to the Cloud 3
Choosing a Cloud Service Provider 3
Reasons to Consider Cloud Computing 5
Cloud Computing Deployment Options 6
Private Cloud 7
Public Cloud 7
Hybrid Cloud 9
Cloud Service Models 9
Computing Based on Consumption 10
Cloud Computing as a Shared Responsibility 10
Software as a Service (SaaS) 11
Infrastructure as a Service (IaaS) 13
Platform as a Service (PaaS) 15
Serverless Computing 17
Technical Benefits of Cloud Computing 18
High Availability 18
Scalability 18
Elasticity 20
Agility 21
Disaster Recovery 21
Financial Benefits of Cloud Computing 22
Chapter Review 22
Questions 24
Answers 28
Chapter 2 Azure Concepts and Architecture Components 31
Azure Portal 32
Billing 34
Support 35
Azure Marketplace 37
The Azure Architecture Framework 38
Azure Subscriptions 39
Types of Subscriptions 39
Billing and Account Control Boundaries 42
Organizing Subscriptions and Billing 43
Resources and Azure Resource Groups 44
Locating Resources and Resource Groups in Azure 44
Azure Regions 46
Regions Type 46
Selecting Azure Geographies 47
Azure Regional Pairs 47
Data Residency and Regional Pairs 48
Availability Zones and Management Groups 49
Management Groups 51
Management Group Limitations 53
Azure Resource Manager (ARM) 53
Chapter Review 54
Questions 56
Answers 59
Chapter 3 Azure Resources 63
An Introduction to Compute Resources 63
Azure Virtual Machines 64
Azure Virtual Machine Design Configuration 65
Configuring an Azure Virtual Machine 66
Billing and Virtual Machines 73
Availability Options for Virtual Machines 76
Azure App Service 77
App Service Plans 77
Creating a Web App 79
Benefits of Azure App Services 79
Azure Container Instances 81
Creating an Azure Container Instance 82
Azure Kubernetes Service 86
Windows Virtual Desktop 87
An Introduction to Storage Resources 89
Azure Container Storage 90
Azure Disk Storage 91
Azure File Storage 93
Storage Tiers 94
An Introduction to Database Resources 94
Azure SQL Database 95
Relational Database Design in Azure SQL Server 96
Azure SQL Database Managed Instances 98
Azure Database for MySQL 99
Azure Database for PostgreSQL 99
Azure Cosmos DB 100
An Introduction to Networking Resources 102
Azure Virtual Network 102
VPN Gateways 102
Virtual Network Peering 104
Configuring a Virtual Peering Network 105
Azure ExpressRoute 107
ExpressRoute Direct 107
Azure Marketplace 108
Chapter Review 109
Questions 111
Answers 114
Chapter 4 Management Tools and Solutions 117
Azure Management Tools 117
Azure Portal 119
Azure PowerShell 120
Azure CLI 123
Azure Cloud Shell 124
Azure Mobile App 126
Azure Advisor 127
Azure Resource Manager Templates 131
Azure Monitor 132
Azure Service Health 136
Azure IoT Solutions Overview 139
Azure IoT Hub 139
Azure IoT Central 145
Azure Sphere 149
Data Analytics Solutions 150
Azure Synapse Analytics 150
HDInsight 152
Azure Databricks 153
Artificial Intelligence and Machine Learning Solutions 155
Azure Machine Learning 155
Cognitive Services 159
Azure Bot Service 161
Serverless Computing 163
Azure Functions 163
Logic Apps 163
Azure Functions or Azure Logic Apps 164
DevOps Solutions 165
Azure DevOps 165
GitHub 170
GitHub Actions 171
Azure DevTest Labs 172
Chapter Review 174
Questions 176
Answers 180
Chapter 5 General Security and Network Security 181
Core Security Features 181
Azure Security Center 181
Secure Score 183
Recommendations 184
Regulatory Compliance 184
Azure Defender 185
Security Alerts 186
Resource Hygiene and Inventory 187
Azure Key Vault 188
Azure Sentinel 192
Azure Dedicated Hosts 195
Azure Defense Strategies in Depth 196
Network Security Groups (NSG) 197
Azure Firewall 200
Azure DDoS Protection 201
Chapter Review 202
Questions 203
Answers 206
Chapter 6 Identity, Governance, Privacy, and Compliance 209
Authentication and Authorization 209
Azure Active Directory 210
Conditional Access, Multi-Factor Authentication (MFA), and Single Sign-On (SSO) 213
Conditional Access 213
Multi-Factor Authentication 214
Single Sign-On 216
Azure Governance Features 217
Role-Based Access Control (RBAC) 217
Resource Locks 219
Resource Tags 221
Azure Policy 221
Azure Blueprints 222
Cloud Adoption Framework for Azure 223
An Overview of Security, Privacy, and Trust 224
Microsoft Privacy Statement 225
Online Services Terms (OST) and Data Protection Addendum (DPA) 225
Trust Center 225
Azure Compliance Documentation 225
Azure Sovereign Regions 226
Azure Public Cloud 226
Azure U.S. Government Cloud 226
Azure German Cloud 226
Azure China Cloud 227
Chapter Review 227
Questions 228
Answers 230
Chapter 7 Cost Management and Service-Level Agreements 231
Planning and Managing Costs 231
Pricing Factors That Affect Cost 232
Factors That Can Reduce Costs 235
Pricing Calculator and Total Cost of Ownership Calculator 240
Pricing Calculator 241
Total Cost of Ownership Calculator 242
Azure Cost Management 244
Azure Service-Level Agreement 247
SLA Percentages, Downtime, and Credits 247
Calculating Composite SLA Terms 248
Service Lifecycle in Azure 248
Chapter Review 249
Questions 250
Answers 254
Appendix A Objective Map 255
ExamAZ-900 255
Appendix B About the Online Content 259
System Requirements 259
Your Total Seminars Training Hub Account 259
Privacy Notice 259
Single User License Terms and Conditions 259
TotalTester Online 261
Performance-Based Questions 261
Technical Support 261
Glossary 263
Index 277