Archives for Azure - Page 2
Sharing Resource Groups across Subscriptions
In AWS, one can share a resource ( an S3 bucket) across accounts by using simple cross account roles. In Azure, you cannot share resource groups across subscriptions. However, you…
Azure VPN Setup and Troubleshooting
There are three constructs that are needed to setup an Azure VPN Tunnel. These are VPN Gateway (a type of a VNG), a Local Gateway and a Connection. Virtual network…
NGS in Azure
Network Security Groups can be applied to a VM or subnet, and in some cases to both. In certain cases ( turning a VM into a DMZ), it may be…
Azure High Availability Architecture (IaaS based)
Azure high availability VMs architecture – including Taffic Manager, AD instances (on VMs). Self Explanatory – except possibly for the VPN Gateways in each region. Azure High Availability Architecture…
Failover Patterns in the Public Cloud
Let us define some terms before we get started. STANDBY environment – means an active, functioning environment, ready to take over instantly and automatically BACKUP environment – means a passive,…
Governance in AWS, Azure, GCP
What does governance mean in the context of a public cloud? Governance , while often used in the context of 'cost governance' , can actually apply to either of the…
Security Audits of AWS Accounts – Roles, Policies and equivalents on GCP and Azure
What should be audited? And why FullAdmin is a terrible idea. (Also read, KMS based data encryption on AWS and Google Cloud) CloudTrail logs, CloudWatch log groups, GuardDuty logs, Inspector logs,…
Azure Landing Zone Equivalent
Landing Zone like Blueprint in Azure Is there such a thing as an multi account structure landing zone in Azure? Something like this AWS landing zone (Control Tower)? azure landing…
Cloud Security and Migration Architect, Houston, TX
azure powershell architect Anuj Varma is a certified cloud and application Architect based in Austin, TX and Houston, TX. Some aspects of Cloud Architecture that Anuj has helped customers with…