Identity and Access
Controlling who can access which resources is key for Cloud projects. Recently I was talking with a customer that has external users (partners) and internal users and the ability to centralize and manage the access for those users is essential.
Azure provides ways for customers to federate user identities to Azure Active Directory as well as enabling Multi-Factor Authentication and the new Role Based Access Control (RBAC) features can be used to restrict access and permissions for specific cloud resources.
To help detect suspicious access, Azure Active Directory offers reports that alert you to anomalous activity, such as a user logging in from an unknown device. In addition, operational logging and alerting capabilities can notify customers if someone stops a website or if a virtual machine is deleted. It is possible also to use an on premise System Center Operations Manager to monitor the availability and performance of resources that are running on Windows Azure.
The reports provides up to 30 days of data representing key changes in the directory, providing the action, timestamp, the user/application that performed the action, and the user/application on which the action was performed.
With new VNET-to-VNET connectivity, multiple virtual networks can be directly and securely linked to one another. In addition, ExpressRoute is now generally available, enabling customers to establish a private connection to Azure datacenters, keeping their traffic off the Internet. Building on those enhancements, Microsoft also introduced Network Security Groups for easier subnet isolation in multi-tier topologies.
Azure uses industry-leading capabilities, including recent enhancements to TLS/SSL cipher suites and Perfect Forward Secrecy, to encrypt content flowing over the internet between the customer and the Azure service
Microsoft is committed to advancing cloud security with a goal to not only meet, but exceed the level of protection most enterprises have in place on-premises or in their own datacenters. For the latest information on security features and best practices, visit the Microsoft Azure Trust Center.
Join Microsoft’s Symon Perriman to see an overview of the new capabilities coming in the next version of Hyper-V for Windows Server. The new feature will enhance management of virtualized servers, storage, networks, and workloads. Learn about upgrading the fabric and virtual machines, Linux support, quality of service, backup, and dynamically adding new resources.
Register now for these exclusive webinars by Microsoft’s Symon Perriman. The webinars will be co-hosted by Savision’s VP of R&D, Steven Dwyer. The webinars will be held on two different dates:
I have been contacted by some people asking about backup issues they are experiencing on Windows Server 2012 . The issue is related with the Microsoft November update release KB3000853.
My recommendation is to remove the update until Microsoft fix the issue as it affected Microsoft and third party backup products.
As per Taylor Brown’s (Hyper-V Program Manager) blog,
“We are getting reports that some customers are seeing backup jobs fail after installing the latest Windows Updates including the November rollup (http://support.microsoft.com/kb/3000853).
We believe there is an issue with the KB3000853 update and are working to fix it as quickly as possible, in the interim downloading and applying http://support.microsoft.com/kb/2996928/ should address the problem”
Saturday 22nd November
Infrastructure Saturday is a day long event for south east Queensland based IT Professional that work with Microsoft products. This event is an educational, informative & lively day filled with sessions about Microsoft technologies.
Location: Microsoft office, Brisbane, QLD. http://www.infrastructuresaturday.com/
Topics covered in my Session: What’s New in Hyper-V vNext?
- New Virtual Machine Upgrade Process
- New Integration Components installation method
- Secure Boot for Linux
- Distributed Storage Quality of Service (QoS)
- Hyper-V Backup
- Hyper-V Virtual Machine Configuration
- Cluster OS Rolling Upgrade
As you look to get the most from your database environment and career, I wanted to extend a special invitation for you to join me and 5,000 fellow professionals from around the world at PASS Summit 2014, Nov. 4-7 in Seattle, WA.
COME ALONG and meet me at the Birds of a Feather Luncheon (BoF) and interact with MVPs, SQLCAT architects, speakers, peers and members of the PASS Board and HQ team in this closing-day lunch focused on bringing people with the same passions together. We will discuss, debate and share ideas from your experiences and past week with others at this interactive sit-down. I will be covering topics like virtualization, cloud, security, Professional Development.
PASS Summit – the world’s largest SQL Server conference – is an amazing opportunity to connect, share, and learn with other SQL Server and BI pros like you and me.
With over 200 sessions across 5 topic tracks and 70+ hours of networking opportunities, PASS Summit is packed with the most intensive SQL Server and BI training available anywhere. Summit’s practical sessions are designed to help you increase your knowledge, keep your skills up-to-date, and gain strategic insights from the world’s leading experts that you can put into action immediately when you get back to the office. Plus, you can bring your pressing questions to the Microsoft SQLCAT team, meet me and other MVPS and community experts in the Community Zone, talk with your local PASS Chapter leader, and more – every day at Summit is a chance to make lifelong friends, like I have.
I hope to see you at Summit – here’s where you can register – and please let me know if you’re attending so that we can connect!
This year TechEd Australia will be held in Melbourne (Oct, 7th – Oct 8th) and in Sydney (Oct, 27th – Oct 28th)
I will be speaking about Azure Remote App on both editions and if you come along and tweet about my session you will enter into a draw to win a copy of my book along with Savision Polo.
It is an interactive demo. I will be using Hyper-V to show how to build a custom RemoteApp image as well as demo the RemoteApp client on different devices.
Bring scale, agility and global access to your business applications. Azure RemoteApp helps employees stay productive anywhere, and on a variety of devices – Windows, Mac OS X, iOS, or Android. Integrate Azure RemoteApp with your company’s existing on-premise infrastructure and bring your own Remote Desktop Session Host, or deploy Azure RemoteApp using our pre-built app collections for a stand-alone cloud service. Quickly ramp up and provide seasonal workers, vendors, or large groups of new employees access to company applications without paying for new servers and expensive on-premise infrastructure.
Date: Tuesday, October 7
- Time:9:40 AM – 10:40 AM
- Room: Datacentre and Infrastructure Management
- Session Type: Breakout
- Session Code:DCI301
- Session Levels:300
Date:Monday, October 27
- Time:10:10 AM – 11:10 AM
- Room:Datacentre & Infrastructure Management
- Session Type:Breakout
- Session Code:DCI301
- Session Levels:300
It’s time for a new Windows. Announcing Windows 10 : One Product with a tailored experience for each device
Windows 10 represents the first step of a whole new generation of Windows. Windows 10 unlocks new experiences for customers to work, play and connect. Windows 10 embodies what our customers (both consumers and enterprises) demand and what we will deliver
Microsoft promise that Windows 10 will deliver the right experience on the right device at the right time. It will be our most comprehensive platform ever
more details about what Windows 10 will have for these customers, check out this blog post on the Windows for your Business blog.
Check out the Windows 10 Video here: http://www.youtube.com/watch?feature=player_embedded&v=84NI5fjTfpQ
And form Windows Server and System Center perspective:
Infrastructure upgrades: Rolling upgrades for Hyper-V clusters to the next version of Windows Server without downtime for your applications and workloads. This includes support for mixed versions as you transition your infrastructure.
Networking: New components for our software-defined networking stack that enable greater flexibility and control, including a network controller role to manage virtual and physical networks.
Storage: New synchronous storage replication that enhances availability for key applications and workloads plus storage Quality of Service to deliver minimum and maximum IOPS in environments with workloads with diverse storage requirements.
Remote Desktop: Enhanced application compatibility with OpenGL and OpenCL support.
Identity and Access Management: New scenarios to reduce the risk profile of administrators with elevated rights, including time-based access with fine-grained privileges, and new application publishing capabilities.