Microsoft Build: Cloud Development Challenge
This is my Study Journal as I progress thru Microsoft | Learn CLOUD SKILLS CHALLENGE
Embedded Files
Challenge active from May 23, 2023 until June 20, 2023
Learn more
The Control and organize Azure resources with Azure Resource Manager module is a good next step. There you'll go deeper on how to use Azure Resource Manager to organize resources, enforce standards, and protect critical assets from deletion.
Here are additional resources to help you go further:
Get started with the Cloud Adoption Framework for Azure.
Learn more about Azure subscription and service limits, quotas, and constraints.
Review the complete list of Azure built-in roles for Azure RBAC.
To learn how Azure Policy can enforce tagging rules and conventions, see Assign policies for tag compliance.
For recommendations on how to implement your own tagging strategy, see Resource naming and tagging decision guide.
Explore additional Azure Policy samples.
For a more advanced topic, see Creating a custom policy definition. This tutorial gets you started.
Microsoft Cloud Adoption Framework for Azure:
Financial planning:
Skills readiness paths:
Cloud migration:
Cloud governance:
Cloud adoption plan:
Review sample business outcomes.
Document those findings in the provided business outcome template to share with internal partners during the transformation journey.
Identify the learning metrics that best represent progress toward the identified business outcomes.
Establish a financial model that aligns with the outcomes and learning metrics.
Document and incorporate the digital estate in the current environment to populate the financial model.
Learn more
For more information on architecting solutions on Azure, visit the Azure Well-Architected Framework guide in the Azure Architecture Center.
Learn more
Azure database documentation
Migrating database workloads to Azure
Working with Azure databases
Learn more with Azure documentation
Read about governance in the Microsoft Cloud Adoption Framework for Azure.
Organize resources with management groups in Azure Governance.
Organize and manage Azure subscriptions with Microsoft Cloud Adoption Framework.
Plan how to name resources and tags with Microsoft Cloud Adoption Framework.
Review recommended policies for Azure services from Azure Policy.
Learn more with self-paced training
Build a cloud governance strategy on Azure.
Describe core Azure architectural components.
Get an introduction to Azure Blueprints.
Secure your Azure resources with Azure RBAC.
Learn about enterprise-scale landing zones in the Microsoft Cloud Adoption Framework for Azure.
Choose the best Azure landing zone to support your requirements for cloud operations.
Learn more with optional hands-on exercises
Learn how to configure list access by using Azure RBAC and the Azure portal.
Learn more with Azure documentation
Read about Azure Active Directory.
Find business-to-business solutions with Azure AD B2B.
Research business-to-customer solutions with Azure AD B2C.
Get more information about Azure role-based access control (RBAC).
Review how conditional access is used in Azure AD.
Go in depth with Azure AD Identity Protection.
Implement Azure AD access reviews.
Learn more with self-paced training
Plan, implement, and administer conditional access.
Design, develop, and manage access reviews.
Enable secure external collaboration for your applications with Azure AD B2B.
Support secure access to your apps for external users with Azure AD B2C.
Authenticate apps to Azure services with service principals and managed identities for Azure resources.
Learn more with optional hands-on exercises
Learn how to add and delete users in Azure AD.
Learn more with Azure documentation
Read about sources of data in Azure Monitor.
Review infrastructure metrics and logs in Azure Architecture Center.
Monitor for performance efficiency in Azure Architecture Center.
Explore your data with Azure Data Explorer.
Learn more with self-paced training
Design a holistic monitoring strategy on Azure.
Learn more with optional hands-on exercises
Monitor, diagnose, and troubleshoot your Azure storage.
Explain recovery time objective (RTO)
is the maximum amount of time available to bring resources online after an outage or problem.Â
Explain recovery point objective (RPO)
is the point in time to which a database should be recovered and equates to the maximum amount of data loss that the business is willing to accept.Â
Explain the available high availability and disaster recovery (HADR) options for bothÂ
IaaSÂ
Always On Failover Cluster Instance (FCI) - Instance
Always On Availability Group (AG) - Database
Log Shipping - Database
PaaS
active geo-replication (Azure SQL Database only) Â
autofailover groups (Azure SQL Database or Azure SQL Database Managed Instance)Â
Devise a HADR strategy
Explore other modules
Mean time to recovery (MTTR): Determines the average time it takes to restore a component after a failure.
Mean time between failures (MTBF): Identifies how long a component can reasonably expect to last between outages.
Recovery time objective (RTO): Defines the maximum acceptable time one of the apps can be unavailable following an incident.
Recovery point objective (RPO): Defines the maximum duration of data loss that's acceptable during a disaster.
Recovery level objective (RLO): Specifies the granularity of the required recovery, such as recovering a web app, a website, or a specific resource.
Learn more
Read more about Azure file share backup.
Explore Azure Recovery Services vaults.
Read about Azure Traffic Manager.
Use auto-failover groups to enable transparent and coordinated failover of multiple databases.
Explore Azure Storage redundancy.
Back up Azure file shares.
Learn more with self-paced training
Discover disaster recovery and backup.
Design your site recovery solution in Azure.
Design a geographically distributed application.
Explore Microsoft Azure Well-Architected Framework - Reliability.
Describe high-availability and disaster-recovery strategies.
Learn more with optional hands-on exercises
Back up and restore your Azure SQL database (sandbox).
Protect your virtual machines by using Azure Backup. Azure subscription required.
Learn more with Azure documentation
Read an introduction to Azure Storage.
Review Azure Storage options.
Examine Azure disk storage options.
Configure Azure security baseline for Azure Storage.
Discover more about Azure Blob Storage.
Explore more about Azure Files.
Read more about Azure NetApp Files.
Learn more with self-paced training
Choose the right disk storage for your virtual machine workload.
Configure Azure Blob Storage.
Choose a data storage approach in Azure.
Learn more with optional hands-on exercises
Create a storage account by using the Azure portal (sandbox).
Manage caching and performance in Azure Storage disks (sandbox).
Secure your Azure Virtual Machines disks (sandbox).
Learn more with Azure documentation
Explore SQL Server on Azure Virtual Machines.
Explore Azure SQL Managed Instance.
Explore Azure SQL Database.
Read about Azure Cosmos DB.
Discover Azure SQL Database serverless.
Build scalable cloud databases.
Scale out with Azure SQL Database.
Use elastic pools to manage and scale multiple databases in Azure SQL Database.
Learn more with self-paced training
Secure data at rest on Azure.
Work with Azure Cosmos DB.
Get an introduction to Azure SQL Edge.
Learn more with optional hands-on exercises
Create and query a SQL database in Azure (sandbox).
Learn more with Azure documentation
Read about Azure Data Factory.
Read about Azure Databricks.
Read about Azure Data Lake.
Examine the Azure Synapse SQL architecture.
Understand Analytics end-to-end with Azure Synapse.
Understand Transact-SQL features supported in Azure Synapse SQL.
Understand stream processing.
Learn more with self-paced training
Discover Azure database and analytics services.
Review concepts of data analytics.
Review an introduction to Azure Data Factory.
Work with data streams by using Azure Stream Analytics.
Learn more with optional hands-on exercises
Explore Azure Databricks (interactive exercise). This module requires an Azure subscription with administrative access permissions.
Explore Azure Synapse Analytics (interactive exercise). This module requires an Azure subscription with administrative access permissions.
Learn more with Azure documentation
Choose an Azure compute service.
Read about Azure App Service.
Read about Azure Batch.
Read about Azure Container Instances.
Read about Azure Functions.
Read about Azure Logic Apps.
Discover what is Kubernetes.
Read about the Azure Kubernetes Service.
Review security considerations for Azure Container Instances.
Learn more with self-paced training
Choose the best Azure service to automate your business processes.
Align requirements with cloud types and service models in Azure.
Complete an introduction to Azure Logic Apps.
Complete an introduction to Azure Kubernetes Service.
Learn more with optional hands-on exercises
Practice with an Introduction to Azure Virtual Machines (sandbox).
Create an Azure Batch account by using the Azure portal. (Azure subscription required.)
Create a web app in the Azure portal (sandbox).
Create a Windows virtual machine (sandbox).
Create the social media tracker Logic App (sandbox).
Learn more with Azure documentation
Read about Azure Queue Storage.
Read about Azure Service Bus.
Read about Azure Event Grid.
Discover Azure Resource Manager (ARM) templates.
Discover Azure Automation.
Discover Azure App Configuration.
Discover Azure API Management.
Discover Azure Cache for Redis.
Learn more with self-paced training
Complete an introduction to Azure API Management.
Complete an introduction to Azure Event Hubs.
Complete an introduction to infrastructure as code by using Bicep.
Complete an introduction to Azure Cache for Redis.
Explore message queues and stream processing.
Learn more with optional hands-on exercises
Implement message-based communication workflows with Azure Service Bus (sandbox).
Practice creating an Azure Service Bus queue and topic (sandbox).
Deploy Azure infrastructure by using JSON ARM templates (sandbox).
Communicate between applications with Azure Queue Storage (sandbox).
Learn more with Azure documentation
Learn more with self-paced training
Complete an introduction to Azure Bastion.
Complete an introduction to Azure Web Application Firewall.
Complete an introduction to Azure Firewall.
Complete an introduction to Azure Front Door.
Complete an introduction to Azure Virtual WAN.
Learn more with optional hands-on exercises
Complete an introduction to Azure Virtual Networks. (Azure subscription required.)
Design and implement Azure ExpressRoute. (Azure subscription required.)
Design and implement hybrid networking. (Azure subscription required.)
Design and implement private access to Azure Services. (Azure subscription required.)
Enhance your service availability and data locality with Azure Traffic Manager (sandbox).
Distribute services across virtual networks and integrate with Azure Virtual Network peering (sandbox).
Secure and isolate access to Azure resources by using network security groups and service endpoints (sandbox).
Learn more with Azure documentation
Peruse Azure Migrate documentation.
Explore the Service Map solution in Azure.
Estimate costs with the Total Cost of Ownership (TCO) calculator.
Read about the Azure Database Migration Service.
Migrate your data to Azure Cosmos DB with the Data Migration tool.
Read about the Microsoft Cloud Adoption Framework for Azure.
Get started with the Cloud Adoption Framework.
Learn more with self-paced training
Design your migration to Azure.
Accelerate your migration journey to Azure.
Complete a module about applications and infrastructure migration and modernization.
Use Storage Migration Services to migrate file servers to Azure.
Migrate SQL workloads to Azure SQL Databases.
Migrate on-premises workloads to Azure.
Learn more
To learn more about cost optimization, review the following documentation:
Learn more
To learn more about incorporating operational excellence through your organization and tools you can use along the way, visit the following documents:
Learn more
To learn more about the Azure Well-Architected Framework and about performance efficiency, see the following articles:
Learn more
To learn more about the Azure Well-Architected Framework and Azure services to improve the reliability of your architecture, visit the following articles:
Learn more
To learn more about the Security pillar of the Azure Well-Architected Framework, visit the following articles:
Configure encryption with customer-managed keys stored in Azure Key Vault
Start using Azure Active Directory Privileged Identity Management
Next steps
Get started with the Cloud Adoption Framework to find more articles that can help with common blockers.
Explore the Ready methodology of the framework to learn about common operating models in the cloud, environmental configuration, Azure landing zones, and tools to help you build your cloud platform in Azure.
Learn more:
Cost-optimize your workloads: Optimize your resources and architecture with Azure best practices from Azure Advisor and the Microsoft Azure Well-Architected Framework
Learn more:
Read about Azure Advisor
Get Azure Advisor cost recommendations
Learn about the Microsoft Azure Well-Architected Review
Learn about the Microsoft Azure Well-Architected Framework
Save with Azure offers and licensing terms like the Azure Hybrid Benefit and Azure Reservations.
Learn more:
Learn about the Azure Hybrid Benefit
Learn about Azure Hybrid Benefit for Windows Server
Learn about Azure Reservations
Read the reserved instances FAQ
Learn about Azure
Many other learning paths in Microsoft Learn training can help you to build your business case:
Control Azure spending and manage bills with Microsoft Cost Management
Microsoft Azure Well-Architected Framework—Cost Optimization
Analyze costs and create budgets with Microsoft Cost Management
Configure and manage costs as a Microsoft partner by using Microsoft Cost Management
Next steps
Continue to improve your planning skills with the Plan methodology of the Cloud Adoption Framework. The following outline a few of the things you can improve with that methodology:
Use your plan and assessment data to improve cost forecasts.
Align your people across the organization for initial cloud adoption efforts.
Build a skills readiness plan to better prepare your team for the work to be done.
Learn more about cloud adoption rationalization to make the right decisions for your portfolio of workloads.
Integrate assessment data into your plan at scale by using Microsoft Excel with the following article series.
Next steps
Continue to learn about implementation options for Azure landing zones by reviewing the best practices in the Ready methodology of the Cloud Adoption Framework. Those practices help you to choose how and when to refactor your landing zone to better fit your needs.
Virtual machines Applications Data Hybrid Technology platforms Additional scenarios
SAP (classic and HANA)
Kubernetes
Containers
NetApp
how-to guide (adding subscriptions to a management group)
For standard enterprises:
Improve the Security Baseline discipline (standard enterprise)
Improve the Resource Consistency discipline (standard enterprise)
Improve the Cost Management discipline (standard enterprise)
For complex enterprises:
Improve the Security Baseline discipline (complex enterprise)
Improve the Resource Consistency discipline (complex enterprise)
Improve the Identity Baseline discipline (complex enterprise)
Next steps
To learn more about cloud governance, check out the Govern methodology overview. This article will guide you through four steps to develop cloud governance.
Next steps
For more information about the subjects described in this module, read the Cloud innovation in the Cloud Adoption Framework documentation.
Recommended content
Microsoft Cybersecurity Reference Architectures (MCRA) - People An interactive training guide for people who are new to security.
MCRA Security Roles - YouTube Overview of the roles and responsibilities in a security program. Includes a discussion of how they're evolving to meet the needs of modern attacks, cloud technology, and Zero Trust principles. This top-to-bottom view of roles includes the board and executives.
Several tools and controls are available to help you quickly achieve a security baseline:
Microsoft Defender for Cloud: Provides the tools needed to harden your resources, track your security posture, protect against cyberattacks, and streamline security management.
Azure Active Directory (Azure AD): The default identity and access management service. Azure AD provides an identity security score to help you assess your identity security posture relative to Microsoft's recommendations.
Microsoft Sentinel: A cloud-native SIEM that provides intelligent security analytics for your entire enterprise, powered by AI.
Azure Distributed Denial of Service (DDoS) standard protection plan (optional): Provides enhanced DDoS mitigation features to defend against DDoS attacks.
Azure Firewall: A cloud-native and intelligent network firewall security service that provides threat protection for your cloud workloads running in Azure.
Web Application Firewall: A cloud-native service that protects web apps from common web-hacking techniques such as SQL injection and security vulnerabilities such as cross-site scripting.
Privileged Identity Management (PIM): A service in Azure AD that enables you to manage, control, and monitor access to important resources in your organization.
Microsoft Intune: A cloud-based service that focuses on mobile device management and mobile application management.
Report abuse