Browsed by
Month: March 2017

Assign and Manage Azure Resource Policies on Tags

Assign and Manage Azure Resource Policies on Tags

In a previous post, I talked about how my client had started using Azure for various departments and enterprise applications in their organization and how they needed a mechanism to sort out how the IT department would easily organize the Azure Resources by department and/or applications.  They needed to do this for a few different reasons – their SDLC process, general organization and charge back to the business processes. Using the tagging feature attached to Resource Groups allowed them to filter…

Read More Read More

Azure Security Tip – Turn on SQL Database Threat Detection immediately for your Azure SQL Databases

Azure Security Tip – Turn on SQL Database Threat Detection immediately for your Azure SQL Databases

For anyone running their SQL Database in Azure, it is highly recommended that you enable Azure SQL Database Threat Detection to identify potential threats to your databases.  Types of threats include SQL injections, vulnerabilities in configuration and setup and weird database access patterns. It’s very simple and easy to do and your admins can get an immediate notification about abnormal activities on your databases in real-time. Furthermore, this service provides you with the information on how to further investigate what’s…

Read More Read More

Azure Security recommendations to avoid Cyberattacks on your Azure Deployments

Azure Security recommendations to avoid Cyberattacks on your Azure Deployments

An interesting article was put out this week on a real-world attack campaign that was detected by the Azure Security Center (ASC) team with some recommendations on how to prevent similar attacks on your environment.  I’ve listed some of the simple steps from this article you can perform on your own to prevent the same thing happening to you. First thing you should do is spend that extra little bit of money (right now $15/month) to configure your Azure subscription(s) to receive…

Read More Read More

Secure your Azure Resources using Role-Based Access Control

Secure your Azure Resources using Role-Based Access Control

Role-Based Access Control (RBAC) allows you to segregate access and duties to other users within your Azure Portal. It allows the ability to grant the amount of access your users need for specific Azure Resources by giving a user access to specific built-in roles. There are three basic roles that apply to all resource types: Owner has full access to all resources including the right to delegate access to others. Contributor can create and manage all types of Azure resources…

Read More Read More

Setting up Azure Resources for Enterprise SDLC Chargebacks

Setting up Azure Resources for Enterprise SDLC Chargebacks

I have a customer who is in the midst of deploying Azure Storage as a source for BLOBs to be downloaded by their customers for a large enterprise integration project.  One of the dilemma’s their IT operations teams are facing is how to setup Azure so that it fits within their Solution Development Lifecycle (SDLC) processes and try to understand how to segregate the costs for the service.  This needs to be segregated by Department and Application. As is standard…

Read More Read More

Are you thinking about making the move to Office 365? Ensure you are fully aware of and take advantage of Microsoft FastTrack resources!

Are you thinking about making the move to Office 365? Ensure you are fully aware of and take advantage of Microsoft FastTrack resources!

If you are a mid to large sized company and contemplating an Office 365 deployment or enhancing your existing Office 365 services, I cannot stress how important it is that you know of & take advantage a free service from Microsoft called Microsoft FastTrack (https://fasttrack.microsoft.com).  With the help of Microsoft FastTrack, you can accelerate your timelines for deploying Office 365 from months to weeks and ensure a smooth transition to the Microsoft cloud in the process. Some of the benefits…

Read More Read More

Azure Traffic Manager Geographic Routing capability hits General Availability

Azure Traffic Manager Geographic Routing capability hits General Availability

Using this capability in Azure Traffic Manager, you can now direct user traffic to specific endpoints based on the geographic location from where the requests originate.  A good use case for this would be to direct users to a localized/language/feature specific web-site that is customized towards that specific region. Or even further, you can route users to an Azure Web site that is hosted in a closer data center. Region granularity includes: World – any region Regional Grouping – Africa,…

Read More Read More

How do you know if your Office 365 subscription is in a secure state?

How do you know if your Office 365 subscription is in a secure state?

Little known to many is a really handy feature recently released by Microsoft called the Secure Score. Secure Score is a totally different way of managing risk on your Office 365 deployment where by instead of reacting to security alerts sent to you by Microsoft, it lets you proactively track and incrementaly improve your Office 365 security. Secure Score figures out which Office 365 services you have along with how they are configured and compares it to a baseline level…

Read More Read More

Provide input on the Azure Logic Apps Triggers and Actions you would like to see for integrating business applications

Provide input on the Azure Logic Apps Triggers and Actions you would like to see for integrating business applications

As I have been playing with the various Azure Logic Apps actions available, I have uncovered that there seem to be a lot that are missing when it comes to SharePoint Online. Many of these actions that are missing can quite easily be custom created by an Azure Function, however, a lot of the basic actions and triggers should be built-in within the provided SharePoint Online logic app action itself (i.e. the basic ability to create a folder in SharePoint Online)….

Read More Read More

Grant limited access to your Azure Storage BLOBS using Shared Access Signatures (SAS)

Grant limited access to your Azure Storage BLOBS using Shared Access Signatures (SAS)

My client has the requirement that BLOB’s be placed on a speedy, durable, scalable & highly available cloud storage platform and accessed via the public via a dropdown menu on their corporate web site where any anonymous could download the BLOB files.  The metadata for the BLOBs would be stored in a SharePoint environment and accessed via web services. The tricky part of their requirement is that they wanted the link to expire after a certain amount of time due…

Read More Read More