Please enable JavaScript.

Coggle requires JavaScript to display documents.

AZ-303 - Coggle Diagram

- - - - Consumption (Serverless)
        
        Pay for execution resources only (memory used, execution time)
        
        scaling is managed automatically
        
        Only public access
        
        cheaper
        
        execution time limited
        
        automatic scale
      - Premium
        
        Warm instances
        
        StartUp whithout delays
        
        Vnet Conectivity
        
        unlimited execution
        
        Premium instances sizes
        
        manual scales
        
        Pay for cost of the plan instances
        
        Shared host with other customerss(can affect performance)
      - AppService Plan (Dedicated)
        
        AppServicePlan (Dedicated VMs)
        
        usefull for custom images
        
        Plans underutilized can be used
        
        manual scales adding VMs
        
        make sure to enable alway on
        
        Pay for cost of the VMs of the plan
        
        exclusive Host
    - - storage account of general purpouse
      - Publisher
        
        Docker
        
        Code :
  - - - Executed based in a cron task
    - - event routing services to build reactive, event-driven applications
  - - - Supports writing Statefull functions in a serverless enviroment
      - Statefull workflowsof functions using a orchestrator and entity functions
      - runtime handles the state of management, checkpoints and restarts
      - Pattern
        
        Function Chaining
        
        Fan Out, Fan In
        
        Execute in paralel and wait all finish
        
        Async HTTP APIs
        
        Monitoring
        
        Human Interaction
        
        Agregator
  - - - event Hubs will not process the next batch in a partition until the current batch, and every event in that batch, has completed.
      - provides message streaming through a partitioned consumer pattern in which each consumer only reads a specific subset, or partition, of the message stream
    - - Event Grid is push based (via HTTPS) and these are pull
      - Event Grid is it is meant for processing events, not messages
    - - No task depends on the completion of another task in that queue
      - Service Bus queues is an enterprise-grade message broker with some powerful features like sessions, managed dead-letter queues, and custom policies.
      - rely on the MessageHandler provided by the Service Bus SDK to pull new messages
      - session-enabled queues do care about order
        
        patterns
        
        Request-response
        
        FIFO
        
        client applications can no longer send/receive regular messages. All messages must be sent as part of a session (by setting the session id) and received by receiving the session
      - Message session state
        
        to recover from unexpected failures and can resume partially completed work on a different process or machine from where the work began
      - partiotioning
        
        when the topics, queues or messages need to be partitioned across multiple message brokers.
      - duplicate detetction
        
        used to ensure that duplicate messages are not sent from the queue.
      - disable the queue by going to the Properties of the queue
      - Shared access policie is required to interact with the Service Bus queue
- - - - you also can create a unique key with a combination of fields that must be unique
  - - - Multi-Region Writes
        
        AKA: Multimaster, Active -Active
        
        ConflictResolution
        
        LWW Last Write Win
        
        Insert or Replace item with highest value wins
        
        Delete alway wins over inserts or replace
        
        All regions converge to a single winner
        
        Custom policie defined by a procedure of user
        
        Consistency levels
        
        Strong consistency level
        
        Read must wait until write is complete
        
        Eventual consistency
        
        do not wait Use the old version of the data
        
        Bounded Stayeleness
        
        Session
        
        Consistent prefix
- - - - Fault Domain
        
        Maximum 3
        
        Lower in some regions
        
        Separate hardware
        
        starts with number 0
      - UpdateDomain (UD)
        
        Maximum 20
        
        Updates 1 UD at a time (all vms in same UD )
        
        starts with number 0
        
        Only one update domain is rebooted at a time.
      - placement group
        
        VMs will be phisicaly closer
  - - - Managed Disk
      - Same Application tier
- - - - enable for a group of users
      - enble for all users
  - - - email addres
      - authenticator app
      - OATH hardware token
      - SMS
      - Voice call
      - Security questions
- - - - tex message to phone
      - notification trough mobile app
      - verification code from mobile app or token
      - phone call
  - - - End users report that the account mfa request not generated by them
      - Automatically block users who report fraud
      - Allow users to submit fraud alerts
    - - Allow users to skip mfa for a time defined in seconds
      - users to apply need to be added to the list
  - - - for a user not enrolled in per-use
    - - The user is enrolled in per-user Azure AD Multi-Factor Authentication, but can still use their password for legacy authenticatio
    - - The user is enrolled per-user in Azure AD Multi-Factor Authentication
- - - - Who are you
      - What are you accesing?
- - - - Can monitor thid party cloud and other resource
      - End to end monitor
        
        Application
        
        Operative System
        
        Azure Resources
        
        Azure service: Subscription,
        
        Azure Health: Azure AD Tenant
      - Monitoriing Data
        
        Metrics
        
        Small time based data
        
        Collected at regular intervals
        
        Azure or external data
        
        Platform metrics
        
        Originates from Azure platform
        
        Logs
        
        Large verbose information
        
        Collected sporadically
        
        Azure or external data
        
        platform logs
        
        Originates from Azure resources
        
        Suscription
        
        Resources
        
        Azure AD
      - Actions
        
        Alert
        
        Export
        
        Visualize
        
        Insights
        
        Integrate
    - - Service status according to our resources
      - Detail health history of the resouce
      - Planned maintenance
    - - Azure Security Center
        
        Prevent, detect and respond to threats for Azure and hybrid enviroment
        
        prov ides recomendations of how to improve security of enviroment
        
        Azure and hybryd enviromets
        
        Several options are vailable to take action
        
        Pricing tiers
        
        Free
        
        Basic health and secure recommendations
        
        Standard
        
        resourfces Outside of azure
        
        Several monitor options
        
        Integration
        
        Cloud App Security
        
        Windows Defender Advance Thread Protection ATP
        
        Components
        
        Security policy
        
        Recomendations
        
        Could be based in a international standard
        
        Workflow automation
        
        using logic apps to trigger based on a thread
      - Azure Sentinel
        
        Centralized SIEM/SOAR support a variety of data source
        
        SIEM: Security Inforamtion and Event Management
        
        SOAR: Security Orchestration Automation and Respond
        
        Broad Security Ecosystem
        
        Respond Threaths
        
        detected with IA
        
        respond with orchestration or automation
        
        WorkSpace Data conectors
        
        AWS
        
        Azure AD
        
        AzureInformation Protection
        
        Azure security Center
        
        Operations teams have a range of analytycs or automatic response s
        
        Querys
        
        Things you should hunt therads by monitoring
        
        Playbooks
        
        Range of proper responses
    - - Monitor Syncronizathion
      - Monitor Infraestructure
      - Supports
        
        AD Connect Synchronzation
        
        Sync Isues
        
        Duplicate attribute
        
        Data Mismatch
        
        Data Validation Failure
        
        Large attributte
        
        Sync Insgths
        
        latency
        
        object changes
        
        Object-level sync error reporting
        
        AD FS
        
        monitor and alertss for infraestructure health
        
        Extranet lockout trends
        
        Failed sign-ins reporting
        
        Usage analytics
        
        AD DS
        
        monitor and alertss for infraestructure health
        
        Replication status dashboard
        
        Replication status dashboard
      - requres
        
        AZ AD P1 license or greater
        
        first conect health agent requires one license
        
        25 aditional licenses per aditional agent
        
        Requires agent installation on each targeted server
  - - - Detail analysis of the diagnostic log
      - AKA:
        
        Azure monitor logs
        
        Azure monitor log analytics
      - Array of diferent datasource in one area
      - Components
        
        Workspace
        
        Centralized repository for storing log and metric data
        
        Data source
        
        Several data source can be leveraged.
        
        Analytics
        
        Insights gained by analyzing end to end data
      - Pay as you go
    - - Integration
        
        to third services
        
        other services
    - - Store Long term archiving
    - - Operative system
        
        Log Analytics agent to collect client data sources into Azure Monitor
        
        Dependency agent to collect dependencies supporting VM insights
        
        Azure virtual machines, install Azure Diagnostic Extension to collect logs and metrics into Azure Monitor
        
        Diagnostic extension allows to obtain metrics from OS
        
        Diagnostic agent
        
        more metric information
        
        IIS logs
      - Application code, performance and functionality. traces, application logs, and user telemetry
        
        Instrument your code to collect data into Application Insights.
        
        Support many enviroments
        
        User analysys (telemetry)
        
        realtime metrics streams
        
        application map
        
        view map of conectivity
        
        Application profile
        
        trace and analysis of aplication performance of hot code
        
        Components
        
        Instrumentation (code):
        
        Sever side SDK within the application code
        
        Use a instrumentation key
        
        Instrumentation:(codeless):
        
        some azure services suppor application insigths using an agent
        
        less functionality
        
        for already deployed app
        
        Application Insigths resource
        
        JavaScripts snippets can get information from the client
        
        Gives a holystic picture of what is happening
        
        usage tools
        
        Funnels
        
        progression through a series of steps in a web application
        
        how customers are using your application
        
        Retention
        
        helps you analyze how many users return to your app, and how often they perform particular tasks or achieve goals
        
        Impact
        
        analyzes how load times and other properties influence conversion rates for various parts of your app
        
        discovers how any dimension of a page view, custom event, or request affects the usage of a different page view or custom eventt
        
        User Flows
        
        Analyze user navigation patterns
        
        Cohorts
        
        set of users, sessions, events, or operations that have something in common
        
        cohorts are defined by an analytics query.
        
        where you have to analyze a specific set of users or events repeatedly,
        
        metric information per default
        
        Quotas
        
        View of utilization of resources related to app services (CPU, Storage,etc)
        
        Logs
        
        Diagnostic logs
        
        Application logs, web server and other log information for windows and linux apps
        
        Activity logs
        
        can be exposed though platform and azure monitor
        
        Container Insigths
        
        Windows and linux kubernes
        
        pod monitoring
        
        node monitoring
        
        cluster monitoring
        
        Workload monitoring
        
        requires
        
        container instances
        
        Log Analytics
        
        workspace
        
        containerized agent
      - Azure subscription)
        
        View in portal
        
        configure collection to Azure Monitor using a log profile.
        
        Activity logs
        
        operations performed using ARM API (management layer)
        
        SDK app
        
        Portal
        
        CloudShell
        
        WRITE actions for azure resources (Changes, creation, deletes)
        
        Stored 90 Days use Diagnostic setting or more
      - Azure resources
        
        Metrics collected automatically, view in Metrics Explorer
        
        diagnostic settings to collect logs in Azure Monitor
        
        Insigths for more detailed monitoring for specific resource types
      - Azure tenant (Az Active Directory)
        
        View AAD data in portal
        
        tenant diagnostic settings to collect logs in Azure Monitor
        
        Logs stored separate from resources
        
        Export with Diagnostic settings
        
        export to Log analytics workspace require P1 or P2 AD License
      - Custom resources
        
        Collect log or metrics data into Azure Monitor from any REST client.
    - - Easy access to platform metrics
      - Visualize Performance
      - Alerts using Action Groups
        
        Capabilities
        
        Automation and integration
        
        Azure Logic apps or third party
        
        Functions
        
        Webhooks
        
        Alert management
        
        Standard alerts (email, SMS, etc)
        
        Alert Rule
        
        Alert condition
        
        Criteria for the alert based on signal
        
        Maximun 5 per alert
        
        Multipleconditions use an ‘AND’ operator so it fires an alert when all conditions are met. and resolves if at least one of the conditions is no longer met.
        
        Target resource
        
        Define signals and what be monitored
        
        can monitor multiple resources of the same type in the same region
        
        ActionGroup
        
        type
        
        sms
        
        no more than 1 per 5 minutes
        
        push notification to azure app
        
        voice call to phone
        
        no more than 1 per 5 minutes
        
        call to azure function
        
        call to azure log app
        
        call to webhook (via URI)
        
        integration with ITSM
        
        Call to built in or Automation Runbook
        
        email
        
        no more than 100 per 1 hour
        
        One action group per alert, same group can be used in other alerts. Several actions per action group
        
        Alerts Limits
        
        Metric alerts: 5,000 active alert rules per subscription
        
        Activity log alerts: 100 active alert rules per subscription
        
        Log alerts: 512 active alert rules per subscription
        
        Action Group Limits
        
        10 Azure app actions per action group.
        
        1,000 email actions in an action group.
        No more than 100 emails in an hour.
        
        10 ITSM actions in an action group.
        
        10 logic app actions in an action group.
        
        10 runbook actions in an action group.
        
        10 SMS actions in an action group.
        No more than 1 SMS message every 5 minutes.
        
        10 voice actions in an action group.
        No more than 1 voice call every 5 minutes.
        
        10 webhook actions in an action group. Maximum number of webhook calls is 1500 per minute per subscription
      - Centralized interface
    - - Where and what information will be stored
      - Categories
        
        Log
        
        metrics
      - Destination details
        
        Send to log analytics
        
        Archive to storage account
        
        Must be in same region o objetive
        
        Stream to event hub
    - - VM Insigths
        
        requires
        
        Log Analytic Workspace for data storage
        
        Log Analytic agent deployed to VM
        
        Dependency agent deployed to VM
        
        features
        
        Dependency map
        
        Predefined trending performance charts
        
        AKA VM Insigths or Azure monitor for VMs
      - Network Insigths
        
        Offer without requiring futher configuration
        
        Search and filtering
        
        Resource Health and metrics
        
        Alerts
        
        Dependency view
        
        Network Watcher
        
        Aditional network monitoring features
        
        per region and suscription
      - Container Insigths
        
        features
        
        Monitor for controllers, nodes and container workloads
        
        Access to metric and logs
        
        Integration with Prometheus monitoring
        
        requires
        
        Log Analytics Workspace
        
        Containerized Log Analytics agent for linux
        
        End to end monitoring an reporting
      - Application Insigths
        
        features
        
        Detail application tracing
        
        User behavior anaytics
        
        Application maps
        
        Availabylty test
        
        Visual Studio integration
        
        requires
        
        Azure application insigths resource
        
        Instrumetation package installed into the application
        
        Extension Application Performance Managemente (APM) is a service for the live monitoring of applications
- - - - Multi-VMs consistency: items grouped
    - - RPO Recovery point Objective
      - Recovery point retention (0 -72h)
      - Supports app-consistent snapshots
      - Data is replicated to a Cache Storage, from where is taked to restore escenario
    - - to reduce RTO
      - manual an automatic task
  - - - prepare infraestructure
        
        Source and Destination
        
        Perfoming migration?
        
        machines virtualized?
        
        HyperV
        
        requires
        
        Azure site recovery provider
        
        Microsoft Site Recovery Service Agent
        
        VmWare hypervysor
        
        Process Server: Caching, compress & Encryption
        
        Config Server: Centralized Management
        
        Mobility Service: Captures all data writes from memory
        
        Master target: In case of disaster failback only
        
        No, Other
      - Deployment planning
        
        Deployment planner
        
        Estimate network bandwidth required
        
        Storage required
        
        allows to check if our enviroment will support the ASR
      - Prepare Source
        
        Add HyperV Site
        
        Add HyperV Server
        
        Install Microsoft Azure site recovery provider
        
        It register the server in the recovery vault of Azure
      - Target
        
        Define suscription
        
        Deployment model
        
        Require an Storage Account exists in suscription
        
        Require an Azure virtual network in suscription
      - replication settings
        
        copy fequency
        
        recovery point retention
        
        app-consistent
        
        initial replication start time
      - Enable Replication
        
        Target
        
        Suscritpion
        
        Resource manager
        
        Storage account
        
        Azure network
        
        subnet
        
        must match source enviroment
        
        Virtual machines
        
        Select the VMs to replicate of the source to recovery
        
        Properties
        
        Associate to each VM: OS type, OS disk, Disk to replicate
        
        Replication Settings
        
        Set replication policy to use
      - Recovery Plan
        
        Source, Ej: OnPrem
        
        Target, Ej Azure
        
        select items (VMs), to recovey
        
        Add by Groups collection of tasks to recovery
        
        Add Scripts for
        
        Tets failover
        
        Plan Failover
        
        Failover
  - - - Target Master
      - Replication server
- - - - RunAs account
        
        Contributor access
        
        Service Principal Created in the suscrition
      - shared resources
        
        Powershell modules
        
        Python Packages
    - - series of tasks to perform write in Python or Powershell
      - types
        
        Powershell Script
        
        Python Script
        
        Graphical workwol powershell
    - - Azure sandbox
        
        Where the script will run in azure
      - Hybrid runbook worker
        
        Hosted computer to run script no necesarylly in azure
    - - plan of execution,, can be associated to any runbook
- - - - General Purpouse v2
        
        Archive Tiers
      - Blob
        
        Archive Tiers
    - - Archive
        
        will remain 180 days
      - Cool
        
        will remain 30 days
      - Hot
- - - - replicate the data from the database onto a secondary region.
      - switchover to incase there was an issue with the region
      - to be available in the event of a regional outage
      - Async Replication
      - Not Suported by Managed instances
      - Secondary Database only r ead acces
      - Manual Failover
      - requires
        
        Secondary logical server
        
        active georeplication allow up to 4 secondary copies in the secondary server
        
        Failover requires to point from apps to point to new server
    - - Async Replication
      - supports
        
        Managed instances
        
        and Sql Database
      - red access
      - Failover Management
        
        Improve automation failover
      - requires
        
        Failover Group
        
        define replication
        
        Listeners, DNS that point to service managed by microsoft and redirected to secondary database in case of failure
        
        Failover Management
        
        Policy
        
        manual or automatic failover
        
        Grace Period
        
        time to wait before auto-failover
- - - - Azure Password Hash Sync (PHS)
        
        Auth occur in cloud
        
        Sync Onpremise with Azure
        
        users, contacts and groups
        
        supports mfa only with azure ad mfa
        
        Only support AD Onpremise control polycies for disable accounts
        
        supports office 365 hybrid identity
      - Azure Password TroughSync (PTS)
        
        support OnPremises policies
        
        all policies enforced when the user logins
        
        supports mfa only with azure ad mfa
        
        Requires Outbound tunnel permanent from OnPremises agents to Azure
        
        requires
        
        Azure Custom domain added and verified
        
        via TXT or MX record
        
        outbound conectivity to azure ad
        
        PT Agent run on ad conect server. Could be installed in other servers for HA
        
        Sync Onpremise with Azure
        
        users, contacts and groups
        
        supports office 365 hybrid identity
        
        Detection of users with leaked credentials is not available
        
        Cannot be integrated with Azure Connect health
        
        allow enable SSO Single Sign On
        
        authentication ocurs in OnPremises
        
        Smart Lockout capability
        
        filter ips that try to buterforce passwords or atack
      - Federation AD FS
        
        authentication ocurs in OnPremises
        
        support smart card auth
        
        Allows display password expiry
        
        support all on premises policies
        
        requires
        
        OnPremise ADFS
        
        Web Application proxy
    - - Account
        
        Azure Global Administrator account from the Organization
        
        Express Setting require OnPrem Enterprise Administrator account
      - OnPremAD
        
        Enable OnPrem AD Recycle Bin
        
        OnPrem W2003 or later as Domain controller Writable or Member
        
        Domain name must be routable at internet
        
        Domain name or Altrnative UPN suffix must be equal to a custom domain registered in our Azure AD
      - OnPrem Server
        
        W2008R2 or later
        
        Powershell 3.0
        
        .NET Framework 4.5.1
        
        W2008R2 SP1 for password sync
        
        W2012 for Group managed service accounts
      - SQL Database
        
        Local SQL server 2012 expres for 100000 Objects
        
        Server with SQL server 2008R2SP2 or later
    - - Express
        
        PHS Paasword Hash Sync
        
        Sync All Atributes
        
        Enable AutoUpgrade+
        
        Start Sync
      - Custom
        
        Specify custom install location
        
        Use existing SQL
        
        Use existing service account (if not install will create one)
        
        Specify custom sync group (set of local server to manage this server)
      - User Sign-in method
        
        PHS
        
        PTS
        
        Federation with AD FS
        
        Federation with PingFederate
        
        Enable single sing on (SSO)
      - Conect directories
        
        to Azure AD using Azure Global Admintrator
        
        to OnPremises using Entreprise Administrator. It will create an account to sync.
      - UPN validation,
        
        is posible continue without matching all UPNs,
        
        UPNs dont match will not be added
      - Domain filtering
        
        Select OUs that will be sync
      - Users identiying
        
        Allow to have a unique identifier in cloud and onpremise
        
        Source Anchor can be define by Azure or we can use an user antribute . Default is mS-DS-ConsistencyGuid
      - Filtering
        
        Sync all users and devices
        
        Sync selected users
      - Optional features
        
        Password hash sync
        
        Password writeback
        
        to update passwords from Azure AD to OnPrem when the user changes it using password recovery methods
        
        Azure AD app and atribute filtering
        
        Dyrectory extension attribute sync
      - Sync manager
        
        Set the frecuency and time beetwen syncs
        
        All Syncs after the first are delta
      - Rules editor
        
        Always clone when you modify rules of sync
        
        Set scope accounts to sync
        
        Set order
        
        It could deletes what is not included in the rule
    - - require 2 serversin the enviroment
        
        Primary
        
        Staging
      - Sync OnPrem with Azure AD to build his Database
      - It will not export thos sync changes out
      - If the primary server fail, take out from staging and continue where priimary left
    - - Each account can be modified from its AD source
    - - show status of the sync, errors, etc
      - Allow manage conectors
      - Allow add other DC Controlers
  - - - Owner
        
        full access
      - Contributor
        
        full access
        
        no roles asignment
      - Reader
        
        read all
        
        no changes
      - User Access Administrator
        
        manage user access to Azure resources
      - Compute
        
        Virtual Machine Contributor
        
        Lets you manage virtual machines, but not access to them, and not the virtual network or storage account they're connected to
      - Storage
        
        Backup Contributor
        
        Lets you manage backup service, but can't create vaults and give access to others
      - Azure Kubernetes Service RBAC Cluster Admin
        
        Lets you manage all resources in the kubernetes cluster.
- - - - limits
        
        200 policies per vault
        
        2000 datasources
        
        1000 VMs
        
        50 MABS
        
        50 MARS
        
        50 DPM
      - moves
        
        to other suscriptions
        
        data from one vault cant be moved
    - - Windows
      - LInux
      - backup-aware applications
    - - support diferent backup workloads
      - MARS (Microsoft Azure recovery Services Agent)
        
        Only for windows
        
        Backup 3 times per day
        
        Restore files to a server
        
        file, folder and system.state backups
        
        Software installed on windows to perform file-level backup
        
        50 per recovery service vault
      - MABS (Microsoft Azure Backup Server)
        
        Windows and Linux
        
        Customizable backup frequency
        
        file, folder and system.state backups
        
        backup suite which integrates with Azure backup
        
        50 per recovery service vault
      - Azure Virtual Machine Backup extension
        
        Windows and Linux
        
        Virtual machine level backup
        
        Only Windows backup are application-consistent
        
        Backup 1 per day
        
        Restore virtual machines, disks and files
        
        Virtual machine extension
      - DPM (Microsoft Data Protection Manager)
        
        OnPremises Backups
        
        Can be integrated with Azure backup
        
        Supports tape
        
        Onpremises Microsoft backup solution
        
        50 per recovery service vault
- - - - Assesment
        
        Dabase Migration Assesment
      - Migrate
        
        create a Database Migration service
        
        Standard
        
        Premium
        
        configure service
        
        Set target server type
        
        Chose type of activty
        
        Set source server type
        
        Migration wizard
        
        Select source
        
        select target
        
        select database and schema
    - - Azure migrate webapp assesment
        
        Workload
        
        .NET
        
        PHP
        
        Windows
    - - Azure Migrate Server
        
        Discovery
        
        VmWare
        
        Download an install azure migrate appliance OVA
        
        Create appliance with the OVA downloaded
        
        HyperV
        
        Download an install azure migrate appliance VHD
        
        Create appliance with the VHD downloaded
        
        Configure the appliance and start discovery from web browser
        
        set the service account of OnPrem Service for the migration
        
        Set the ip of the OnPrem server
        
        Set the dns of the server
        
        NoVirtualized
        
        Assess
        
        Create a group
        
        add VMs to asses for migration
        
        migration
        
        Discover
        
        Finalize registration
        
        Prepare host installing AzureSiteRecoveryProvider
        
        Replicate
        
        Choose Disk to be replicated, use the “DISK TO REPLICATE” column
        
        Create a replication policy
        
        HyperV
        
        Copy frequency
        
        1 more item...
        
        Recovery point retention
        
        1 more item...
        
        App-consistent snapshot frequency
        
        1 more item...
        
        Initial replication start time
        
        VmWare
        
        RPO threshold
        
        1 more item...
        
        Recovery point retention
        
        1 more item...
        
        App-consistent snapshot frequency
        
        1 more item...
        
        Migrate
- - - - include DNS automatically managed for primary read/write access.
      - inclusion of DNS for both the primary read/write endpoint, and the secondary read endpoint
        
        reduces the management overhead for ensuring applications are pointing to the correct resources in the event of a disaster.
      - supports replication, and failover, for one or more databases on Azure SQL Database, or Azure SQL Managed Instances
- - - - only http
      - Basic dynamic ip
    - - https and http
      - Standard public ip
- - - - What are we looking for and what we gonna do
- - - - 10 Web, mobile, or API apps
      - Disk space 1 GB
      - Shared Compute Type
      - F1 instances
    - - 100 Web, mobile, or API apps
      - Disk space 1 GB
      - Shared Compute Type
      - Custom domain
      - D1 instances
    - - Unlimited Web, mobile, or API apps
      - Disk space 10 GB
      - Dedicated Compute Type
      - Hybrid Connectivity
      - Custom domain
      - HTTPS. SSL URLS
      - B1 Instances
      - always on
    - - Plus all the basic plan features
      - S1 Instances
      - Disk space 50 GB
      - Vnet conectivity
      - AutoScale
      - backup/restore
    - - Private Endpoint
      - Disk space 250 GB
      - Plus all the standard plan features
      - P1 Instances