Please enable JavaScript.
Coggle requires JavaScript to display documents.
AZ-900: Describe Core Azure Services - Coggle Diagram
AZ-900:
Describe Core Azure Services
Describe the core Azure architectural components
Management Groups
Subscriptions
Resource Groups
Resources
The doers
SQL dbs, VMs, services
Logical container for resources
Define an application as the whole of resource group
Holds related resources
Delete RG, all resources are also deleted
Can define Role Based access Control to RG
Groups users and reource groups
Limits on quotas and resources
Test/Dev/Prod etc
Multiple per account (tenant)
Could be buisness logic boundaries to monitor cost
Can be associated with 1 invoice section
Define policies, access across multi subscriptions
Child Subscriptions, groups & resources inherit policies
Can have child Management groups for hierarchy (6 deep)
Max 10000 per directory
Regions
Geographical area
Potentially more than one datacentre
Bring app close to your user
Where app is physically hosted
Special regions
US Defence & State
China
higher/different compliance
Availability Zones
Multiple per region
Independent
App/data is duplicated
If zone has issue, app is available across others in region at a minimum
May have restricted services
Region Pairs
at least 2 per geography
Each region paired with another
If 1 of pair fails, other will accomodate
wider, more castrophic failure than within region
Updates are done on 1 then the other
Data resides within same geography
Resouce Manager
Deployement & Management service
Creaqtes/updates resrouces
API, SDK, CLI, Powershell etc interaction
Allows for ALM etc
Manually via Azure portal
Describe core resources available in Azure
Compute
VMs
Emulations of physical computers
Configure processor, memory, network, disk etc
Total control over environment
VM Scale Sets
Deploy & Manage identical VMs
Autoscale as demand warrants
Manual, scheduled or automatic change
Load-balanced
Usage
Test & Dev
App in cloud - fluctation in demand
Datacentre in the cloud
Disaster recovery
Azure Batch
High performance computing for parrallel compute
Job start, Batch
Runs jobs
Idenitifies failures
Starts pool of VMs
Install apps & data
Requeues work
Scales back down VMs
Data processing of large datasets
Container Instances
Compute resouce, lightweight environments
Multiple environments/apps per physical or virtual host
Docker
Azure Container Instances
Simplest, quickest, fastest
Not as fully featured as AKS
Azure Kubernetes Services
Fully featured
Orchestration of containers
less control over VM
Containers lead to microservice solutions, break down the large solution into independent services
Azure App Service
Web Apps
ASP.NET, Java, Ruby, Node.js, PHP or Python
API Apps
Swagger support, packageable
WebJobs
Run program or script in context of one of the others
Background tasks for the others
Mobile App Backend
Store mobile app data in cloud
Auth customers
Send push notifications
Execute custom back end logic
No infrastructure decisions
Scaled quickly/automatically
depending on load
Built in load balancing/traffic management
Costs
Service plan determines how much hardware is dedicated or shared
Available memory
Free tier for low traffic stuff
Serverless
Azure Functions
Respond to event
Stateless (restart each time)
Stateful (Durable)(have context from previous)
code-first, imperative
Abstraction of the servers
Pay for the resource you use
Great for event driven
Logic Apps
Visual designer for triggered logic
Lots of connectors
No reliance on coding knowledge
declaritive, designer first
Virtual Desktop
Ideal for remote workers
Secured your way, without worrying about physical
Desktop close ot your data
Your own licensing
Can have dedicated machines for users
Defined environment, with all apps installed ready
Network
Isolation and segmentation of your environments
Communicate to On-prem as well as other azure resource
Route/Filer traffic
VPN Gateway
Allows access to on premise or site to site connections
Private, encrypted tunnel over internet
Policy (legacy) or Route based
Size determines throughput & no tunnels
Requires VPN device on premise to handle traffic
Express Route
Private network version of VPN
Use of 3rd party connectivity provider
Connection provider does hard work and provides HA
not encrypted, but private
Storage
Disk
VM disk
Accesible via VM
Various performance tiers
Premium SSD for high performance, mission critical production
SSD/HDD for less critical
Ultra for data intensive
Blob
Unstructured
Available anywhere
No disk management etc, just use it
Limited in speed
File
Mount like network drive
From VMs, apps or anything
Can be used to migrate on-prem as appears as network drive
Tiers
Different access/storage costs depending on access requirements
Hot - frequent used - website images
Cool - infrequent - invoices
Archive - rarely - backups
Database
Cosmos
Globally distributed
Multi-model
Elastic & independently scale throughput & Storage across globe
Support SQL, MongoDB, Cassandra, Table & Gremlin API access
SQL
Relational DB
Highly performant
Ideal for migration
MySQL
Relational DB
Used for LAMP stack
PostgreSQL
Relational DB
Managed Instance
Same as normal, but more options (collation)
Big Data Analytics
Synapse
Data Warehouse & Analytics
Query using serverless or provisioned resources
Serve for BI/ML
HDInsight
Open source, managed analytics service
Cost effective Mass data processing
Supports - Spark, Hadoop, Kafka HBase, Storm and Machine Learning Services
Databricks
Insights & AI solutions
Apache Spark, autoscal
Data Lake Analytics
On demand analytics job service
Transform data to extract insight