Please enable JavaScript.
Coggle requires JavaScript to display documents.
Azure Fundamentals (AZ-900) - Coggle Diagram
Azure Fundamentals (AZ-900)
Cloud Concepts
Cloud Services
Identify the benefits and considerations of using cloud services
Describe the consumption-based model
Identify the differences between Capital Expenditure (CapEx) and Operational Expenditure (OpEx)
Identify the benefits of cloud computing, such as High Availability, Scalability, Elasticity, Agility, and Disaster Recovery.
High Availability doesn't mean performance.
Elasticity refers to automatic scaling.
Describe the differences between categories of cloud services
Describe the shared responsibility model
The responsibility of managing the hardware is MS Azures but the responsibility of managing the users and how it is used is the clients. In the on-Premise model this all the clients responsibility, but as clients use each of the above the responsibility becomes more shared.
Describe Infrastructure-as-a-Service (IaaS)
The Virtual Machines and Infrastructure e.g. networks contained within the cloud.
Describe Platform-as-a-Service (PaaS)
Combination of IasS and SaaS - VMs, Virtualisation and Software, resources to facilitate application development.
Describe serverless computing
Computing without the hardware on premises.
Describe Software-as-a-Service (SaaS)
An example case could be in the development of a new solution, using a SaaS enables development without the upfront Software costs.
Identify a service type based on a use case
Cloud Objectives
Describe the differences between types of cloud computing
Describe Public cloud
Computing services that are open to use by the public and not walled off within an organisation.
Describe a Private cloud
Only available to specific groups within the organisation. Not open to the public use.
Describe hybrid cloud
Compare and contrast the three types of cloud computing
Define cloud computing
Using computing power that doesn't reside in local machines but is accessed via the internet from the cloud.
Azure Core Services
Core Azure Services
Describe the core Azure architectural components
Describe the benefits and usage of:
Geographies and Regions
Regions and Region Pairs
Availability Zones
Resource Groups
Management Groups
Lifecycle
Resources assignments
Location
Scope
Resource interaction
Deletion
Creation
Tags
Subscriptions and Billing Scope
Subscriptions
Billing Accounts
Billing Scope
Tenants
Azure Resource Manager (ARM)
Explain Azure Resources
Core resources available in Azure
Describe the benefits and usage of:
Virtual Machines
Azure App Services
Azure Container Instances (ACI)
Azure Kubernetes Services (AKS)
and Windows Virtual Desktop.
Describe the benefits and usage of:
Container (blob) Storage
Disk Storage
Files Storage
and storage tiers.
Core Data Services - Describe the benefits and usage of:
Structured
SQL Managed Instance
Azure Database for PostgreSQL
Azure Database for MySQL
Azure SQL Database
Unstructured
Cosmos DB
Like Dynamo DB
Describe the enefits and usage of Azure Marketplace.
Describe Core Solutions and Management Tools on Azure
Describe Azure Management Tools
Describe the functionality and usage of Azure Resource Manager (ARM) templates
Azure Core Networking Services
Core Azure Services
Virtual Networks
Site-to-site
Multi-site
Point-to-site
VNet-to-Vnet
VPN Gateway
Virtual Network Peering
ExpressRoute
Concepts
Client-Server and Serverless Computing
Networkig Addressing
Domain Name System
Routing
Load Balancers
Azure Front Door
Azure Traffic Manager
Azure Application Gateway
Azure Load Balancer
Security, Compliance, Privacy and Trust
Security Features
Azure Firewall
Stateful firewall (inspects sessions of network traffic and can act based on teh context and state of the packets.
Filters
Port number
Protocol type
Network Address
FQDN
Can act as NAT (Network Address Translator)
Rules
NAT rules
Network rules
Application Rules
Web Application Firewall (WAF)
Azure Application Gateway
Azure Front Door
Azure Content Delivery Network (CDN)
Has set rules.
Network Security Groups (NSG)
Provide Protection at the subnet or individual VM level and are often deployed using application security groups.
Application Server Groups (ASG)
Network Features
Defence-in-Depth
Physical Security
Identity
Perimeter
Network
Compute
Application
Data
Identity, Governance, Privacy, and Compliance Features
Identity Services
Authentication
Authorization
Azure Active Directory
Conditional Access, Multi-Factor Authentication (MFA) and Single Sign-on (SSO)
Governance
Role-Based Access Control (RBAC)
Resource Locks
Tags
Azure Policy
Azure BLueprints
Cloud Adoption Framework
Privacy and Compliance
Core Tenets of Security, Privacy and Compliance
Purpose of Microsoft Privacy Statement
Purpose of Product Terms Site
Purpose of Data Protection Addendurn : (DPA)
Management Tools
Azure Advisor
Azure Monitor
Azure Service
Solutions
IoT, Hub, IoT Central, and Azure SPhere
Azure Synapse Analytics, HDInsight, Azure Databricks
Azure Machine learning, Cognitive Services, and Azure Bot Service
Serverless Computing solutions e.g. Azure Functions and Logic Apps
Azure DevOps, GitHub, GitHub Actions, and Azure DevTest Labs
Pricing, Service Levels and Lifecycle
Cost Management and SLAs
Methods for planning and managing costs
SLAs and Lifecycles