Please enable JavaScript.
Coggle requires JavaScript to display documents.
AZ 900 Module 3: Management & Governance - Coggle Diagram
AZ 900 Module 3: Management & Governance
Cost Management
TCO Calculator
Estimate cost savings by migrating to Azure
Azure Pricing Calculator
Helps estimate cost of Azure products
Configurations:
Region
Tier
Billing options
Support options
Programs & Offers
Azure Dev/Test Pricing
Tools
Billing reports
Data enrichment
Budget tool
Set limit on spending
Alerts
Recommendations
Cost factors
Resource Type
Regions and Settings (of Resource)
Consumption
Maintenance
Geography
Network traffic
Subscription
Tags
Provides metadata for your Azure resources
Logically organises resources into a taxonomy
Consists of a name-value pair
Very useful for rolling up billing information
Governance & Compliance
Azure Policy
Enforce Organizational Standards
Assess Compliance at scale
Provides built-in Policy & Initiative definitions
Storage
Networking
Compute
Security Centre
Monitoring
Resource Locks
Protects Resources from accidental Deletion or Modification
Managed at:
Subscription level
Resource group level
Individual resource level
MS Purview
Unified Data Governance and Risk & Compliance solutions
Provides single, unified view into your data
Automated data discovery
Sensitive data classification
End-to-end data lineage
Management & Deployment tools
Azure Portal
Web-based unified console
Uses GUI (Alternative to CLI)
Build, Manage and Monitor everything
Azure Power Shell
Allows Developers, DevOps and IT professionals to execute instructions known as CMDLETS
The commands use the Azure REST API to execute admin operations in Azure
Used to perform 1-time modifications
Concatenated to perform complicated activities (routine setup, teardown and maintenance of a single resource or multiple connected resources)
Uses Power Shell commands
Same Syntax and Commands as Azure CLI
Azure Cloud Shell
Browser-based shell (no local installation / configuration)
Create, Configure and Manage Azure resources
Supports Power Shell and CLI
Authenticated to your Azure credentials
Azure Command-Line Interface (CLI)
Same Syntax and Commands as Power Shell
Employs Bash commands
Managing single activities using code
Orchestrating complicated processes using code
Compatible with Windows, Linux and Mac
Azure Arc
Centralised and unified way to manage entire environment together
Projects existing non-Azure resources into Azure Resource Manager (ARM)
Manages Mutli-cloud and Hybrid VMs, Kubernetes clusters and Databases as if they run in Azure
Azure Resource Manager (ARM)
Provides a management layer that enables you to Create, Update and Delete resources in your Azure subscription
Organise resources
Enforce standards
Protect resources from accidental deletion
Organise things into resource groups (group similar resource types together)
Tags associate custom details with a resource / group
Policies ensure new resources use existing tags
RBAC protects deployed resources
ARM Templates
JavaScript Object Notation (JSON) files
Used to create and deploy Azure infrastructure without having to write programming commands
Deployment code is verified before any code is run
Benefits
Declarative syntax
Repeatable results
Orchestration
Modular files
Exportable code
Built-in validation
Bicep
Language that uses declarative syntax to deploy Azure resources
Bicep file defines the infrastructure and configuration
ARM deploys the environment based on Bicep file
Benefits
Support for all the resource type and API versions
Simple syntax
Repeatable syntax
Orchestration
Modularity
Infrastructure as code
Basic - Using Cloud Shell, Power Shell or CLI to manage and configure resources
Advanced - Manage entire deployments using repeatable templates and configurations
Ensure consistency in deployment across cloud ecosystem
Manage configuration at scale
Rapidly provision additional environments based on a standard configuration and build
Monitoring Tools
Azure Advisor
Evaluates Azure resources
Makes performance recommendations
Reliability
Ensure and improve continuity of business-critical apps
Security
Detect threats and vulnerabilities that lead to security breaches
Performance
Improve speed of apps
Cost
Optimise and reduce overall Azure spend
Operational excellence
Help achieve workflow and process efficiency, resource manageability and deployment best practices
Azure Service Health
Collection of services that keep you informed of general Azure status, service status that may impact you and specific resource status that is effecting you
Azure Status
Global view of the health of all Azure services across all Azure regions
Service Health
Focused view on only the services and regions that you are using
Resource Health
Tailored view of your actual Azure resources. Provides information about the health of your individual cloud services
Azure Monitor
Maximises the availability and performance of apps and services by collecting, analysing and acting on telemetry from cloud and on-premises environments
Application insights
Log analytics
Smart alerts
Automation actions
Customised dashboards
Azure Monitor Alert
Automated way to stay informed when Azure monitor detects a threshold being crossed
Setup to monitor logs and trigger events
Notify the CPU usage
Alerts rule-based on metric provided
Azure monitor alerts
Application insights
Monitors web applications
Install it using SDK in application or Application insights agent