Microsoft announces with the Azure Firewall Standard and Premium two native Firewall Services available as PaaS solution what are a great benefit to classic Firewall deployments, because of native Autoscaling Features, no need for VM Management and more. Unfortunately the price was to high for SMBs, with 900€ for the Standard and over 1200€ for the Premium Edition. A frequently requested Features, was a cheaper variant aimed at small and medium businesses.
This wish has been answered and last year October with the Azure Firewall Basic edition (public preview). The Azure Firewall Basic (AzFw Basic) has leaved the Public Preview and are now GA. The planned subscription must first be prepared before the deployment can begin with some Powershell commands.
Now Azure offers three different Azure Firewall solutions. The following table list the different SKUs and the price for using in West Europe (03/2023).
Microsoft has made some changes to deploy the Firewall Basic compared to the Firewall Standard and Premium SKU for better Service avalability. This article will give you a short overview of this changes.
One of my goal this year was to work more and more with the Microsoft security solutions and got deeper into the different services and possibilities. My focus on this is to get a better understanding how we can secure our Hybrid Cloud environment with the different Microsoft defender products.
After the pandemic beguns Microsoft switched the both big conference Microsoft Build and Microsoft Ignite to virtual only events. The Ignite was two times a year in 2020 and 2021. For 2022 it was long time not clear will it go back to an in-person event or still stay as a virtual event.
The Microsoft Ignite 2022 has start 2 hours ago as an hybrid event delivered from Seattle with 6 Spotlight events around the globe and delivered as before virtually. I’m a little disappointed because a lot of the content is pre-recorded and even great speakers like Donovan Brown don’t hold their sessions live in Seattle but are only shown there virtually as well.
In this article I will share the important announcements from my perspective from the Microsoft Ignite 2022. Most of you know me as an Azure Governance, (Hybrid) Infrastructure and Security guy, so please forgive me for focusing on these things.
Many of my customers move to the cloud in the last recent years. This means for existing environments a start of a journey away from on-prem system going forward to cloud environments. We all know a journey starts with preperation and needs different steps and is always not a good idea to work on all systems together. But on the other hand, same system still exists in there old way and use sometimes old, unsecure protocols for communication and authentication.
To adress this issues Microsoft announce Septemper 2019 in a blog article “Improving security” the disabling of support for Basic authentication for the protocols like EWS, POP, IMAP and Remote Powershell. After the plan the corona crisis came up and Microsote decided to postpone the disabling of the noted protocols.
In September 2021 Microsoft released new information about this in the article “Basic authentication and Exchange Online” including some updated information. Microsoft will disable basic authentication beginning 1st of October 2022 for all protocols except SMTP auth. This means the following protocols will be disabled:
After 8 Months of planning the Cloud Identity Summit 2022 is over and I can say it was really a pleasure to help to organize this great Community event from my perspective. Four years ago Thomas Naunheim come up with the Idea to create a event focus on Identity for the Community. We discuss this in our Azure Bonn Orga Team and finally the Cloud Identity Summit was born. At the end of 2019 we plan the first edition for 2020 as a in-person event, but things changed and we changed the format to an virtual event and this also for 2021.
Back in february we start planning for the 3rd edition 2022 and we decided to go back to our original idea to hold it as a in-person event, but with the experience of two virtual events we move it to an hybrid event. Yesterday was our 1st Cloud Identity Summit 2022 as hybrid edition and I can say, I was really exited about it. Why?
In the past, it was quite quiet about new features and announcements in the Azure IaaS space. Yes, sometimes there were new VM sizes with more cores or more RAM, but in general there were no surprising announcements last year. From my point of view, this has changed with MS Inspire, which is currently underway.
Microsoft announced, surprising from my point of view, a new Disk SKU for Azure VMs called Premium SSD v2 Disk. The last announcement in this area was 2019 with the introduction of Ultra Disks.
Three months ago on 7th of April Microsoft announce a new exam for security architects and introduce again the existing exams SC-200, SC-300, AZ-500 and MS-500. The article contains the new announcement of the new exam SC-100 to become Microsoft Cybersecurity Architect.
I took the Microsoft Cybersecurity Beta exam #SC100 and got yesterday the confirmation that I passed the exam. This is great news for me as it confirms that I am gaining a better and better knowledge in Azure Security topics.
In this article I will introduce the exam, how to get the Microsoft Cybersecurity Architect Expert award and which materials I used to prepare for the exam.
I know it’s been a little quiet on new blog articles the last few months, but that’s due to other community topics I’m working on. One of my new projects is the Azure Ask my Anything Live format that I will be hosting with my team at Azure Bonn Live on YouTube and Linkedin. I’m excited to announce that we’re kicking off this year with an Azure AMA on Azure Virtual Desktop Best Practices, and we have the pleasure of welcoming Marcel Meurer and Patrick Koehler to this session. Marcel and Patrick are two Azure MVPs and do a lot of work in the AVD community. Marcel is known as the brains behind the WVDAdmin and Project Hydra products, which are services to automate all things Azure Virtual Desktop. Patrick has also been active in the AVD community for many years with great sessions and insights about AVD and is the organizer of AVD TechFest together with Simon Binder.
Azure AMA – Azure Virtual Desktop Best Practices will take place live on Youtube on February 14, 2022. You can register for this event via our Azure Bonn page. Please note that this is a live AMA session and we would love for you to join us live and bring your questions to the session. If you don’t have time this time, please use our Microsoft forms to submit your questions before the session starts. The session will be held in German, but you can also ask your questions in English.
In the last couple of days I try to optimize some Azure environments from security and cost perspective. One customer has a SQL Server Express installed inside an Azure VM. The backup was configured for the hole VM, but there is no need to backup the Datadisk which contains the SQL databases. In this article I will explain how you can reinstall the Azure Backup Windows Workload extension to fix the issue when the service account will not listed on the Azure SQL Server VM. This fix the issue only did you not find the service account in the SQL Server management studio. To add the account in the right way, please refer to the article from Wim Matthysen.
Summer is here and I hope many enjoy the time on vacation. In this article I would like to give a little preview on which community events you can find me in the 2nd half of 2021.
GeekSprech Podcast
I had the pleasure of visiting Eric Berg and Weimar on the 3rd weekend in July. We had a great time and talked a lot about the community, new projects and more. On Sunday, Eric and I had the idea to record a new GeekSpeak episode with the news about the Microsoft Inspire 2021. We had a lot of fun recording it and hope you do too. The podcast is in German.
German AVD UserGroup – Azure Files
Patrick Köhler and Marcel Meurer are the founder of the German Azure Virtual Desktop User Group. The host a monthly meetup with different topics around AVD. Both invited me to speak about Azure Files and is this the perfect profile store solution. I am really looking forward to the event and hope that I can give you a good overview about the different file store solutions in Azure.
Cloud Identity Summit 2021
In 2020 based on the initial idea of my best buddy Thomas Naunheim we started as Azure Bonn Team the Cloud Identity Summit 2020. The speaker lineup was awesome and the feedback was so great that we decided to repeat this in 2021. This year the Cloud Identity Summit will another virtual conference and take place at 30/09/2021. We hope you attend our 2nd edition. The agenda and the speaker will announce in August 2021.
CloudInspires Podcast
Thomas and I founded in June our own CloudInspires.me Podcast. Do not miss the latest two episodes (in German). We have so many great speaker on our timeline – stay tuned 🙂
AVD TechFest Fall 2021
I am very happy to speak for a 2nd time at the well organized AVD Techfest. This a free online conference with all topics related to Azure Virtual Desktop. There are so many sessions on the agenda, it’s worth taking a look if you work in the AVD space. I’ll be giving a session on Azure Files as an AVD profile storage solution, and diving into the different ways you can use the Azure Files solution for AVD. This means that I will introduce Azure Files and Azure NetApp Files and show in which scenarios some of these options are the better solution.
IT Tage Konferenz
One of the last conferences this year is the German IT Tage Konferenz in December. This is a really big conference running about 4 days with a wide range of topics. I had a pleasure to hold a session about Azure VM Best Practices.