Cloud & Networking
Reader small image

You're reading from  Azure Strategy and Implementation Guide, - Third Edition

Product typeBook
Published inJun 2020
PublisherPackt
ISBN-139781838986681
Edition3rd Edition
Tools
Azure
Concepts
Cloud Computing
Right arrow
Authors (3):
Peter De Tender
Peter De Tender
author image
Peter De Tender

Peter De Tender has 20 years of professional expertise in Microsoft Infrastructure consulting and architecting, with a main focus on Microsoft Cloud technologies (Azure, Enterprise Mobility Suite, Office 365...). After working for some of the top Microsoft partners in Belgium, he ran his own successful business for several years, mainly providing Infrastructure and Cloud Architect training and readiness in a passionate and enthusiastic way. Peter coached several Microsoft Partners all over the world in doing more Microsoft business, both from a technical and business angle. Just recently, as of June 2016 to be exact, Peter joined Microsoft Corp as an FTE Azure Architect and Program Manager in the global AzureCAT GSI team, part of Azure engineering, where his role consists of providing Azure-focused readiness training and cloud practice building coaching to the TOP Microsoft Global System Integrators. This role allows Peter to combine his two passions, working on the latest and greatest up-to-date technologies, and cooperating with people from all over the globe. His valued credentials are Microsoft Certified Trainer, Azure Certified Architect, and— before he joined Microsoft—Peter was also recognized as a Microsoft MVP for several years in a row. In his free time, Peter loves speaking at (inter)national conferences and community events, is a technical writer and courseware creator.
Read more about Peter De Tender

Greg Leonardo
Greg Leonardo
author image
Greg Leonardo

Greg Leonardo is currently a cloud architect helping organizations with cloud adoption and innovation. He has worked in the IT industry since his time in the military. He is a veteran, father, architect, teacher, speaker, and early adopter. Currently, he is a Certified Azure Solution Architect Expert, Microsoft Certified Trainer (MCT), and Microsoft Azure MVP, and he has worked in many facets of IT throughout his career. Additionally, he is president of TampaDev, a community meetup that runs #TampaCC, Azure User Group, Azure Medics, and various technology events throughout Tampa. He has also authored Hands-On Cloud Solutions with Azure and the previous two editions of Azure Strategy and Implementation Guide for Microsoft by Packt Publishing.
Read more about Greg Leonardo

Jason Milgram
Jason Milgram
author image
Jason Milgram

Jason Milgram is a Microsoft MVP since 2010 and the SVP, Azure Leader at OZ Digital, headquartered in Fort Lauderdale, FL. As a public speaker, Jason has given over 100 presentations at conferences and user groups on cloud computing, Microsoft Azure, Enterprise Mobility + Security, and launching a tech start-up. Prior to OZ, Jason was CTO, Financial Services at Hitachi Solutions in Irvine, CA, Chief Architect at i3 in Fairfax, VA, Chief Architect at SAIC in Reston, VA, 1st VP Cloud Solutions Architect at City National Bank of Florida in Miami, and VP Platform Architecture & Engineering at Champion Solutions Group in Boca Raton, FL.
Read more about Jason Milgram

View More author details
Right arrow

Architecture Choices and Design Principles

As organizations work to modernize their applications, either for themselves or their clients, they aim to maneuver their apps toward scalability, resiliency, and high availability. The cloud and mobile devices are changing the way in which organizations approach application design. We are seeing large monolithic applications being replaced by smaller decomposed or decentralized services. These services provide communication through microservice APIs, or asynchronous messaging or eventing. This shift has created new hurdles for organizations to overcome, such as parallelism, asynchronous operations, and distributing application state. There are also core considerations to keep in mind, such as designing for failure, or scaling while embracing the automation of management and deployment.

This chapter shows an approach to architecting cloud solutions covering a variety of technologies and topics. We will look at some popular...

Application fundamentals for the cloud

We'll begin with some key takeaways in cloud versus on-premise development practices. In the cloud, there are many ways to solve a problem, so work at keeping it simple – try not to engineer your way to complexity. Keep in mind the basics behind application architecture, shown in Figure 1, and work at solving the layers as simply as you possibly can.

Everyone in their journey to the cloud has been bitten by the complexity bug and has learned that lesson:

The basic layers of applications for the cloud are Security, User Interface, Business Logic, Data Access, and Data Repository.

Figure 1: The basic application architecture layers

Tackling these layers and defining them as early as possible is an essential part of the cloud architecture and will enable each part of the organization to contribute to the application as a whole, meaning security, development, operations, and testing get an early seat at the table. The biggest part of being a successful cloud architect is learning to empower those around you to be successful in their roles and to...

The key application architectures

Without further ado, let's work through some of the main architectural approaches for different application ecosystems. For each of these architectures, we'll also discuss the five principles you should support in your cloud governance:

  • The cost management of the solution
  • How to define a security baseline
  • How to define resource consistency
  • How to define an identity baseline
  • How to accelerate deployment of the solution

You can also find a wealth of architectural information on Microsoft's Azure documentation pages: https://bit.ly/35Dnzo7.

Architecting a microservices ecosystem

Microservices have become a popular architectural style in application ecosystems, as they help provide a decomposed, highly scalable, resilient, and simple deployment model that can evolve quickly when necessary. Today's world of smaller functional blocks rather than large monolithic application tiers has found a friend...

Design principles for scalable and manageable applications on Azure

Applications in the cloud have to be able to respond to issues or faults such as unavailability, data or network loss, time-outs, or service transition. Some of these issues can be temporary and a basic retry may overcome them, while others will take more work. The first thing to do is to create your applications with resiliency and self-healing in mind.

The foundations of a self-healing system consist of:

  • Automatic detection of the issue
  • Taking action to respond to the issue detected
  • Auditing all relevant information about the issue

Self-healing applications rely on designing your applications for resiliency, which means you need to plan for failure with minimal downtime and data loss.

Designing for resiliency

There are two main characteristics of resilient applications:

  • They can recover gracefully from failures and experience minimal downtime
  • They run in a healthy...

Architectural overview and considerations

As we have discussed, security is at the foundation of cloud principles, and key to this in Azure is understanding how RBAC works. As we showed earlier in the chapter, leveraging management groups is also extremely helpful in your subscription access management, and with RBAC you only provide users the minimum amount of access needed to complete their jobs. This can also be coupled with Privileged Identity Management (PIM) should the need arise for a member to elevate their access or "just-in-time" their access within a given environment for a given time, which helps with approvals and auditing.

It's worth getting more details on the following list of tools and resources that are available in Azure to aid in security:

  • RBAC
  • Antimalware
  • MFA
  • PIM
  • ExpressRoute
  • VPN (alternatively called Virtual Network Gateway)
  • Identity Protection
  • Security Center
  • Intelligent Security Graph

Identity...

Azure for containerized apps

The first thing that you always run into when discussing containers is, why should I care about containers? This is usually answered in one of two ways. Firstly, containers provide the freedom to move your application from on-premise to the cloud or within the cloud to another cloud provider with no code change to your application. Secondly, each application is self-contained, meaning all application elements and their versions are contained within the boundaries of the container, so changing a library for an application won't negatively affect or spark a redeployment of all the applications that shared the library.

So, what are containers? I like to use a shoebox analogy to describe containers. A shoebox is pretty standardized and small. You can only fit so much in them, and they tend to have a single function like storing your photos. You can store this shoebox and move it around pretty easily. It does, however, require a shelf or floor...

Summary

We've touched on a lot of topics in a short space of time, but hopefully you've gained an overview of the various architectures available for building applications with Azure. We've also looked at application design best practices, mostly focused on security, and finished with a look at working with containers in Azure. In the next chapter, we'll look at DevOps and how its methodology integrates with the cloud.

Previous Chapter
Chapter 2 of 5
Next Chapter
You have been reading a chapter from
Azure Strategy and Implementation Guide, - Third Edition
Published in: Jun 2020Publisher: PacktISBN-13: 9781838986681
© 2020 Packt Publishing Limited All Rights Reserved
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Sign up now
undefined
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Start free trial
Renews at €14.99/month. Cancel anytime

Authors (3)

author image
Peter De Tender

Peter De Tender has 20 years of professional expertise in Microsoft Infrastructure consulting and architecting, with a main focus on Microsoft Cloud technologies (Azure, Enterprise Mobility Suite, Office 365...). After working for some of the top Microsoft partners in Belgium, he ran his own successful business for several years, mainly providing Infrastructure and Cloud Architect training and readiness in a passionate and enthusiastic way. Peter coached several Microsoft Partners all over the world in doing more Microsoft business, both from a technical and business angle. Just recently, as of June 2016 to be exact, Peter joined Microsoft Corp as an FTE Azure Architect and Program Manager in the global AzureCAT GSI team, part of Azure engineering, where his role consists of providing Azure-focused readiness training and cloud practice building coaching to the TOP Microsoft Global System Integrators. This role allows Peter to combine his two passions, working on the latest and greatest up-to-date technologies, and cooperating with people from all over the globe. His valued credentials are Microsoft Certified Trainer, Azure Certified Architect, and— before he joined Microsoft—Peter was also recognized as a Microsoft MVP for several years in a row. In his free time, Peter loves speaking at (inter)national conferences and community events, is a technical writer and courseware creator.
Read more about Peter De Tender

author image
Greg Leonardo

Greg Leonardo is currently a cloud architect helping organizations with cloud adoption and innovation. He has worked in the IT industry since his time in the military. He is a veteran, father, architect, teacher, speaker, and early adopter. Currently, he is a Certified Azure Solution Architect Expert, Microsoft Certified Trainer (MCT), and Microsoft Azure MVP, and he has worked in many facets of IT throughout his career. Additionally, he is president of TampaDev, a community meetup that runs #TampaCC, Azure User Group, Azure Medics, and various technology events throughout Tampa. He has also authored Hands-On Cloud Solutions with Azure and the previous two editions of Azure Strategy and Implementation Guide for Microsoft by Packt Publishing.
Read more about Greg Leonardo

author image
Jason Milgram

Jason Milgram is a Microsoft MVP since 2010 and the SVP, Azure Leader at OZ Digital, headquartered in Fort Lauderdale, FL. As a public speaker, Jason has given over 100 presentations at conferences and user groups on cloud computing, Microsoft Azure, Enterprise Mobility + Security, and launching a tech start-up. Prior to OZ, Jason was CTO, Financial Services at Hitachi Solutions in Irvine, CA, Chief Architect at i3 in Fairfax, VA, Chief Architect at SAIC in Reston, VA, 1st VP Cloud Solutions Architect at City National Bank of Florida in Miami, and VP Platform Architecture & Engineering at Champion Solutions Group in Boca Raton, FL.
Read more about Jason Milgram

Other recommended products

Related to this chapter

Azure Strategy and Implementation Guide

Azure Strategy and Implementation Guide

This book will teach you to migrate your organization’s business operations from local data centers to the Azure cloud platform and manage them to enhance overall efficiency.

BookMay 2021228 pages
Implementing Hybrid Cloud with Azure Arc

Implementing Hybrid Cloud with Azure Arc

Azure Arc helps in simplifying the governance and monitoring of your infrastructure and gives you a single pane view across hybrid architectures deployed over multiple clouds or on-premises. If you are new to multi-cloud or cloud with Edge infrastructure, this book will provide a comprehensive introduction and get you up-to-speed in no time.

BookJul 2021242 pages
Microsoft Azure Administrator – Exam Guide AZ-103

Microsoft Azure Administrator – Exam Guide AZ-103

Microsoft Azure Administrator- Exam Guide AZ-103 is a complete guide that will help you master topics related to Azure administrator practices. Using this guide, you will have all the information required to ace the AZ-103 exam and become a Microsoft Azure administrator expert.

BookMay 2019452 pages
Migrating Linux to Microsoft Azure

Migrating Linux to Microsoft Azure

Migrating Linux to Microsoft Azure is your guide to maximizing the existing investments in Linux and becoming sustainable with efficient migration of existing Linux workloads to Azure.

BookJul 2021210 pages
Hands-On Cloud Solutions with Azure

Hands-On Cloud Solutions with Azure

Building and running your solutions on Azure helps the business maximize your return on investment and minimize their total cost of ownership. This book will arm you with all the tools and knowledge you need to properly plan and build your solution on Azure, whether it’s a brand-new project or a migration project.

BookOct 2018224 pages
Microsoft Operations Management Suite Cookbook

Microsoft Operations Management Suite Cookbook

Microsoft OMS is a one stop IT management solution used to gain visibility and control over hybrid environments with simplified operations management and security. With Microsoft-based solutions in Azure, OMS helps organizations make the most of their IT investments. This book offers practical and hands-on recipes to gather real-time operational intelligence of your entire hybrid environment.

BookApr 2018448 pages
Implementing Microsoft Azure Infrastructure Solutions: Exam Guide 70-533

Implementing Microsoft Azure Infrastructure Solutions: Exam Guide 70-533

This book focuses on skills and knowledge for provisioning and managing services in Microsoft Azure. This includes implementing infrastructure components such as virtual networks, virtual machines, containers, web and mobile apps, storage, planning and managing Azure AD and configuring Azure AD integration with on-premises Active Directory domains.

BookAug 2018516 pages
Learning Microsoft Azure Storage

Learning Microsoft Azure Storage

Microsoft Azure Storage is the bedrock of Microsoft's core storage solution offering in Azure. No matter what solution you are building for the cloud, you'll find a compelling use for Azure Storage. This book will help you get up-to-speed quickly on Microsoft Azure Storage by teaching you how to use the different storage services. You will be able to leverage secure design patterns based on real-world scenarios and develop a strong storage foundation for Azure virtual machines.

BookNov 2017276 pages
Microsoft Azure Architect Technologies: Exam Guide AZ-300

Microsoft Azure Architect Technologies: Exam Guide AZ-300

Microsoft Azure Architect Technologies: Exam Guide AZ-300 is a complete guide that will help you master topics related to Azure architect practices. Using this guide, you will have all the information required to take the AZ-300 exam and become a Microsoft Azure Architect expert.

BookJan 2020540 pages
Migrating Applications to the Cloud with Azure

Migrating Applications to the Cloud with Azure

The cloud is no longer just a buzzword, but a proven technology, and companies are moving there fast. One of the problems many teams face is how to move their legacy applications to the cloud. This book offers the perfect solution to strategize and plan your app modernization journey by taking advantage of the Azure ecosystem using the .NET and Java technologies.

BookDec 2019494 pages
SAP on Azure Implementation Guide

SAP on Azure Implementation Guide

There are typically two main reasons why you may consider migrating SAP to Azure: You need to replace the infrastructure that is currently running SAP, or you want to migrate SAP to a new database. This book will guide you through migrating your SAP data to Azure simply and successfully.

BookFeb 2020242 pages
Implementing Microsoft Azure Architect Technologies: AZ-303 Exam Prep and Beyond

Implementing Microsoft Azure Architect Technologies: AZ-303 Exam Prep and Beyond

Microsoft Azure Architect - Exam Guide AZ-303 is a complete guide to mastering topics related to Azure Architect practices. With detailed coverage of concepts and techniques, you’ll gain the knowledge and skills required to take and pass the AZ-303 exam and become a Microsoft Azure Architect expert.

BookDec 2020548 pages

Personalised recommendations for you

Based on your interests and search pattern

Designing and Implementing Microsoft Azure Networking Solutions

Designing and Implementing Microsoft Azure Networking Solutions

Designing and Implementing Microsoft Azure Networking Solutions Exam Ref AZ-700 is an all-encompassing guide to the AZ-700 exam and contains all the information you need to succeed in the world of virtual networking with Azure. With this book, you will be fully prepared for the exam and the world of cloud networking.

BookAug 2023524 pages
Microsoft 365 Security, Compliance, and Identity Administration

Microsoft 365 Security, Compliance, and Identity Administration

The Microsoft 365 Security, Compliance, and Identity Administration is a comprehensive guide that helps you employ Microsoft 365's robust suite of features and empowers you to optimize your administrative tasks.

BookAug 2023630 pages
Zero Trust Overview and Playbook Introduction

Zero Trust Overview and Playbook Introduction

Get started on Zero Trust with this step-by-step playbook and learn everything you need to know for a successful Zero Trust journey with tailored guidance for every role, covering strategy, operations, architecture, implementation, and measuring success. This book will become an indispensable reference for everyone in your organization.

BookOct 2023240 pages
The Self-Taught Cloud Computing Engineer

The Self-Taught Cloud Computing Engineer

This self-study book helps you master multiple clouds, including AWS, Azure, and GCP, and serves as a roadmap to becoming a certified cloud computing expert. The book will guide you to develop a professional cloud career by helping you build a broad cloud knowledge base, developing hands-on cloud computing skills, and getting cloud certified.

BookSep 2023472 pages
Technology Operating Models for Cloud and Edge

Technology Operating Models for Cloud and Edge

This book will help you build and create ownership of a technology operating model, as well as connect your leadership with engineering and operations, keeping your internal and external customers in mind. It provides practical tips on why, where, and how to make the cloud and edge platform paradigm sing for you, your team, and your organization.

BookAug 2023228 pages
Azure Architecture Explained

Azure Architecture Explained

Azure is the preferred platform to build mission-critical and secure apps. This book provides comprehensive coverage of essential Azure products, services, and solutions vital for every solution architect's success. Elevate your knowledge and master the critical components of Azure to excel in your role with Azure Architecture Explained.

BookSep 2023446 pages
Pentesting Active Directory and Windows-based Infrastructure

Pentesting Active Directory and Windows-based Infrastructure

This practical guide helps you explore the pentesting of Microsoft infrastructure in detail, and enhances your offensive skillset by showing you the different ways to perform security assessment. This book will help blue teamers and IT engineers get up to speed with possible security issues they may encounter in their Windows environments.

BookNov 2023360 pages
Practical Ansible

Practical Ansible

In Practical Ansible, you'll work with the latest release of Ansible and learn to solve complex issues quickly with the help of task-oriented scenarios. You'll start by installing and configuring Ansible to automate monotonous and repetitive IT tasks and get to grips with concepts such as playbooks, inventories, plugins, collections, and network modules.

BookSep 2023420 pages
Windows 11 for Enterprise Administrators

Windows 11 for Enterprise Administrators

Microsoft’s launch of Windows 11 is a step toward satisfying the enterprise administrator’s needs for better management and enhanced user experience customization. This book provides the enterprise administrator with the knowledge needed to fully utilize the advanced feature set of Windows 11 Enterprise.

BookOct 2023286 pages
The Linux DevOps Handbook

The Linux DevOps Handbook

This book is for software and IT professionals seeking knowledge on Linux systems and DevOps practices. This book will provide you with guidance and tools to learn and gain proficiency in managing Linux-based infrastructures and knowledge of DevOps.

BookNov 2023428 pages2