https://aka.ms/mabenoit/cad-ppe-day1

https://aka.ms/mabenoit/cad-ppe-lab-setup

{

"firstName": "Mathieu",

"lastName": "Benoit",

"city": "Quebec",

"country": "Canada",

"company": "Microsoft",

"role": "Cloud Solution Architect",

"gitHub": "mathieu-benoit",

"blog": "aka.ms/mabenoit",

"misc": [

"software development",

"cloud + web + mobile",

"agile & devops enthusiast",

"continuous learning"

]

}

GitHub account

Personal blog

• Next Gen Partner Capacity

• Professional Services Capacity & Capabilities in Advanced Cloud Workloads

Partner Development Unit

Core Infrastructure & Management

Data Platform & Analytics

Cloud Application Development

Mobility & Security

Infrastructure Provisioning

Hybrid Management

Infrastructure Modernization

Business Intelligence, Big Data, Advanced Analytics

Internet of Things

Data Platform Modernization

App Dev (Web, Mobile)

Digital Media

Developer Operations

Identity & Access Management, Security

Managed Mobile Productivity

Information Protection

Build With

CSA SupportedMS Certified

MPN Certified

Sell With

PDP Supported Repeatable OffersPre-Sales Capacity

C+E Marketing Group – Partner Team

Microsoft Confidential

Skill 1: DevOps (ALM) Skill 2: Modernizing apps

Skill 4: Hybrid app integrationSkill 3: Web, Mobile, Media

Balance of responsibility

Balance of control and responsibility depends on the category of the service

MOVE-IN READY

Use immediately with minimal configuration

SOME ASSEMBLY REQUIRED

Existing services are a starting point, with additional configuration for a custom fit

BUILD FROM THE GROUND UP

Building blocks, create your own solution or apps from scratch

Responsibility On-

Prem

IaaS PaaS SaaS

Applications

Data

Runtime

Middleware

O/S

Virtualization

Servers

Storage

Networking

MicrosoftCustomer

The Microsoft Application

Innovation Solution

Amazing digital experiences, connected to your business

A cloud that supports your stack and your app

A data platform for applications that predict and take action

Open and extensible tools and services for developers

Based on five-year, risk-adjusted figures for a composite organization constructed from aggregated interviews with eight Microsoft Azure IaaS customers.

Source: “The Total Economic Impact Of Microsoft Azure PaaS,” a commissioned study conducted by Forrester Consulting, June 2016

466%

Return on

Investment

$5.91M

Net Present

Value

80%

IT Time

Saved

50%

Faster Service Deployment

Time to Market

Platform Services

Infrastructure Services

WebApps

MobileApps

API Apps

Notification Hubs

HybridCloud

Backup

StorSimple

Azure SiteRecovery

Import/Export

SQL Database DocumentDB

Redis Cache

AzureSearch

StorageTables

SQL DataWarehouse

Azure AD Health Monitoring

AD PrivilegedIdentity Management

OperationalAnalytics

Cloud Services

BatchRemoteApp

ServiceFabric

Visual Studio

ApplicationInsights

VS Team Services

Domain Services

HDInsight MachineLearning Stream Analytics

Data Factory

EventHubs

Data LakeAnalytics Service

IoT Hub

Data Catalog

Security & Management

Azure ActiveDirectory

Multi-FactorAuthentication

Automation

Portal

Key Vault

Store/Marketplace

VM Image Gallery& VM Depot

Azure ADB2C

Scheduler

Xamarin

HockeyApp

Power BI Embedded

SQL Server Stretch Database

MobileEngagement

FunctionsCognitive Services Bot Framework Cortana

Security Center

Container Service

VM Scale Sets

Data Lake Store

BizTalkServices

Service Bus

Logic Apps

API Management

Content DeliveryNetwork

Media Services

Media Analytics

RESOURCE GROUP

▪

▪

▪

What is RBAC

▪ allows secure access with granular permissions to

resources

▪ assignable to users, groups or service principals

▪ built-in roles make it easy to get started

32

Role Definitions

• describes the set of permissions (e.g. read actions)

• can be used in multiple assignments

Role Assignments

• associate role definitions with an identity (e.g.

user/group) at a scope (e.g. resource group)

• always inherited – subscription assignments

apply to all resources

subscription level – grants permissions for all resources in the sub

resource group level –grants permissions for all resources in the group resource level – grants

permissions to the specific resource

https://portal.azure.com/#create/Microsoft.ResourceGroup

-

-

-

-

-

-

-

Azure App Service

Enterprise gradeDesigned for secure mission-critical applications

Fully managedOptimized for Availability and Automatic scale

Built for DevOpsAgility through Continuous Deployment

Premium Tier

App Service Environments

Hybrid Connections / VPN Support

Scheduled Backup

Azure Active Directory Integration

Site Resiliency, HA, and DR

Web Jobs

Role Base Access Control

Audit / Compliance

Enterprise Migration

Client Certs

Redis Caching

IP Restrictions/ SSL

Web Sockets

SQL, MySQL, DocDB, & Mongo

Automated Deployment

AutoScale

Built-in Load Balancing

WW Datacenter Coverage

End Point Monitoring & Alerts

DR Site Support

WildCard Support

Dedicated IP address

HTTP Compression

WebJobs

Premium WordPress

Sticky Sessions

App Service Environment

Remote Debugging w/ Visual Studio

Site Staging Slots

Traffic Routing

Continuous Integration/Deployment

Git, Visual Studio Online and GitHub

App & Site Diagnostics

OS & Framework Patching

Site Extensions Gallery

NET, PHP, Python, Node, Java

Framework Installer

Browser-based editing

Auto-Healing

Logging and Auditing

Admin-Site

Support Site Extension

App Service Plan

Scaling Up vs. Scaling Out

Scale Up

Vary the VM size1 Core w/ 1.75 GB RAM 2 Cores w/ 3.5 GB RAM4 Cores w/ 7 GB RAM

Scale Out

Vary the VM countMax 3* instancesMax 10 instances

Max 20/50** instances

Limitation with the default App Service?

ASE provides: ▪Network isolation for apps

▪Larger scale than multi-tenant

▪More powerful hosts

▪Ability to work with all VPN types

App Service Environment benefits

Dedicated and isolated infrastructure per customer• Dedicated front-end and back-end instances

• Isolation with own virtual network

Achieve higher scale• Scale to 50 instances (more available upon request)

• Front-end load balancers with scale-out

• New: Extra Large workers

More security• VPN Site-to-Site and ExpressRoute connections

• Control incoming traffic with Network Security Group

• Protect apps with web app firewall, appliances and network SaaS providers

Functions

Slots and Deployment Recommendation

• Use primary App for production

• Use a slot for deployment

• Optional: create last-known-good slot• Code change SC Stage

Production

• After swap older Prod Stage LKG

•

•

-

https://portal.azure.com/#create/Microsoft.WebSite

-

-

-

-

-

-

-

-

-

-

Functions

https://portal.azure.com/#create/Microsoft.ApiApp

-

-

-

Functions

iOS

https://portal.azure.com/#create/Microsoft.Zumo

-

-

-

-

Event-driven scale

Sub-second billing

Abstraction of servers

Focus on business

logic

Ship fasterReduced dev

ops

Common Scenarios

Your App or

Service

Office

365

Office

Graph

Azure

Storage

Other

Functions

Legacy

Systems

Web

Services

• Timer-based processing

• Azure service event processing

• SaaS event processing

• Serverless web application architectures

• Serverless mobile backends

• Real-time stream processing

• Real-time bot messaging

Functions

https://functions.azure.com

https://portal.azure.com/#create/Microsoft.FunctionApp

Functions

▪ Browser-based work flow engine

▪ With pre-built connectors

▪ With BizTalk API Apps

▪ Enables use of custom API apps

▪ Provides built-in support for tracking

▪ Provides Role-based Access Control

▪ Manage deployment lifecycle with Resource Manager

• Box

• Chatter

• Delay

• Dropbox

• Azure HD Insight

• Marketo

• Azure Media Services

• OneDrive

• SharePoint

• SQL Server

• Office 365

• Oracle

• QuickBooks

• SalesForce

• Sugar CRM

• SAP

• Azure Service Bus

• Azure Storage

• Timer / Recurrence

• Twilio

• Twitter

• IBM DB2

• Informix

• Websphere MQ

• Azure Web Jobs

• Yammer

• Dynamics CRM

• Dynamics AX

• Hybrid Connectivity

• HTTP, HTTPS

• File

• Flat File

• FTP, SFTP

• POP3/IMAP

• SMTP

• SOAP + WCF

• Batching / Debatching

• Validate

• Extract (XPath)

• Transform (+Mapper)

• Convert (XML-JSON)

• Convert (XML-FF)

• X12

• EDIFACT

• AS2

• TPMOM

• Rules Engine

Connectors

Protocols BizTalk Services

https://portal.azure.com/#create/Microsoft.EmptyWorkflow

-

-

-

-

-

AZURE API MANAGEMENT

On-prem APIs 3rd party APIsAPIs on Azure Azure APIs

API consumers

APP DEVELOPERS

APPS

API PUBLISHERS

Hosted anywhere.

Developed using any

technology.

BACKEND

APIsDIRECT OR

VPN

Publisher portal

Gateway

Developer Portal

BACKEND

APIs

NETWORKING

IDENTITY

WAF

CUSTOM ANALYTICS

CUSTOM REPORTS &

DASHBOARDAS

Store recordPost new invoice

Fetch Invoice

Grab raw file

Convert to JSON

API layer

API Management

Logic App Function

https://portal.azure.com/#create/Microsoft.ApiManagement

-

-

-

-

-

-

http://aka.ms/apimroadmap

https://tryappservice.azure.com

https://functions.azure.com/try

•API Management

•Mobile App

•Web App

•Cloud Services

Choose between Flow, Logic Apps, Functions and WebJobs

https://mva.microsoft.com/en-US/training-courses/deep-dive-into-azure-app-service-a-platform-to-build-modern-applications-16828

https://mva.microsoft.com/en-US/training-courses/cloud-application-development-17172

https://mva.microsoft.com/en-US/training-courses/using-azure-functions-to-build-nanoservices-16765?l=8Qt5pu7yC_1906218965

https://mva.microsoft.com/en-US/training-courses/mastering-azure-app-service-part-1-building-azure-logic-apps-16829?l=N2TrqMY4C_305918563

https://mva.microsoft.com/en-US/training-courses/mastering-azure-app-service-part-2-building-azure-api-apps-16830?l=jI6yrcY4C_9605918563

https://mva.microsoft.com/en-US/training-courses/mastering-azure-app-service-part-3-building-azure-web-apps-16835?l=VucUekp4C_4405918563

https://mva.microsoft.com/en-US/training-courses/mastering-azure-app-service-part-4-building-azure-mobile-apps-16836

https://openedx.microsoft.com/courses/course-v1:Microsoft+AZURE206x+2016_T4/about

• Know the limits

• Know the SLA

• Know the price

• Know the regions

• Know the compliances

• Azure PaaS Security Best Practices Azure Security Services and Technologies

• ARM Templates Visual Studio Team Services

• Microsoft Technical Case Studiesthese icons

• this service mapping page

• Java Developer Center

App Service - Associated latest news and updates

API Management - Associated latest news and updates

Web Apps for

Devs

Day 1 – Associated free e-books

Enterprise Cloud

Strategy

Fundamentals

Azure Developer

Guide

Azure Skills Initiative - offersG

et sk

illed

Get ce

rtified

Access to online courses and digital, sharable certificates of completion for each completed course,

including new Azure for AWS Experts and Azure Fundamentals courses

Courses can be found at http://azure.Microsoft.com/azure-skillsFree

Access to online courses, plus:

Three exam vouchers

(including one retake each)

and practice tests for any three

Azure certification exams

$279usd

Linux Foundation

Certified System

Administrator

(LFCS) exam

voucherAvailable in January

Access to online courses, plus:

One exam voucher (including one retake)

and a practice test for any

Azure certification exam$99usd

https://aka.ms/cloudappdevplaybook

https://aka.ms/mabenoit/cad-ppe-lab1