ESPC19 DAY 4

The important thing first. This is a live Blog Post, so during the writing and post, there are maybe some typos or grammatical issues. Days after the conference, I will correct this.

Last Day, but with hopefully really good sessions. Today is one session with Thomas Maurer about CloudShell. I’m really curious about that. Yesterday was the big attende party, my issue, I don’t have a ticket 🙁


Session Name: Linux on Azure

Speaker: Mustafa Toroman

Level: 300

Officially Agenda:

Azure is a first class platform for Linux and open source technology, with a growing list of OSS solutions in the marketplace, Linux extensions, and Azure services like running on Linux. Around half of Azure virtual machines run on Linux. Why? Because Azure supports the open source technologies. In this session see how to take advantage of Linux on Azure, how to create your first Linux VM in Azure and what tools you can use to manage it.

Yes that’s real.

We talk about the Microsoft history, about Linux and also speak about the supported Linux Versions.

A major break in the history was the PowerShell for Linux support. At the moment there are running 50% Linux VMs at the Azure Cloud, so here you can see the big Microsoft change.

Many third party distributors are develop their applications for Azure.

Mustafa demonstrate how you can deploy a new Azure Linux VM with the Azure CLI. The deployment takes around 1 minute.

In that Demo we also install Microsoft SQL Server in Linus. First time to see that solution 🙂 A good question “Why should I install SQL on Linux and not on Windows” Mustafa invest some time for testing and the result:

  • Depending on the Dataset, Linux is 3-6 times faster.
  • When you create a 1TB Database, Linux is up to 30% faster told Mustafa. I can’t approve that statement.
  • The bad thing, not the whole functionality was supported on Linux, so please check that points bevor.

The SQL server installation takes around 5 minutes. Mustafa told also about one test scenario and with that scenario, he answer the question, why I can’t use admin or administrator as loginname?

He install a Linux VM and open port 22 for the whole internet. During one month he had 95k Brute force attacks at the VM and 95% use the common user names “admin, administrator,…” So that’s the reason, why Microsoft drop that User Logins.

A big point is also:

So it’s not really difficult to bring your own Linux or FreeBSD version to the Azure Cloud.

During the session we also deploy a Linux WebApp and compare the functionality with the Windows WebApp.

We also talk about AKS and generally container technologies at the Azure Cloud. I’ll create a separate Blog Post in the future about container services including AKS.

In a short Demo we also saw how easy you can install an AKS Clustrer with one Node (no productive solution) from CLI.

Great Basic session about Linux on Azure.


Session Name: Powerful and Effective Protection with Azure Security Center

Speaker: Sasha Kranjac

Level: 300

Officially Agenda:

Whether you are planning onboarding to Azure or you are already using Azure for a while, the infrastructure and service security must be high on your priority list. Fortunately, there is a tool to help make our security life much easier – you are going to learn about the rich capability set of Azure Security Center!
Join this dynamic session where you will see the inside out of the central place for security in Azure, how to use this powerful tool to your advantage, to mitigate threats, to protect and defend Azure and hybrid infrastructure.

Benefits of Attending this Session: 

  • Learn how to raise the security posture of your Azure environment to a new level
  • Learn how to protect Azure assets from threats
  • Learn how to detect and respond to threats in a timely manner

In that session, we talk about Azure Security and deeply about Azure Security Center.

The Security Center is the central tool to guide you how is the current state of your environment (Cloud and On-Prem)

Microsoft invest a hugh amount of investement into security per year.

The technology where Microsoft Security is focusing on:

An important part about Azure Security Center, it#s learning every day more and more about new attack technologies. The reason for that ils the AI behind Security Center and the big.

Azure Security Center can halp in different faces:

Security Center Architecture looks like:

Important part here is Azure Log Analytics behind. To get information how my environment is actually configured, Azure Security Center gives you and Azure Security Center score. That score isn’t static, so depending on your configuration and new feature releases it can change daily.

The important part. It’s not Cloud native, so you can protect your On-Prem or other Cloud environments.

There are two different pricing levels available. The free one and Standard. That’s the reason why every environment should enable Azure Security Center because there is an free option available.

Another important part, when you choose the “standard” priving model, you don’t have to pay for the whole environment, so you can choose what components you want to monitor with standard and what components you want to monitor with the free pricing tier. You pay per node (Ressource Type), which mean for example:

  • Virtual Machines
  • App Service
  • PaaS SQL Service
  • ,…

The pricing model looks like:

The security center overview (nothing new, but really usefull to see):

We saw a big Demo about azure security center and their functionality.

A must for each customer!


Session Name: Bleeding on the PaaS Edge: Containerising your Web Apps

Speaker: Jouni Heikniemi

Level: 300

Officially Agenda:

Azure provides a variety of great options for hosting your own code. The obvious alternative is the venerable Azure App Service, but what if you want to go a bit further?

In this session, we explore a real-life application that was migrated from App Service to Azure Kubernetes Service. What happened to our performance, costs, debugging, deployment and other things?

This session is best suited for developers who have a good grasp of developing web apps on Azure using ASP.NET, preferably ASP.NET Core.

Benefits of Attending this Session: 

  • Practical understanding of containers
  • ASP.NET Core migration tips
  • Container-based DevOps

First question: Web Apps are fine, why should i bother with AKS?

Big thing, end of WOMM 🙂 (Works on my machine)

A big point, App Service Container don’t automatically updates, so you can archive a version freeze.

A big point, why I should use containers is WOMM and of course protability:

Another thing is “Better versioning and scaling:

  • Docker has well-defined versioning/deployment model with fast rollback capabilities
  • Container images are always kept in a registry.
  • K8s lets you scale individual workloads (single containers), not just the whole cluster.
  • If you need to, AKS can also scale to on-demand instances (ACI)

We here also about a project AppService:

He talk, why the project wasn’t realized in App Service. Instead that, they migrate the Application into K8s:

The services which the project deal with are:

Migrate deployment model to AKS looks like:

Big question every time: is AKS IaaS or PaaS?

So the answer is yes/no 🙂 the most things are automatically done, but some staff should be configured by your own.

Cool session, but for me to much dev staff.


Session Name: Monitoring and Logging Office 365 using Azure Sentinel

Speaker: Kimmo Bergius

Level: 300

Officially Agenda:

Azure Sentinel is a new service in the Microsoft portfolio designed to work as a platform for gathering, monitoring and analysing log information from multiple sources.

This session will show attendees how to use Azure Sentinel to gather logging information from the various Office 365 services, and how to monitor and analyse the logging information and create alerts for selected events. The session will also give an overview of the Azure Sentinel functionality for other log sources.

Benefits of Attending this Session: 

  • Azure Sentinel functionality
  • Logging and monitoring of Office 365 services
  • Creating alerts and acting on events

In that session, we hear about an important part. Security at the Cloud. Azure Sentinel is an.

The Agenda is:

The first question should always be: What kind of logs does I need and what should I archive with that logs?

In our country, the most answer will be: “The GDBR”.

The second question is: “How long do you need that logs saved?”

Then you have the question: “What kind of tools should I use?”

Next one: “Do I need alerts or manual monitoring?

And one last question: “Who should have access to logs?”

That question helps you determine what kind of tools you can use and what requirements should it have to be.

There are different options to Log Office 365:

Azure Sentinal is completly based on Azure Log Analytics. There are some differences, so you cannot analyse Performance logs in Azure Sentinal, you can analyse logs. Azure Sentianl build a bunch of functionality on top of Azure Log Analytics like:

  • Workbooks
  • notebooks
  • Alerting
  • Separate UI on top of Log Analytics
  • Log Formats/Connectors from different systems

Azure Sentinel Architecture looks like:

There is a big amount of connectors (at the moment 32) available in Azure Sentinel. You have to choose the data what you want and select the right connector.

The next step should be, to define the Workbook which you want or need.

Next point is to activate the Analytics rule from the bunch of predefined, depending on your need.


Session Name: Mastering Azure using Cloud Shell!

Speaker: Thomas Maurer

Level: 300

Officially Agenda:

Azure can be managed in many different way. Learn your command line options like Azure PowerShell, Azure CLI and Cloud Shell to be more efficient in managing your Azure infrastructure. Become a hero on the shell to manage the cloud! 

Benefits of Attending this Session: 

  • What is Cloud Shell! 
  • Cloud Shell to manage Azure from everywhere 
  • Amazing CloudShell, Azure CLI and Azure PowerShell tricks 

Okay my last session for today. I don’t really post something about that session, but I’m really anticipation of it.