azure cheat sheet

Home » azure cheat sheet » Page 4

Microsoft Defender for Cloud vs Microsoft Sentinel

2023-03-20T03:33:52+00:00

  Microsoft Defender for Cloud Microsoft Sentinel Description Unified infrastructure security management system Intelligent security analytics and threat intelligence service. Category Cloud Security Posture Management (CSPM) / Cloud Workload Protection Platform (CWPP) Security Information Event Management (SIEM) / Security Orchestration Automated Response (SOAR) Function Provides security alerts, scores, vulnerability assessment, recommendations, and security posture management. Provides alert detection, threat visibility, proactive hunting, and threat response. Features Microsoft Defender ATP Integration Network map Virtual Machine Behavioral Analytics Adaptive network hardening Regulatory Compliance dashboard & reports Missing OS patches assessment Security misconfigurations assessment Endpoint protection assessment Disk encryption assessment Third-party vulnerability assessment [...]

Microsoft Defender for Cloud vs Microsoft Sentinel2023-03-20T03:33:52+00:00

Azure Policy vs Azure Role-Based Access Control (RBAC)

2023-03-20T03:26:17+00:00

  Azure Policy Role-based Access Control (RBAC) Description Ensure resources are compliant with a set of rules. Authorization system to provide fine-grained access controls. Focus Policy is focused on the properties of resources. RBAC focuses on what resources the users can access. Implementation You specify a set of rules to prevent over-provisioning of resources. You grant permission on what users can create. Default access By default, rules are set to Allow. By default, all access is denied. Scope Policy within the resource group or subscription. Grant access to users or groups within a subscription. Integration Both services work hand-in-hand to [...]

Azure Policy vs Azure Role-Based Access Control (RBAC)2023-03-20T03:26:17+00:00

Azure SQL Database vs Cosmos DB

2023-03-20T03:36:12+00:00

  Azure SQL Database Azure Cosmos DB Type of Database Relational database NoSQL database Features Has several SQL deployment options for different kinds of workloads - SQL databases, SQL managed instances, SQL virtual machines. Delivers single-digit millisecond response times and instant scalability. Storage Size 100 TB for SQL database 8 TB for SQL managed instance 256 TB for SQL virtual machine Unlimited storage per database and container. Availability SQL database - 99.995% availability SQL managed instance and SQL virtual machine - 99.99% availability Single-region - 99.99% Multi-region - 99.999% Backups With long-term backup retention policy, database backups are automatically retained [...]

Azure SQL Database vs Cosmos DB2023-03-20T03:36:12+00:00

Network Security Group (NSG) vs Application Security Group

2023-03-20T03:30:37+00:00

  Network Security Group Application Security Group Description A network security group is used to enforce and control network traffic. An application security group is an object reference within an NSG. Features Controls the inbound and outbound traffic at the subnet level. Controls the inbound and outbound traffic at the network interface level. Rules Rules are applied to all resources in the associated subnet. Rules are applied to all ASGs in the same virtual network. Direction Has separate rules for inbound and outbound traffic. Has separate rules for inbound and outbound traffic. Limits NSG has a limit of 1000 rules. [...]

Network Security Group (NSG) vs Application Security Group2023-03-20T03:30:37+00:00

Locally Redundant Storage (LRS) vs Zone-Redundant Storage (ZRS)

2023-03-20T03:32:43+00:00

  Locally-Redundant Storage (LRS) Zone Redundant Storage (ZRS) Geo-redundant storage (GRS) Replication Replicates your data 3 times within a single physical location synchronously in the primary region.  Replicates your data across 3 Azure Availability Zones synchronously in the primary region Replicates your data in your storage account to a secondary region Redundancy Low Moderate High Cost Provides the least expensive replication option Costs more than LRS but provides higher availability Costs more than ZRS but provides availability in the event of regional outages Percent durability of objects over a given year At least 99.999999999% (11 9's) At least 99.9999999999% (12 [...]

Locally Redundant Storage (LRS) vs Zone-Redundant Storage (ZRS)2023-03-20T03:32:43+00:00

Azure Container Instances (ACI) vs Azure Kubernetes Service (AKS)

2023-06-03T04:25:31+00:00

  ACI AKS Description Run containers without managing servers. Orchestrate and manage multiple container images and applications. Deployment For event-driven applications, quickly deploy from your container development pipelines, run data processing, and build jobs. Uses clusters and pods to scale and deploy applications. Web Apps (Monolithic) Yes Yes N-Tier Apps (Services) Yes Yes Cloud-Native (Microservices) Yes Yes, recommended for Linux containers Batch/Jobs (Background tasks) Yes Yes Use cases Dev/Test scenarios Task automation CI/CD agents Small/scale batch processing Simple web apps Containers and application configuration portability Enables you to select the number of hosts, size, and orchestrator tools Transfer container workloads [...]

Azure Container Instances (ACI) vs Azure Kubernetes Service (AKS)2023-06-03T04:25:31+00:00

Azure Policy

2023-07-03T07:47:31+00:00

Azure Policy Cheat Sheet Ensure resources are compliant with a set of rules. Manage your policies in a centralized location where you can track their compliance status and verify the non-compliant resources. Select between built-in policies and custom policies. Implement proper guardrails and assess compliance across the organization Policy vs. RBAC A policy maintains compliance with the resource state, while RBAC focuses on controlling user actions at different scopes. Even if the user has access to perform an action, if the result is a non-compliant resource, the policy will still block the create or update option. JSON format is used [...]

Azure Policy2023-07-03T07:47:31+00:00

Azure DNS

2023-07-03T06:52:23+00:00

Bookmarks Private DNS Security Pricing Validate Your Knowledge Azure DNS Cheat Sheet Enables you to host your DNS zone and manage your DNS records. DNS zone allows you to configure a private and public DNS zone. Alias recordsets: A - maps the host to IPv4. AAAA - maps the host to IPv6. CNAME - create a record to point to another domain. A limit of 20 alias record sets per resource. Uses Anycast networking to route users to the closest name servers. You can monitor your DNS zone metrics using Azure Monitor. QueryVolume [...]

Azure DNS2023-07-03T06:52:23+00:00

Azure Cosmos DB

2023-08-14T03:20:32+00:00

Bookmarks Features Consistency Levels Security Pricing Azure SQL Database vs Cosmos DB Validate Your Knowledge Azure Cosmos DB Cheat Sheet Globally distributed database that supports NoSQL. A fully-managed database service with turnkey global distribution and transparent multi-master replication. Features Cosmos DB offers encryption at rest. It replicates every partition across all the regions. CosmosDB offers single-digit millisecond reads and writes in all regions. Supports automatic failover during a regional outage. Consistency Levels: Strong, Bounded Staleness, Session, Consistent Prefix, and Eventual You can set either standard (manual) or autoscale provisioned throughput on your databases and [...]

Azure Cosmos DB2023-08-14T03:20:32+00:00

Azure Pricing

2023-07-03T05:35:24+00:00

Azure Pricing Cheat Sheet Azure offers pay-as-you-go and reserved instances for pricing. Azure Pricing Factors: Resource size and resource type. Different Azure locations have different prices for services. The bandwidth of your services. Any data transfer between two different billing zones is charged. Ingress (data in) = free Egress (data out) = charged based on data going out of Azure datacenters Factors that can reduce costs: By purchasing a reserved instance (one-year or three-year terms), you can significantly reduce costs up to 72 percent compared to pay-as-you-go pricing. A reserved capacity is a commitment for a period of one or [...]

Azure Pricing2023-07-03T05:35:24+00:00

AWS, Azure, and GCP Certifications are consistently among the top-paying IT certifications in the world, considering that most companies have now shifted to the cloud. Earn over $150,000 per year with an AWS, Azure, or GCP certification!

Follow us on LinkedIn, Facebook, or join our Slack study group. More importantly, answer as many practice exams as you can to help increase your chances of passing your certification exams on your first try!