Microsoft Azure

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/azure by /u/Jessebarton on 2023-09-06 17:48:31.

Currently I am using a Kiosk Configuration Profile Type that is assigned to a group with over 250 machines in it. This is setup using Multi App Kiosk Mode.

Recently I ran into some things that I just couldnt do in the base Kiosk Profile Type Template.

So I built out some custom XML and tested mirroring what the Kiosk Template does with some OMA-URI settings.

I am wanting to essentially remove the existing configuration profile and add the new one.

Do these profiles automatically remove the settings when they are removed. Should I expect any issues?

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/azure by /u/Hour-Mud4227 on 2023-09-06 14:09:01.

I heard a fellow Azurian claim the other day that app services are actually containers run on an MS-managed kubernetes cluster.

I thought to myself “nah that can’t be right” given that that’s essentially what Azure Container Apps are supposed to be, and given the existence of AKS, ACR and ACI to handle the abstraction of kubernetes and the orchestration of containers.

However, I then realized I actually don’t know what app services run on under the hood. Does anyone here know?

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/azure by /u/brepmassive on 2023-09-06 13:03:56.

Hi,

With the impending retirement of Azure Automation Run As Accounts I've been looking at the Runbooks I have within our Automation Account and how they authenticate.

I have a PowerShell Runbook for SharePoint Online that sets the OneDrive timezone using a version of this script. It authenticates to SharePoint Online using the following:

Connect-PnPOnline -Url $AdminSiteURL -Tenant $AADTenantID -ClientId $AppClientID -Certificate $Certificate -WarningAction Ignore

The -ClientId value is the Application ID of the Run As Application ID in AAD App Registrations.

The -Certificate value is a self-signed certificate that we created, not the Run As generated certificate, and the expiry is long, 2031.

My question...

Will the App Registration still existing post the retirement date of 30th September and therefore the certificate will still be usable? Or will the retirement of the Run As account mean the App Registration itself, along with the certificates/secrets will be removed and therefore the Runbook will no longer be able to authenticate?

Thanks in advance!

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/azure by /u/hestolethatguyspiza on 2023-09-06 00:05:09.

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/azure by /u/Low-Donut6138 on 2023-09-05 19:31:19.

Hi everyone, with autumn coming up I think it's time for lots of folks to start preparing their yearly professional growth plan.

I've been working as an Azure admin full time for a few years now at an MSP / consulting firm. Mostly building landing zones, lift and shifts, general compute / storage kindof projects.

I feel like I've explored these enough and starting to become bored.

Which areas / fields of azure do you think will rise in popularity / demand?

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/azure by /u/nidgroot on 2023-09-05 10:24:52.

This morning I noticed an update in synapse ui. I’m not too impressed and also pretty annoyed by the warning that ‘other users in your workspace may have access to modify this item’. I know, those are my colleagues. Also no way of getting rid of that message and it’s screwing up the layout.

Anyone else feeling fed up about this?

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/azure by /u/CyberCzech on 2023-09-05 19:32:30.

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/azure by /u/Crackor255 on 2023-09-05 11:57:36.

Hello,

we recently asked ourselves if there is a general difference about how to recover a virtual machine in the cloud compared to on premise. So normally in an onPrem Vmware cluster I would use a Software like Veeam to recover a virtual machine in a state as it was before. Doing this in azure, would mean that you will have a virtual machine with a specialized image, which will restrict you with using features such as Update Management Center. So is it just such a rare case that you really need to recover a vm in the cloud? Or do one need to setup something like ansible so that you will just setup a new „empty“ vm with OS only and will push the configuration via a tool like ansible? Why is it so difficult in azure to reattach an os-disk?

Thanks in advance for every input

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/azure by /u/GoldenDew9 on 2023-09-05 11:22:35.

Hello, We have about 40+ subscriptions (AVD projects),

each subscription has

• single RG containing
• one or more avd workspaces
• one or more hostpools
• multiple AVD RDSH hosts

We need to setup Azure Monitoring for those AVD hosts with azure monitoring agent and the data collection rule (DCR) for each project using terraform which will send the perf counters to Log analytics workspace.

So Now I am stuck with decision whether there should be multiple DCRs or DCR per subscription or DCR per Hostpool?

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/azure by /u/shinku-malaka on 2023-09-05 11:15:49.

Hi there - when I first started with Azure AD (small business), I invited users with their personal email rather than create an internal user.

They are members in my tenant, but they have creation type invitation. They also have B2B collaboration invitation state as accepted.

We're still early stages <5 employees. Trying to find out what the implications of this is, is it worth creating a new internal user account for them?

We've been in operation for a year now so they will have business OneDrives and email history we want to retain.

Thanks!

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/azure by /u/Cepton on 2023-09-04 19:25:52.

Hello,

It was hard, I really worked (on my job) 100% on Azure for a year (in the past, it was about 30% of my time, mostly in AZAD)....

I've been studying about 1 hour a day since my training (1 week ago) and 6 hours this weekend to get ready...

My score: 607

(I forgot there was a case study at the end, so I took my time reviewing the questions and ended up with 10mn for the case, I had to rush and couldn't answer the last question...)

The problem is that I never practice on my work for most of the exam topics. We don't use the compute/storage/backups/monitor things....

Do you have any recommendation of websites/videos/cheap eLearning institute to train and help me ?

Thank you.

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/azure by /u/RE_H on 2023-09-04 15:15:55.

I find myself in an urgent predicament and could use the collective wisdom of this community. My organization has two locations with servers running a mix of Windows Server 2008 and 2012. Given the age of this infrastructure, I am increasingly concerned about the potential for hardware or system failures. We have decided to migrate to Azure, but I want to ensure we do it right!

Background:

1. Two physical locations.
2. Mix of Windows Server 2008 and 2012.
3. Objective is not just to "lift and shift", but rather to utilize best practice architectures for the cloud.
4. Cost-effectiveness is a primary concern.

Primary Questions:

1. What's the best approach to migrate these old versions of Windows Server to Azure?
2. Are there Azure-native tools or third-party solutions that you'd recommend to ensure a smooth migration?
3. For a mixed environment like ours, what architecture in Azure would be both robust and cost-effective?
4. Given that Windows Server 2008 has reached its end of support, what's the recommended path? Should we consider upgrading first or does Azure offer compatibility layers/solutions?
5. How can we optimize cost post-migration? I've heard about Reserved Instances, Hybrid Benefits, etc. Are there any other strategies you'd recommend?

I know I'm asking for a lot, but time is of the essence. The last thing we want is to be caught off guard by our on-prem infrastructure failing before we've made the leap. Any advice, recommendations, or experiences shared would be hugely beneficial.

Thank you all in advance for your guidance and insights!

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/azure by /u/JohnSavill on 2023-09-04 14:16:39.

Bring some Azure to your server operating systems no matter where they are with a little Azure Arc :-D.

00:00 - Introduction

00:06 - Azure and ARM control plane

01:32 - Features of Azure and control plane

04:12 - Sad servers not in Azure

05:28 - Azure Arc for Servers

07:06 - Supported environments

09:32 - Network requirements

14:36 - Agent pre-reqs

15:03 - How to deploy the agent

18:21 - Updating the agent

19:38 - Agent components

25:27 - Azure resources created

29:20 - What can I do for free

31:54 - Remote management

40:26 - Paid capabilities

44:48 - Summary

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/azure by /u/kowallox on 2023-09-04 11:55:39.

We do have an Azure & Microsoft 365 tenant. In Azure we keep among the others our Domain Controllers and we store their backup in the Azure Backup in the same Azure tenant. Is it a potential solution to store these backup in separated tenant in case of potential ransomware attack which would put out tenant our of order?

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/azure by /u/PotteryJacuzzi on 2023-09-04 03:43:39.

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/azure by /u/aleks1ck on 2023-09-02 17:16:58.

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/azure by /u/alwaysdefied on 2023-09-01 17:57:14.

I have some practical work experience in Power Platform (PowerApps, Power Automate etc) and recently finished a Cloud Engineering training with many hands-on practical projects on my belt. I’m quite confused which I should go for; or should I do Hybrid?

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/azure by /u/psinchuk on 2023-09-01 20:35:56.

Need a little bit of guidance on how to handle SQL in Azure.

We are currently migrating our servers over to VMs or Azure Services when we can and the only ones causing me issues are the SQL Servers. I don't think we are ready to make the jump to Azure Databases so we are trying to go the route of the Azure VM with SQL. The issue I am running into is that the option only allows me to login with local creds and not AAD like the other servers.

How are you all handling this? Do you just use the local admin account and then create induvial accounts for people who need to access the actual DB? I feel like this is a step backwards from what we have now where we can authenticate with our Windows credentials to both the machine and SQL.

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/azure by /u/Nervous_Dragonfly_96 on 2023-09-01 19:47:51.

Exactly passed it with 700 points after two failed exams with 687, really happy because had not a good feeling during exam, some observations:

-Lot of questions were security related, especially about Keyvault sceneraios

-Almost no code questions, as I remember there was only one question about a c# example.

-Not too much questions about Message based services, for me this was a bummer because I invested another 20 hours of time with practicing all the message based services.

-Lot of questions about Containers, Bit surprising, even more than web apps.

-The questions were in my opinion way to deep, I am a MCT, and would really not know how I would prepare students for this.... I will write a feedback report to MS on this, because it will discourage people in taking Exams.

In general I would say this was a very very difficult exam, and a bit bummer: You can not really prepare for this if you would get the same questions, a lot of deep configuration questions which I don't like because you would normally look up in the documentation.

This was an "open book" exam, so you can search in the learn portal, however the search results seems to be limited, in the end I only looked up one question.

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/azure by /u/Intelligent_Tune_392 on 2023-09-01 18:02:38.

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/azure by /u/papuha on 2023-09-01 06:58:30.

Here is what I did

1. created an app and granted permissions

Keyvault and Service Mngt

1. for Client Secret, I made sure I use "Value"
2. Then use the following code

But got error in both KeyVault and Resource Management.

and I just tried a minute ago just in case the permissions hadn't kicked in. But it still didn't let me connect. :(

Please advise.

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/azure by /u/rijoskill on 2023-09-01 07:16:31.

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/azure by /u/clairegiordano on 2023-08-31 19:44:35.

This "What's new with Postgres at Microsoft" blog post gives you a bird's eye view of 6 different workstreams for Postgres at Microsoft—2 on Azure and 4 in the open source space—plus some interesting highlights and impacts of all of this Postgres work, including some of the Postgres 16 work that will GA soon (Beta 3 is out already.) I'm the OA of the post—although obviously a ton of people inside and outside Microsoft did the engineering work—and would love feedback and questions.

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/azure by /u/FemiAina on 2023-08-31 14:02:51.

I have a priavte AKS Cluster that connects to a Database.

The set up was done by another engineer that's no longer with our team.

My best guess is that the Private Cluster connects to the DB using a private endpoint.

Yesterday, someone edited some things on the Networking of the Azure Database Server, and since then all the services connected to the DB Server can't connect.

This is the error message --

A connection to the server 'marcusdevtestdbserver.database.windows.net' could not be established. This might indicate an issue with your local firewall configuration or your network proxy settings.

Please click here for instructions on how to configure your network settings.

I am not sure of how to troubleshoot this or fix the problem. All the services running on the Cluster cannot connect to the Database.

And the Jumpbox that could previously connect to the DB as well no longer connects.

This is an automated archive made by the Lemmit Bot.

The original was posted on /r/azure by /u/AutoModerator on 2023-08-31 13:00:34.

This is the only thread where you should post news about becoming certified. For everyone else, join us in celebrating the recent certifications!!!