IntroductionThe Well-Architected Framework (WAF) by Microsoft Azure provides a set of best practices to help you design and operate reliable, secure, efficient, and cost-effective cloud architectures. Whether you’re building a new application or migrating an existing one, applying WAF principles ensures that your solution is robust and future-proof. In this guide, i’ll explore how to … Continue reading “Designing a Secure and Scalable Azure Architecture Using WAF Principles”
Articles
How to block legacy authentication protocols using Azure AD Conditional Access policy
While i was working with a customer and this was one of their needs, i decided to blog on how i deployed. At first, what’s legacy authentication and why i need to block these protocols? Legacy authentication is a term that refers to an authentication request made by: Older Office clients that do not use … Continue reading “How to block legacy authentication protocols using Azure AD Conditional Access policy”
Azure AD Domain Services
I hear over and over discussions about Windows Active Directory, Azure AD and Azure ADDS ( Active Directory Domain Services). Is it the replacement of a traditional Windows Active Directory? What is Azure Active Directory Domain Services? Azure Active Directory Domain Services (Azure AD DS) provides managed domain services such as domain join, group policy, … Continue reading “Azure AD Domain Services”
Deploy and configure Azure Firewall
Azure Firewall is a managed, cloud-based network security service that protects your Azure Virtual Network resources. It’s a fully stateful firewall as a service with built-in high availability and unrestricted cloud scalability. Azure firewall allows you to centrally create, enforce and monitor network security policies across Azure subscriptions and virtual networks. Let’s create a demo on … Continue reading “Deploy and configure Azure Firewall”
Azure Private DNS zone
A DNS zone is used to host the DNS records for a particular domain. To start hosting your domain in Azure DNS, you need to create a DNS zone for that domain name. Each DNS record for your domain is then created inside this DNS zone. To publish a private DNS zone to your virtual … Continue reading “Azure Private DNS zone”
Just-in-Time VM Access in Azure
Azure Just-in-Time VM Access is a great option to control when engineers need to work in their VM’s with RDP in to the system. Let’s assume they work 1 hour per day on servers. so, keeping port open for 24 hours is a risk.Using Just-in-Time VM Access we can limit the time it keeps RDP … Continue reading “Just-in-Time VM Access in Azure”