1. AZ-900 Study Areas Weights Understand cloud concepts 15-20% Understand core Azure services 30-35% Understand security, privacy, compliance, and trust 25-30% Understand Azure pricing and support 20-25%
2. 1- Cloud Conecpts
2.1. Key Cloud Conecpts
2.1.1. High availability
2.1.2. Scalability
2.1.3. Elasticity
2.1.4. Agility
2.1.5. Fault Tolerance
2.1.6. Disaster recovery
2.1.7. Global reach
2.1.8. Customer Latency
2.1.9. capabilities Predictive
2.1.10. cost considerations
2.1.11. Technical Skill requirements and considerations
2.1.12. Increased productivity
2.1.13. Security
2.2. CapEx vs OpEx
2.2.1. Capex - money upfront OpEx - No upfront cost, pay for you use
2.3. Models Cloud
2.3.1. Public (AWS, Azure, GCP)
2.3.1.1. Advantages: No CapEx Agility Consumption-based model Maintenance < Technical skill Disadvantages: Security Compliance Ownership Specific Secenarios
2.3.2. Private (Openstack, Azure Stack)
2.3.2.1. Advantages: Control Security Compliance Specific Scenarios Disadvantages: Upfront CapEx Agility Maintenance Skilll technical
2.3.3. Hybrid (On premisse + Cloud)
2.3.3.1. Advantages: Flexibility Costs Control Securty Compliance Specific scnearios Disadvantages: Upfront CapEx Costs Skill Ease of Management
2.4. Cloud Services (Type of clouds)
2.4.1. Shared Responsibility Model
2.4.2. Iaas (Azure)
2.4.3. Paas (WebApp)
2.4.4. SaaS (Microsoft 365)
3. 2- Core Azure Services
3.1. Architectural components
3.1.1. Regions
3.1.1.1. Regions Pairs
3.1.1.1.1. Pysycal isolation - (Regions least 300 Miles exception in Brazil) Platform-provided replication Region recovery order Sequential updates
3.1.1.2. Geographies * Americas *Europe *Asia Pacific *Middle East and Africa
3.1.2. Availability Options
3.1.3. Resource Groups
3.1.3.1. - Metering and Billing - Policies - Monitoring and alerts - Quotas - Access control
3.1.3.2. Delete a resource group you delete all resoucess contained within it.
3.1.3.3. Resource Manager (Provisioning CLI, SDK and etc) format - json
3.1.4. Azure Services and Products
3.1.4.1. Azure Compute
3.1.4.1.1. Virtual Machine
3.1.4.1.2. Azure Functions
3.1.4.1.3. App Services
3.1.4.1.4. Virtual machine scale sets
3.1.4.2. Azure Containers
3.1.4.2.1. Container instances
3.1.4.2.2. AKS (Azure Kubernetes Services)
3.1.4.3. Azure Network
3.1.4.3.1. VNET (Virtual network)
3.1.4.3.2. Azure Load Balancer
3.1.4.3.3. VPN Gateway
3.1.4.3.4. Azure Application Gateway
3.1.4.3.5. Content Delivery Network (CDN)
3.1.4.4. Azure Storage
3.1.4.4.1. Disk storage (SSD, HDD)
3.1.4.4.2. Containers (Blobs)
3.1.4.4.3. Files
3.1.4.4.4. Queues
3.1.4.4.5. Tables
3.1.4.5. Azure Database
3.1.4.5.1. Azure Cosmos DB - Globally distributed -Elastically
3.1.4.5.2. Azure SQL Database -Daas lastes stable version SQL -Without needinf to manage infraestructure
3.1.4.5.3. Azure Database Migration
3.1.4.6. Azure Marketplace
3.1.4.6.1. Independent software vendor (ISVs)
3.1.5. Azure Solutions
3.1.5.1. Iot Central (Azure IoT Hub)
3.1.5.2. Big Data and Analytics
3.1.5.2.1. Azure Synapse Analytics (Data Warehouse)
3.1.5.2.2. Azure HDInsisht
3.1.5.2.3. Azure Data Lake Analytics
3.1.5.3. Azure Artificial Intelligence
3.1.5.3.1. Azure Machine Learning Service
3.1.5.3.2. Azure Machine Learning Studio
3.1.5.4. Serverless computing
3.1.5.4.1. Azure Functions
3.1.5.4.2. Azure Logic Apps
3.1.5.4.3. Azure Event Grid
3.1.5.5. Azure DevOps
3.1.5.5.1. Azure Devops Services
3.1.5.5.2. Azure Lab Services
3.1.5.6. Azure WebApp
3.1.5.6.1. -Multiple languages and Frameworks -DevOps optimization -Gloabl scale with high availability -Connections to SaaS plataforms and on-premises data -Security and Compliance -Application templates -Visual Studio integration -API and mobile features -Serverless code
3.1.6. Azure Management tools
3.1.6.1. Azure Portal
3.1.6.2. Azure Powershell
3.1.6.3. Azure Comand Line Interface (CLI)
3.1.6.4. Azure Cloud Shell
3.1.6.5. Azure Mobile APP
3.1.6.5.1. - check status -quicly diagnose -Start/stop vms -Connect vms -Manage permissions
3.1.6.6. Azure Rest API
3.1.6.7. Azure Advisor
3.1.6.7.1. Free service - provides recommendations on high availabilitym security, performance and cost
4. Importante
4.1. Sobre o exame
5. 3- Security, Privacy, Compliance and Trust
5.1. Security Network Conectivity
5.1.1. Defense in depth
5.1.2. define-shared-security https://i.ibb.co/HY3ny44/define-shared-security.png
5.1.3. Azure Firewall
5.1.4. DDoS
5.1.4.1. Basic - free automaticamente Standard - pay for additional mitigation
5.1.5. NSG (Network Security Group)
5.1.5.1. Filter Network traffic
5.1.6. ASG - Application Security Group
5.1.6.1. Groups NSG
5.1.7. Network Security Solutions
5.2. Cloud Azure identity Services
5.2.1. Authentication = have access vs Autorization = what level access
5.2.2. Azure AD
5.2.2.1. External Resources ex. 365
5.2.2.2. Internal Resources
5.2.2.3. Autentication
5.2.2.4. Single Sign On (SSO)
5.2.2.5. Application Management
5.2.2.6. B2B - Business to Business
5.2.2.7. B2C - Business to Custormers
5.2.2.8. Device Management
5.2.3. Multi-Factor-Authentication (MFA)
5.2.3.1. Azure Active Directory Premium Licences
5.2.3.2. MultiFactor-Authetication for Office 365
5.2.3.3. Azure Active Diretory Global administrators
5.3. Security tools and features
5.3.1. Security Center
5.3.1.1. Monitoring service that provides threat protection. Recommendation
5.3.2. Key Vault
5.3.2.1. Centralized storing secrets - Secrets management - Key Management - Certificate management - Store secrets backed by hardware secutiry modules
5.3.3. AIP (Azure Information Protection)
5.3.3.1. classify and protect documents and emails
5.3.4. ATP (Azure Advanced Threat Protection)
5.4. Azure governance methodologies
5.4.1. Azure Policy
5.4.2. Role-based access control (RBAC)
5.4.3. Resources lock
5.4.4. Azure Blueprints
5.4.4.1. to define a repeatable set of azure resources
5.5. Monitoring and reporting in Azure
5.5.1. tags
5.5.2. Azure Monitor
5.5.3. Azure Heath Service
5.6. Privacy, compliance and data protection standards
5.6.1. Compliance Terms
5.6.2. Trust Center
5.6.3. Trust Portal
5.6.4. Compliance Manager
5.6.4.1. Dashboard
5.6.5. Azure Government (US)
5.6.6. Azure China 21Vianet
6. 4- Azure Pricing, Service level agreements and Lifecycle
6.1. Azure Subscriptions
6.1.1. Can have one subs or multiple subs
6.1.2. Billing Model
6.1.2.1. - Boundary separate billing reports and invoices for each subs - Access control boundary Apply access-management policies
6.1.2.2. https://i.ibb.co/ThCNyTS/billing.png
6.1.3. Subscriptions Options
6.1.3.1. Pay-As-You-Go Dev/Test
6.1.3.2. Visual Studio Enterprise: BizPark
6.1.3.3. Visual Studio Professional
6.1.4. Free Accounts
6.1.4.1. 12 months +200$ credits Always free 25 services (ML/Big data)
6.1.5. Management Groups
6.1.5.1. Organizing structure for resources in Azure
6.1.5.2. https://i.ibb.co/0tvq8y9/managegroup.png
6.2. Planning and managing costs
6.2.1. Purchasing Azure products and services
6.2.1.1. Enterprise (EA)
6.2.1.2. Web Direct
6.2.1.3. Cloud Solution Provider (CSP)
6.2.2. Usage meters
6.2.2.1. Compute Hours IP Address hours Data Transfer In Data transfer Out Standard Managed Disk Standard Managed Disk Operations Standard IO-Disk Standard IO-Block Blob Read Standard IO-Block Blob Write Standard IO-Block Blob Delete Resource type Location
6.2.3. Pricing Calculator
6.2.4. Total Cost Of Ownership (TCO)
6.2.5. Cost Management
6.3. Services Level Agreements (SLA)
6.3.1. SLA Downtime estimates Contratos de nível de serviço - Home page | Microsoft Azure
6.3.2. https://i.ibb.co/cwc8V12/sla.png
6.3.3. Compose SLA exm: 99.95 x 99.99 = 99.94
6.4. Service Lifecycle in Azure
6.4.1. Public Preview - Available to all Azure
6.4.2. Private Preview - Available to certain azure customers