Building an Azure “Super-Assistant” with Azure MCP - Very good material not to be missed

Please visit this blog to get started 

Azure AI Assistant with MCP

Read more...

Implement advanced monitoring for Azure OpenAI in Foundry Models through a gateway

Implement advanced monitoring for Azure OpenAI in Foundry Models through a gateway

Here is a snapshot of the same

Read more...

Azure GenAI architecture

Things which we can enhance on this are 

• Layers of governance (data,apps,compute,network and storage) that eould be great
• Plus integration of "piprline" and " quality gates testing" to make it more robust and self-healing

Read more...

Microsoft Cybersecurity Reference Architectures

·       𝐃𝐨𝐦𝐚𝐢𝐧 #𝟏 - 𝐈𝐝𝐞𝐧𝐭𝐢𝐭𝐲 𝐚𝐧𝐝 𝐀𝐜𝐜𝐞𝐬𝐬 

o   Azure Active Directory: Password-less & MFA, Hello for Business, Authenticator App, FIDO2 Keys, Azure AD PIM, B2B & B2C. https://lnkd.in/grPgTT4R

o   Identity Protection: Leaked Credential Protection. https://lnkd.in/gdgMJZNF

o   Identity Governance: Identity, Access, and Privileged Access Lifecycle, Entitlement Management, Access Requests, Workflow, Policy and Role Management, Governance Enforcement. https://lnkd.in/gbVEWcQs

o   Defender for Identity: User Behavior and Activities, Investigate Alerts, AD FS Protection, Lateral Movement Detection. https://lnkd.in/g53ave8s

 

·       𝐃𝐨𝐦𝐚𝐢𝐧 #𝟐 - 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐎𝐩𝐞𝐫𝐚𝐭𝐢𝐨𝐧𝐬

o   Microsoft 365 Defender: Extended Detection and Response (#XDR). Endpoint, Office365, Identity, and more https://lnkd.in/gXFnX2PQ

o   Defender for Cloud: Cross Cloud XDR. https://lnkd.in/gZfP3QdF

o   Microsoft Sentinel: Cloud Native SIEM, SOAR. https://lnkd.in/gnd-6c-u

 

·       𝐃𝐨𝐦𝐚𝐢𝐧 #𝟑 - 𝐄𝐧𝐝𝐩𝐨𝐢𝐧𝐭 𝐚𝐧𝐝 𝐃𝐞𝐯𝐢𝐜𝐞 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲

o   Microsoft Endpoint Manager: Intune and Configuration Manager. https://lnkd.in/g4Vdfej2

o   Microsoft Defender for Endpoint: https://lnkd.in/g3KPMPCx

 

·       𝐃𝐨𝐦𝐚𝐢𝐧 #𝟒 - 𝐇𝐲𝐛𝐫𝐢𝐝 𝐈𝐧𝐟𝐫𝐚𝐬𝐭𝐫𝐮𝐜𝐭𝐮𝐫𝐞

o   Defender for Cloud: Cross Cloud XDR. https://lnkd.in/gZfP3QdF

o   Azure AD App Proxy: Secure Remote Access. https://lnkd.in/g2DDNYUy

o   Azure Arc: Hybrid and Multicloud Management. https://lnkd.in/gtaiiPgM

o   Azure Stack: Hybrid and Edge Computing. https://lnkd.in/gvKNyKQD

o   Azure Firewall: https://lnkd.in/gVnVNJbB

o   Azure WAF: https://lnkd.in/gpQCgdNc

o   DDoS Protection: https://lnkd.in/gF796HMv

o   Azure Key Vault: https://lnkd.in/gqMuSJ4S  

o   Azure Bastion: Secure RDP/SSH, Secure VM. https://lnkd.in/gmdyEb5W

o   Azure Lighthouse: https://lnkd.in/gHHUVyJn

o   Azure Backup: https://lnkd.in/gzBpjFXs  

o   Express Route: https://lnkd.in/gGBtuq5m

o   Private Link: https://lnkd.in/gzZVJ_gY

 

·       𝐃𝐨𝐦𝐚𝐢𝐧 #𝟓 - 𝐈𝐧𝐟𝐨𝐫𝐦𝐚𝐭𝐢𝐨𝐧 𝐏𝐫𝐨𝐭𝐞𝐜𝐭𝐢𝐨𝐧

o   Microsoft Purview: https://lnkd.in/g289yg_D

o   Compliance Manager: https://lnkd.in/gprm3xD4

 

·       𝐃𝐨𝐦𝐚𝐢𝐧 #𝟔 - 𝐏𝐞𝐨𝐩𝐥𝐞 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲

o   Attack Simulator: Simulation Training Platform. https://lnkd.in/g3xyhZff 

o   Insider Risk Management: https://lnkd.in/gfhxQEti

o   Communication Compliance: https://lnkd.in/gKJd4HRm

 

·       𝐃𝐨𝐦𝐚𝐢𝐧 #𝟕 - 𝐈𝐨𝐓 𝐚𝐧𝐝 𝐎𝐩𝐞𝐫𝐚𝐭𝐢𝐨𝐧𝐚𝐥 𝐓𝐞𝐜𝐡𝐧𝐨𝐥𝐨𝐠𝐲

Azure Sphere: IoT and OT Security Services. https://lnkd.in/gFMQRZB6 

Read more...

Azure Tips

Useful resources for Azure developers and architects! Microsoft Azure has unveiled the App Service Landing Zone Accelerator, an open-source collection of architectural guidance and reference implementation to accelerate the deployment of Azure App Service at scale. Whether you're building new applications in the cloud or looking to modernize your existing web apps, this accelerator provides a simple and robust starting point!

• 𝐒𝐞𝐜𝐮𝐫𝐞 𝐃𝐞𝐬𝐢𝐠𝐧 𝐏𝐫𝐢𝐧𝐜𝐢𝐩𝐥𝐞𝐬
• With the App Service Landing Zone Accelerator, you can implement a range of secure design principles to protect your apps and data.
• Use isolated network layers for the different components
• Use protected Azure Active Directory-based access via Managed Identity
• Use private endpoints for Azure services
• Use Network Security Groups to control inbound and outbound traffic at the subnet level
• Enable Standard DDoS Protection for the SPOKE

• 𝐂𝐨𝐦𝐩𝐫𝐞𝐡𝐞𝐧𝐬𝐢𝐯𝐞 𝐃𝐞𝐬𝐢𝐠𝐧 𝐀𝐫𝐞𝐚𝐬

The accelerator encompasses various design areas, covering critical aspects of your app's architecture.

• Identity and Access Management
• https://lnkd.in/g2PEkZz3
• Network Topology and Connectivity
• https://lnkd.in/gwTB7Tt8
• Management and Monitoring
• https://lnkd.in/gGvh6sNh
• Business Continuity and Disaster Recovery
• https://lnkd.in/gW2ugYpb
• Security, Governance, and Compliance
• https://lnkd.in/g6mU3Dgy
• Application Automation and DevOps
• https://lnkd.in/g4ugNXbA

• 𝐀𝐳𝐮𝐫𝐞 𝐅𝐞𝐚𝐭𝐮𝐫𝐞𝐬 𝐚𝐧𝐝 𝐒𝐞𝐫𝐯𝐢𝐜𝐞𝐬

Within the App Service Landing Zone Accelerator, you'll leverage a range of Azure features and services to enhance your app development process.

• Azure Front Door
• https://lnkd.in/gC-u5iRy
• Private Endpoints
• https://lnkd.in/gPZwY6KT
• Azure private DNS
• https://lnkd.in/gQ_AEXw8
• Network Security Group
• https://lnkd.in/gGS_n5ba
• Azure Key Vault
• https://lnkd.in/gNHTrhbf
• Azure Active Directory
• https://lnkd.in/g9j-STsg
• Azure Monitor
• https://lnkd.in/g3dPG3cy
• Virtual Network
• https://lnkd.in/gPYVTgq3
• Azure App Service
• https://lnkd.in/gmyZ5AZG
• Azure Cache for Redis
• https://lnkd.in/gFDY_TDC
• Azure SQL DB
• https://lnkd.in/gRsbanYE
• Azure App Configuration
• https://lnkd.in/gVBxXV9B

Read More:

• App Service Landing Zone Accelerator on GitHub
• https://lnkd.in/gj8RTVBP
• Keep improving your skill set with Microsoft Learn
• https://lnkd.in/gqcdrWdq

I hope you find these resources helpful. Happy learning!

Read more...

An Event Aggregator acts as a single source of events for many objects. It registers for all the events of the many objects allowing clients to register with just the aggregator.

Benefits. Producers and consumers are decoupled. No point-to-point integrations. It's easy to add new consumers to the system

Here is the overall solution

How to Organize Events Flow in a Microservices Architecture

Numerous enterprise solutions based on the microservices architecture have an issue with generalizing event flow from different sources. A lot of solutions also have various providers, for example:

• Azure Service Bus
• Apache Kafka
• RabbitMQ

Here we need a component with the ability to join event publishers and event subscribers

Another example that follows this principle is Azure Event Grid

 With the Event-Grid, you can join cloud resources that produce events (publishers) and resources that handle the events (subscribers).

Read more...

Trace the API call in Kibana (https://www.elastic.co/kibana)

1.  Once you log in to Kibana, there are 5 important sections:
2. Filter: Enter your API URI  ex:  /rest/getstock
3. Filter by Time: Filter search to a particular time or date range
4. Filter by Time: Filter search to a particular time or date range
5. Add Filter
6. Different API Fields are useful for searching purposes
7.  Usecase 1: Search by http_status code
   • Step 1: Select the correct time on the top right.
   • Step  2: Left pan select the "Http_status_code" and press "Search Icon". It will automatically be added to the Add Filter   
   • 
     
   • 
8. Use case 2: Search by API_KE
9. Step 1: Select the correct time on the top right.
10. Step 2: Left pan select the "api_key" and press "Search Icon". It will automatically be added to the Add Filter
11. 
12. Use case 3: After setting all the filters needed, you want to check more details of the API: 
13. 
14. Use Case 4: Want to show a visual representation of the error code. Let select http_status_code from the left pan and press "Visualize"

Read more...