Become a cloud pro by designing, deploying, and managing robust Azure solutions. Get hands-on with automation, cost management, and security. No setup, no cleanup, no hassle.

azure_new.tar.gz

username

password

EducativeProject

OriginalApp

This hands-on course empowers you with the skills to design, deploy, and manage robust cloud solutions on Microsoft Azure. Azure offers various services enabling organizations to scale up and accelerate their digital transformation. 

In this course, you’ll explore the core principles of cloud architecture and learn industry best practices. You’ll be introduced to cloud computing basics, followed by topics like SLAs, databases, app services, and VMs. Next, you’ll learn about various automation services like Azure WebJobs, Azure Service Bus, and Azure Queue Storage. Cost management and monitoring tools like Azure Log Analytics, Azure Dashboards, Application Insights, and Azure Monitor are also covered. The course discusses securing the data and VMs using tools and services like Microsoft Entra ID, IAM, and administrative units. 

After completing this course, you can complete Microsoft’s Azure Solutions Architect Expert certification and be ready for cloud and IT management and consulting roles.

Dhruv Kinger

SWE at ThrivePass || Project Reviewer, Mentor & Tutor at Udacity

Azure Cloud Solutions Architect Program

Azure Bastion is a service offering that allows us to deploy and let us connect to a virtual machine using the browser and the Azure Portal, or via the native #key# SSH:  Secure Shell #key# or #key# RDP: Remote Desktop Protocol #key# client already installed on our local computer. It provides a more secure and seamless RDP/SSH connectivity experience to our virtual machines directly from the Azure Portal over TLS (Transport Layer Security).

In an RDP connection, a virtual machine needs to configure a public IP that’s exposed to the world, and the client machine uses that IP and login credentials to connect to the virtual machine. However, when connecting via Azure Bastion, our virtual machines don’t require a public IP address, agent, or special client software.
Using Azure Bastion helps protect our virtual machines from exposing their RDP/SSH ports to the outside world and provides secure access using RDP/SSH.

# VPN

A virtual private network (VPN) enables a user’s device to establish a secure connection with a remote server or machine through a private network. This private network ensures that the information transmitted over the network is encoded and protected. 

Additionally, a VPN verifies the identities of the individuals connected to the remote machine, making it harder for unauthorized users to gain access. It also employs measures to detect any attempts to alter the data being transmitted, making it possible to identify if the information has been tampered with.

A VPN hides our IP address by letting the network redirect it through a specially configured remote server run by a VPN host. When we surf online with a VPN, the VPN server becomes the source of our data.

This means our internet service provider (ISP) and other third parties can’t see which websites we visit or what data we send and receive online. So, basically, a VPN works like a filter that turns all our data into “gibberish.” So, even if someone gets their hands on our data, it would be useless.

A VPN hides our IP address by letting the network redirect it through a specially configured remote server run by a VPN host. When we surf online with a VPN, the VPN server becomes the source of our data.
This means our internet service provider (ISP) and other third parties can’t see which websites we visit or what data we send and receive online. So, basically, a VPN works like a filter that turns all our data into “gibberish.” So, even if someone gets their hands on our data, it would be useless.

FAQs

FAQs

# Azure Bastion configuration

Setting up Bastion has three steps: first is to configure Azure Bastion, second is to create a VM in the same resource group, and last is to log into the VM using Bastion. So, let’s look at the steps:

## Setting up Azure Bastion

1) Navigate over to [Azure Portal](https://portal.azure.com/) and log in. 

2) On the Azure home page, click the “Create a resource” button. This will open a marketplace. There, search for “Bastion” by typing in the search box or scrolling down to find it.

3) Click the “Create a Bastion” button. This will open up a form to fill out the details. Select your subscription and an already existing resource group. If you don’t have any, create one and give it any desired name.

4) In the “Instance details” section, configure these values:
   - Name
   - Region
   - Tier
   - Instance count (should be left as is)

The next step is to configure the virtual network settings: select an existing one or create a new one.

   > **Note:** You might see an alert message asking you to create a subnet with the name `AzureBastionSubnet` to associate Bastion with a virtual network. Don’t skip this alert, and while creating a subnet, make sure that you’re keeping the same name as mentioned in the previous step.
     >
     >  Additionally, the alert might also specify that the subnet prefix should be at least /26. This means that when you’re configuring the subnet, you need to choose a prefix size of /26 or larger to meet the requirements.

5) Now that you’ve configured the “Virtual network” as well as the “Subnet” fields, the next step is to configure the public IP address. Click the “Create new” button, and give your public IP address a name. It’s important because it allows the VM to be accessible over the internet. These are all the configurations that are required. Next, click the “Review + create” button.

5) Once you see the message validation passed, click the “Create” button. It will start resource deployment, and you’ll receive a notification. Then, click the “Go to the resource” button.

Learn about an important security offering service: Azure Bastion.

Introduction to the Cloud Architect Program

Cloud Capabilities

Assessment 1: Cloud Concepts

Creating a Simple Web App with a Database and Storage Account

Virtual Machine Types

Automation

Assessment 2: Virtual Machines and Azure Automations

Cost Refining

Monitoring Efficiency

Assessment 3: Cost Refining and Monitoring Efficiency

Integrate Application Insights to the Azure Web App

Security Basics

Protection and Monitoring

Assessment 4: Protection and Monitoring

Conclusion

Azure Bastion

VPN