Describe the core architectural components of Azure Flashcards
What is a requirement to use an azure service?
An account with an azure subscription.
What PowerShell command is used to determine the version of azure CLI is in use?
az version.
What PowerShell command is used to switch to BASH CLI?
bash
What powershell command initializes the CLI interactive mode in azure?
az interactive
What is an azure region?
Geographical area on the planet that contains at least one, but potentially multiple datacenters that are nearby and networked together.
What is an azure availability zone?
Physically separate datacenters within an Azure region.
How are availability zones isolated?
Each zone is made up of one or more datacenters equipped with independent power, cooling, and networking.
How does azure ensure resiliency within a region?
A minimum of three separate availability zones are present in all availability zone-enabled regions.
Do all azure regions support availability zones?
No.
What services/applications are able to leverage availability zones?
VMs, managed disks, load balancers, and SQL databases.
What are the 3 types of availability zone services?
- Zonal services
- Zone-redundant services
- Non-regional services
Define a ‘Zonal’ availability service
You pin the resource to a specific zone (for example, VMs, managed disks, IP addresses).
Define a ‘Zone-redundant’ availability service
The platform replicates automatically across zones (for example, zone-redundant storage, SQL Database).
Define a ‘Non-regional’ availability service
Services are always available from Azure geographies and are resilient to zone-wide outages as well as region-wide outages.
How does azure ensure resiliency between regions?
Region pairs; Most Azure regions are paired with another region within the same geography.
What is the purpose/function of a region pair?
Allows for the replication of resources across a geography that helps reduce the likelihood of interruptions that may affect a region.
Do all azure services automatically replicate or provide failover to a different zone/region?
No, in some cases the tenant must configure replication/redundancy.
How do region pairs help with maintenance of azure?
Planned Azure updates are rolled out to paired regions one region at a time to minimize downtime.
Define a ‘sovereign region’
Instances of Azure that are isolated from the main instance of Azure.
What are examples of a sovereign region?
US DoD Central, US Gov Virginia, US Gov Iowa, China East, China North, etc.
Define a ‘resource group’
Groupings of resources.
Can a resource be in multiple resource groups?
No, a single resource can only be in one resource group at a time.
Can resource groups be nested?
No, resource groups can’t be nested, meaning you can’t put resource group B inside of resource group A.
What is the purpose of a resource group?
To make it easier to perform an action to multiple resources that are similar.
What is the purpose of an azure subscription?
Provides authenticated and authorized access to Azure products and services to provision resources.
What are the two ways azure subscriptions can define boundaries around Azure products, services, and resources?
- Billing boundary
- Access control boundary
Define a ‘billing boundary’
Subscription type determines how an Azure account is billed for using Azure.
Define an ‘Access control boundary’
Azure applies access-management policies at the subscription level, and you can create separate subscriptions to reflect different organizational structures.
How can subscriptions be used to create separate environments?
Create subscriptions to set up separate environments for development and testing, security, or to isolate data for compliance reasons.
How can subscriptions be used to create role based access?
You can create subscriptions to reflect different organizational structures allowing different levels of access to certain resources.
What is the purpose of an azure management group?
To help organize subscriptions and apply governance conditions to subscriptions within a management group.
What is the outcome of a subscription being assigned to a management group?
All subscriptions within a management group automatically inherit the conditions applied to the management group.
What is the maximum amount of management groups that can be supported in a single directory?
10,000 management groups.
What is the maximum depth that a management group tree can support?
A management group tree can support up to six levels of depth. This limit doesn’t include the root level or the subscription level.
Can management groups and subscriptions have multiple parents?
Each management group and subscription can support only one parent.
