Understanding Azure Architecture and Management Flashcards
Describe what the cloud and an azure data center are.
The cloud consists of physical data centers that require cooling and electricity. They house thousands of physical servers and networking equipment.
How many azure data centers are there worldwide?
160
Describe ITPACS
IT pre assembled components are shipping containers that contain servers with their own electricity, ventilation and cooling. A data center is made up of many ITPACS.
How does Microsoft ensure data security in their data centers?
1) They don’t publish the physical address of a data center.
2) Physical security guards and biometric identification
3) Adhere to ISO 27001, HIPAA, FedRAMP, SOC 1 and SOC 2
4) Third-party audits to ensure that Azure is adhering to the standards
5) Data is stored three times in each data center
6) Azure has teams of security professionals who are dedicated. Odds are that Azure has more resources than any individual organization.
Describe how Microsoft addresses energy efficiency in their data centers.
1) Microsoft has been carbon neutral since 2012.
2) Will have 100% of renewable energy by 2025.
3) Use machine learning to control cooling within a data center
4) Underwater data center to address cooling issues
Describe an Azure Region
When you create an azure resource you get to decide the region when you create them; this indicates where the physical data will reside.
Why would you choose one Azure region over another?
1) Performance: If your users are in Canada, then you don’t want to host in Asia since there are performance implications with transferring data long distances.
2) Not all azure services are available in all regions (azure.microsoft.com/en-us/global-infrastructureservices/)
3) Not all azure sizes are available in all regions
4) There may be security reasons for having data stored in specific physical data (azure.microsoft.com/en-in/resources/achieving-compliant-data-residency-and-security-with-azure/)
Describe Azure Geographies
Contains one or more regions.
Describe Availability Zones
1) Unique physical locations within a single region. They are made up of one or more data centers within a region. There will be three separate zones/data centers.
2) You can deploy data or virtual machines across the availability zones/data centers.
Describe Region Pairs
1) Data centers that are usually 300 or more miles apart
2) Allows configuration of automatic replication and failover for some azure services
3) Azure will automatically make copies of your data across regions
Describe how Microsoft implements high availability in their data centers
1) When updates to a region are required. Azure makes sure that only one region in the pair is updated at one time.
2) If an outage affects multiple regions, one region within each pair will be prioritized for recovery.
Describe a resource
Manageable item in Azure. Includes things like virtual machines, databases, storage accounts.
Describe a resource group
1) Grouping of many resources
2) Resources share the same lifecycle - Deploy, update and delete a bunch of grouped resources together. If a resource needs to exist in a different deployment cycle then it should be in a different resource group.
3) Resources can only exist in one resource group
4) Resources can communicate across resource groups
5) Apply security controls to a resource group
6) Can exhort infrastructure-as-code using Resource Manager Templates
Describe how Azure Resource Manager works
Deployment and management services in Azure. Used for creating, deleting, etc. of resources. It performs authentication through Azure AD and forwards requests to the API for the specific resource.
You can issue commands to ARM using Azure Portal, Azure PowerShell, Azure CLI and Azure SDKs.
Describe an azure resource manager template.
1) JSON file that can be used to do infrastructure as code. The JSON file displays all of the resources that are part of the deployment.
2) You can download the resource manager template by exporting it within the Portal.
