It’s the end of an era as I hang up my MVP award ..read more

Despite being old and slow in the past, coax is making a comeback as a networking option and it saved my home network from terrible speeds ..read more

How to create Entra ID groups inside an Administrative Unit with Infrastructure as Code and limited permissions ..read more

Network Security Perimeter is a new preview feature that helps you apply network security protections to your PaaS resources ..read more

Planned failover for Azure Storage is now in preview, but what is it and how does it differ from unplanned failover ..read more

AKS now supports applying FQDN based network polcies to restrict traffic, however it’s part of the Advanced Container Networking Services product, which comes at an additional cost ..read more

Allow rules in Azure WAF’s might not operate the way you think they do, and could mean you’re not processing all the rules you think you are ..read more

Back at Build, Microsoft announced a new feature for running Kubernetes in Azure: AKS Automatic. This feature aims to simplify and make using Kubernetes in Azure less overwhelming. Let’s look at this service and see how it works and whether it will be useful for you. What is AKS Automatic AKS Automatic is an extension to the existing AKS service. When you deploy an AKS cluster, you get a control plane instance and then several worker nodes to run your pods ..read more

Most VM-based workloads in Azure are either running 24/7 or are scaled up and down dynamically as load changes. However, there are a class of workloads that fall in between these two scenarios, where you are running machines for reasonable periods, but there are periods where they are not in use and you would like to be able to turn them off during that period, but retaining state is a problem. This could include workloads such as: Virtual Desktop machines where you don’t want to lose any work the user left open Development machines that may have complex workloads that take time to setup Syst ..read more

Ever since the release of ARM, and now Bicep, there has been a glaring omission from what we can create with this infrastructure as code languages - Entra ID (formally Azure AD) resources. There was an obvious reason for this, as Entra ID resources are created using the Graph API, which is a completely separate API from ARM. This has meant that we’ve had to resort to other methods for creating Entra ID resources as part of our deployments, things like deployment scripts or separate tasks in a pipeline. With the preview of the Azure Graph Extension for Bicep, we can now create some of these res ..read more