Simplify Azure Automation Dependencies with Runtime Environments
Samcogan.com
by
1w ago
Versioning of runtime and packages in Azure Automation has been a pain for a long time. All of your scripts in the same automation account will use the same version of PowerShell and have access to the same versions of any packages you install. If you update some package versions for one script, you risk breaking things for other scripts. If you want to use specific packages that can’t be used alongside other packages (such as AzureRM vs Az modules), then you can’t be sure you aren’t breaking other scripts that might rely on the other packages. Runtime Environments is a new preview feature tha ..read more
Visit website
WTH is Azure Copilot?
Samcogan.com
by
2w ago
Another day of the week, another Copilot has been released by Microsoft. This time, it’s the turn of Azure. Azure Copilot is an AI assistant designed to help you with your Azure subscriptions, but what can it do, and is it any good? Let’s take a look. What is Azure Copilot? Azure Copilot is an AI assistant that combines a Large Language Model (LLM) with the Azure resource model and the data in your subscription. Essentially, it’s an AI that knows about your Azure subscriptions, and so you can ask it questions about your Azure resources. Some areas where it can help include: Explore your resou ..read more
Visit website
WTH Are Azure Verified Modules?
Samcogan.com
by
3w ago
Towards the end of 2023, Microsoft announced a new initiative around infrastructure as code for Azure called Azure Verified Modules. (AVM). This is an exciting idea, so let’s explore it more. What Are Azure Verified Modules? Azure Verified Modules is a new initiative focused on infrastructure as code modules for deploying Azure resources. It’s the successor to the CARML project (which it will replace) and aims to provide a few things: A set of standards for what good Infrastructure as Code modules look like A module repository for modules that implement these standards, currently for Bicep an ..read more
Visit website
Unable to Delete Azure Backup Vault?
Samcogan.com
by
1M ago
This week, I encountered an annoying issue when deleting some resources, specifically Azure Backup Vaults (and recovery service vaults). I was deleting a resource group that contained several resources, including a backup vault. The delete started fine, and all the other resources got deleted, but the vault and the resource group did nothing for a long time before the deletion timed out with no further information. The issue is that when you attempt to delete a resource group, it attempts to delete all the resources inside it, including the backup vault. However, the backup vault will not let ..read more
Visit website
Secure your Azure AI resources before it's too late
Samcogan.com
by
1M ago
AI is everywhere at the minute, and everyone is trying to develop a way to implement AI in their products or workflows. Azure’s open AI services are a great way to do this, but because they’re so easy to deploy and use, you can end up with a proliferation of AI services. The default security settings for these resources are often set up for convenience and ease of use, rather than locking down your precious data and IP. Hence, it’s worth understanding how to secure these resources and make your environments more secure. With the proliferation and popularity of AI services, they will become pri ..read more
Visit website
Secure Your VNets with Private Subnets
Samcogan.com
by
3M ago
A couple of weeks ago we talked about how Microsoft is deprecating default internet access for VMs](https://samcogan.com/retiring-default-internet-access-for-vms/) in September 2025. This change is being done because it doesn’t meet Microsoft’s “secure by design” approach. However, you don’t need to wait till 2025 if you want to get ahead of the game and secure your outbound traffic due to the introduction of private subnets. By declaring your subnet as private you disable default outbound access and out of the box any VMs in that subnet will not have access to the internet. If you do want the ..read more
Visit website
Retiring Default Internet Access for VMs
Samcogan.com
by
4M ago
There’s a big change coming to Azure VM networking in September 2025. Yes, that’s a way off, but it will pay to plan for this now. VM networking in Azure has differed from AWS for a long time, in that Azure VMs are automatically able to make outbound connections to the internet, with no configuration required from the user. AWS on the other hand, takes the opposite approach. By default, AWS VMs have no internet access, and you have to explicitly configure it if you need it, through something like a NAT Gateway. This is all set to change. Microsoft have announced that on the 30th of September 2 ..read more
Visit website
WTH is Pulumi ESC?
Samcogan.com
by
4M ago
This week Pulumi announced a brand new product for their Pulumi Cloud platform - Pulumi ESC. In the latest of our WTH series let’s look at what this service is, how it works and why you might want to use it. What is Pulumi ESC? ESC stands for Environments, Secrets and Configuration and is Pulumi’s answer to managing configuration in your Infrastructure as Code and more. If you’ve used Pulumi before you’ll know that there is built-in functionality for creating configuration in YAML files in your project, but this is limited to a single configuration file per deployment, it doesn’t provide funct ..read more
Visit website
Passwordless Azure Deployments with Workload Identity In Azure DevOps
Samcogan.com
by
5M ago
If you are using Azure DevOps to deploy resources to Azure then you probably know the pain of using service principles for your service connection. Using a service principle involves storing the credentials for this in Azure DevOps. Assuming you’re following good security principles and having an expiry on the service principle secret you’re probably going to forget to renew it at least once, and your deployments will grind to a halt. Up until now, the only way to deal with this was to use a self-hosted building agent running on an Azure VM and attach a managed identity that you can use for au ..read more
Visit website
Backing up Unraid to Azure Storage with Rclone
Samcogan.com
by
6M ago
I run a small server at home for storing documents, photos, and media and running some applications that are used at home. This server is running [Unraid](Unraid | Unleash Your Hardware), which is a Linux Server operating system that allows you to get a level of disk resilience without the need for a full-blown RAID array and multiple redundant disks. It’s a great OS for a home server, and the way it provides resilience using a parity drive has saved me more than once when I had a hardware failure. This redundancy is great for local use, but if the whole machine were to blow up then I’d have l ..read more
Visit website

Follow Samcogan.com on FeedSpot

Continue with Google
Continue with Apple
OR