Category: azure

Configure cluster egress with outbound types in Azure Kubernetes Service
By: Date: 03/02/2024 Categories: azure Tags:

An AKS cluster’s egress can be tailored to meet certain needs. AKS will automatically supply a standard SKU load balancer for egress setup and use. However, if public IP addresses are blocked or extra hops are needed for egress, the default configuration might not be sufficient for every circumstance. Limitations Setting outboundType requires AKS clusters with a vm-set-type of VirtualMachineScaleSets and load-balancer-sku of Standard….

Read More →
Troubleshoot Backup and restore of the Kubernetes service in Azure
By: Date: 11/01/2024 Categories: azure Tags:

Solutions for installation errors with the AKS Backup Extension Scenario 1 Error message: Cause: The extension has been installed successfully, but the pods aren’t spawning. This happens because the required compute and memory aren’t available for the pods. Resolution: To resolve the issue, increase the number of nodes in the cluster. This allows sufficient compute and memory…

Read More →
VM restore points using APIs
By: Date: 20/12/2023 Categories: azure Tags:

You may apply granular backup and retention settings with ease by using the Azure VM restoration point APIs. For virtual machines (VMs) running Linux or Windows, VM restoration points offer file system consistency and application consistency, respectively. The APIs allow you to establish restore points for your source virtual machine in different regions or in…

Read More →
Container Insights for Syslog Collection
By: Date: 08/12/2023 Categories: azure Tags:

You may gather Syslog events from Linux nodes in your Azure Kubernetes Service (AKS) clusters using Container Insights. One feature of this is the ability to gather logs from components of the control plane, such as Kubelet. Prerequisites How to make Syslog active Using the Azure website– Locate your cluster by navigating. Select your cluster’s…

Read More →
AKS image cleaner vulnerable images are detected and removed
By: Date: 05/10/2023 Categories: azure Tags:

There could be security risks with these images due to potential flaws.  To remove security risks in your clusters, you can clean these unreferenced images. Manually cleaning images can be time intensive. Image Cleaner performs automatic image identification and removal, which mitigates the risk of stale images and reduces the time required to clean them…

Read More →
Auto-upgrade scheduled maintenance for AKS
By: Date: 15/09/2023 Categories: azure Tags:

The AKS releases are referred to as AKS initiated maintenance. These releases are your clusters’ weekly rounds of bug fixes, feature updates, and component upgrades. The kinds of routine maintenance that you carry out are cluster auto-upgrades and Node OS automatic security updates. Prior to starting Setting up a time for maintenance To create a maintenance window,…

Read More →
Load balancer for cross-regional (global) traffic
By: Date: 31/07/2023 Categories: azure Tags:

The geo-redundant High Availability scenarios that can be enabled using Azure Standard Load Balancing include: Your cross-region load balancer’s frontend IP setup is static and advertised in the majority of Azure regions. A list of participating regions There are limitations: A cross-region (global) load balancer can only be deployed to a home region. Make sure…

Read More →
Azure Database for PostgreSQL – Data Encryption with a Customer-managed Key
By: Date: 12/03/2023 Categories: azure Tags:

For the #Azure Database for PostgreSQL Flexible server, data encryption with customer-managed passwords is configured at the server level. The data encryption key for the service is encrypted for a specific server using a customer-managed secret known as the key encryption key (KEK). (DEK). An encrypted key called the KEK is kept in a customer-owned…

Read More →
How to configure RDP shortpaths for Azure Virtual Desktops
By: Date: 24/02/2023 Categories: azure Tags:

A supported Windows Remote Desktop client and session host can establish a direct UDP-based connection by using the RDP Shortpath functionality of Azure Virtual Desktop. To activate RDP Shortpath, you must first fulfill the requirements. For your situation, choose one of the tabs below. Prerequisites Public Networks scenario If networks and firewalls permit the traffic…

Read More →
Run your container apps anywhere with Azure Container Apps on Azure Arc enabled Kubernetes
By: Date: 15/12/2022 Categories: azure Tags:

Developers may quickly create and deploy microservices and containerized apps with Azure Container Apps. Without having to deal with Kubernetes’ complexity, developers can take advantage of the highly optimized developer productivity features of Azure Container Apps, while operators can offer developers a platform that is extremely productive while still maintaining ultimate control over the Kubernetes…

Read More →
In Azure Kubernetes Service (AKS), how can the default node pool size be changed without downtime?
By: Date: 22/11/2022 Categories: azure Tags:

If you want to resize an existing node pool, called nodepool01, from SKU size Standard_DS3_v2 to Standard_DS4_v2. To complete this task, you’ll need to create a new node pool using Standard_DS4_v2, move workloads from nodepool01 to the new node pool, and remove nodepool01. In this example, call this new node pool testnodepool. View Existing nodes in AKS: Create a new…

Read More →
In an Azure Kubernetes Service (AKS) cluster, use Confidential Virtual Machines (CVM)
By: Date: 26/10/2022 Categories: azure Tags:

You can add a node pool to your AKS cluster with CVM using the generally available confidential VM sizes (DCav5/ECav5). Confidential VMs with AMD SEV-SNP support introduces a new set of security features, including full VM memory encryption, to protect data in use. These features enable CVM-enabled node pools to migrate highly sensitive container workloads…

Read More →
Deploy a Service Fabric 3-node cluster
By: Date: 20/10/2022 Categories: azure Tags:

#Azure Service Fabric is a distributed systems platform that makes scalable and reliable microservices and containers easy to package, deploy, and manage. A Service Fabric cluster is a network-connected collection of virtual machines where you can deploy and manage your microservices. We will explain and Required pre-requisites Create client certificate using Azure Key Vault Create…

Read More →
Deploy a Service Fabric 3-node cluster
By: Date: 20/10/2022 Categories: azure Tags:

Azure Service Fabric is a distributed systems platform that makes scalable and reliable microservices and containers easy to package, deploy, and manage. A Service Fabric cluster is a network-connected collection of virtual machines where you can deploy and manage your microservices. We will explain and Required pre-requisites Create client certificate using Azure Key Vault Create…

Read More →
Use Service Connector to connect a container app to a cloud service
By: Date: 11/10/2022 Categories: azure Tags:

Azure Container Apps enables you to connect to cloud services in just a few steps by using Service Connector. Service Connector manages network configuration and connection information between different services. The requirements before creating Service Connector Container Apps that are deployed to a region that is supported by a service connector, Service Connector region supported…

Read More →
How to Enable soft delete policy in Azure Container Registry
By: Date: 29/09/2022 Categories: azure Tags:

Soft delete policies are available in Azure Container Registry (ACR) to recover accidentally deleted artifacts. The feature is available to all service tiers (SKUs) The Soft delete policy can be enable/disable at your discretion. When you enable the soft delete policy, ACR treats deleted artifacts as soft deleted artifacts with a specified retention period. As…

Read More →
Install Kusto Query Engine in Docker container
By: Date: 17/09/2022 Categories: azure Tags:

Azure Data Explorer offering: the Kusto Emulator is a local environment Docker Container that encapsulating the Kusto Query Engine, it doesn’t require provisioning Azure services or incurring any cost. Prerequisites The host operating system must be either: Windows Server 2022 Windows Server 2019 Version 10.0.17763.2928 or newer Windows 11 2 gigabytes (GB) of RAM minimum;…

Read More →
Manage secrets in Azure Container Apps
By: Date: 13/09/2022 Categories: azure Tags:

Container Apps offer integrated secret management that you can use to store your secrets. You can use the secrets for storing connection strings for KEDA-based scale triggers or pass them as environment variables to the containers you deploy. Never store the secret value in the repository. Store the secrets as GitHub secrets, HashiCorp Vault, or Azure Key…

Read More →
Configuring Microsoft Dev Box
By: Date: 27/08/2022 Categories: azure Tags:

Microsoft Dev Box supports any developer IDE, SDK, or tool that runs on Windows. Developers can target any development workload that can be built from Windows including desktop, mobile, IoT, and web applications. Microsoft Dev Box even supports building cross-platform apps thanks to Windows Subsystem for Linux and Windows Subsystem for Android. Remote access gives…

Read More →
Custom domain names and certificates in Azure Container Apps
By: Date: 17/08/2022 Categories: azure Tags:

Azure Container Apps allows you to bind one or more custom domains. Every domain name must be associated with a domain certificate. Certificates are applied to the container app environment and are bound to individual container apps. You must have role-based access to the environment to add certificates. SNI domain certificates are required. Ingress must be…

Read More →