You have control over when to update the scale set instances when using the manual upgrade policy mode. When the scale set model changes, nothing happens automatically to the virtual machines that are already in place. The most recent model is used in new instances that are added to the scale set. Any modifications made…
Read More →Category: azure
Rolling upgrade policy mode The scale set updates in batches when using a rolling upgrade policy mode. With options like batch size, maximum healthy percentage, prioritizing unhealthy instances, and enabling upgrades across availability zones, you also have additional control over the upgrades. Production workloads that need a certain number of instances to be available at…
Read More →The upgrade policy mode you select can affect the overall service uptime of your Virtual Machine Scale Set. The available upgrade policy modes are automatic, manual, and rolling. The upgrade policy mode can be defined during the scale set formation process or adjusted after deployment. If you do not specifically specify the upgrade policy mode,…
Read More →In the past, App Service virtual network integration required one subnet for each App Service plan integration. In the case of many App Service plans, subnet management may be an unnecessary administrative burden. An address space of at least /26 (64 addresses) is required for a subnet used for multi plan subnet join (MPSJ). While all…
Read More →You can record the graphical sessions for connections made to virtual machines (RDP and SSH) via the bastion host if you have activated the Azure Bastion Session recording capability. Recorded sessions are saved in a blob container inside your storage account (via SAS URL) once the session has been ended or disconnected. You can access…
Read More →Control Plane Operations Control Plane in Azure Cosmos DB is a RESTful service that allows you to perform a variety of activities on your Azure Cosmos DB account. It exposes a public resource model (for example, a database or an account) and multiple operations to end users, allowing them to conduct actions on the model….
Read More →Azure Cosmos DB has numerous preview features for which you can request access. Here are the methods for requesting access to these preview features. Ref: Steps to register for a preview feature
Read More →Azure Cosmos DB automatically does a full backup of your data every 4 hours, and the most recent two backups are retained at all times. This is the default setting, and it comes at no additional cost. You can adjust the default backup interval and retention duration during or after creating an Azure Cosmos DB…
Read More →You can configure the default consistency level on your Azure Cosmos DB account at any time. The default consistency level configured on your account applies to all Azure Cosmos DB databases and containers under that account. Azure Cosmos DB offers five well-defined levels. From strongest to weakest, the levels are: The default consistency level is the consistency…
Read More →Configure multi-region writes in your applications that use Azure Cosmos DB In multiple region write scenarios, you can improve performance by writing just to the area closest to your application instance. Azure Cosmos DB handles the replication for you in the background. After you activate your account for multiple write regions, you must make two…
Read More →Start by creating a new Azure Cosmos DB for NoSQL account 4. Within the Basics pane, configure the following options, and then select Review + create: 5. Wait for the deployment to complete. After the deployment is completed, Go to resource to navigate to the new Azure Cosmos DB for NoSQL Azure Cosmos DB Dynamic scaling (per region and…
Read More →Azure Backup allows you to use your own encryption keys to secure backup data. This feature is available for Recovery Services Vaults and is enhanced for Backup Vaults. Customer Managed Keys (CMK) can be used to create a new backup vault or to adjust the encryption parameters of an existing vault. The encryption key that…
Read More →An AKS cluster’s egress can be tailored to meet certain needs. AKS will automatically supply a standard SKU load balancer for egress setup and use. However, if public IP addresses are blocked or extra hops are needed for egress, the default configuration might not be sufficient for every circumstance. Limitations Setting outboundType requires AKS clusters with a vm-set-type of VirtualMachineScaleSets and load-balancer-sku of Standard….
Read More →Solutions for installation errors with the AKS Backup Extension Scenario 1 Error message: Cause: The extension has been installed successfully, but the pods aren’t spawning. This happens because the required compute and memory aren’t available for the pods. Resolution: To resolve the issue, increase the number of nodes in the cluster. This allows sufficient compute and memory…
Read More →You may apply granular backup and retention settings with ease by using the Azure VM restoration point APIs. For virtual machines (VMs) running Linux or Windows, VM restoration points offer file system consistency and application consistency, respectively. The APIs allow you to establish restore points for your source virtual machine in different regions or in…
Read More →You may gather Syslog events from Linux nodes in your Azure Kubernetes Service (AKS) clusters using Container Insights. One feature of this is the ability to gather logs from components of the control plane, such as Kubelet. Prerequisites How to make Syslog active Using the Azure website– Locate your cluster by navigating. Select your cluster’s…
Read More →When a managed disk is at rest, Azure encrypts all of the data. Default encryption for data uses keys managed by Microsoft. You can provide customer-managed keys to encrypt data disks and the operating system of your AKS clusters while they are at rest, giving you greater control over encryption keys. The prerequisites are There…
Read More →There could be security risks with these images due to potential flaws. To remove security risks in your clusters, you can clean these unreferenced images. Manually cleaning images can be time intensive. Image Cleaner performs automatic image identification and removal, which mitigates the risk of stale images and reduces the time required to clean them…
Read More →The AKS releases are referred to as AKS initiated maintenance. These releases are your clusters’ weekly rounds of bug fixes, feature updates, and component upgrades. The kinds of routine maintenance that you carry out are cluster auto-upgrades and Node OS automatic security updates. Prior to starting Setting up a time for maintenance To create a maintenance window,…
Read More →You can now restore your Azure VMs to another subscription within the same tenant of the subscription where source VM is present, provided you have the relevant permissions to restore in that secondary subscription. By default, restore happens in the same subscription where the source virtual machine is present. This feature is only allowed if…
Read More →Using private endpoints, Azure Private Link enables you to securely connect Azure PaaS services to your virtual network. You only need to set up one endpoint per resource for several services. As a result, you may use Azure Arc to connect your on-premises or multi-cloud servers and send all traffic through a site-to-site VPN connection…
Read More →The geo-redundant High Availability scenarios that can be enabled using Azure Standard Load Balancing include: Your cross-region load balancer’s frontend IP setup is static and advertised in the majority of Azure regions. A list of participating regions There are limitations: A cross-region (global) load balancer can only be deployed to a home region. Make sure…
Read More →The cluster nodes are deployed into an Azure Virtual Network (VNet) subnet when using Azure CNI Overlay, but IP addresses for pods are obtained from a private CIDR that is logically separate from the VNet hosting the cluster nodes. The Overlay network is used for pod and node traffic inside the cluster, while Network Address…
Read More →You must establish a connection to the private AKS cluster either through the cluster virtual network, a peer network, or a configured private endpoint in order to access the cluster. Required prerequisites Run a single command with command invoke As an example: If you want to run a command on your cluster, run az aks…
Read More →For the #Azure Database for PostgreSQL Flexible server, data encryption with customer-managed passwords is configured at the server level. The data encryption key for the service is encrypted for a specific server using a customer-managed secret known as the key encryption key (KEK). (DEK). An encrypted key called the KEK is kept in a customer-owned…
Read More →