Tag: azure iaas

Involve security consulting partner for vulnerability assessment on Azure

Microsoft excels at building a solid partnership with service companies around the world. You may not know that on Microsoft Azure, you can involve a security consulting partner to help you perform server vulnerability assessment. Moreover, through Azure Security Center, you receive a recommendation in which you are given the opportunity to allow Qualys to support you.


DMZ Implementation on Microsoft Azure

When it comes to network defense, demilitarized zone (DMZ) is thought of first. What is so-called demilitarized zone? Is it a very sensitive military zone you should not step into?

In the field of security, DMZ is a separate zone which is not associated to a private or trusted network. It simply stands alone to isolate from your private network to untrusted network. It is difficult to measure the level of trust. Untrusted network is the one which you have very low trust.


Why is SharePoint on Azure IaaS still a good consideration?

SharePoint has been a “virtual” companion of my journey since 2008. I do not know how passionate I’m with SharePoint, but when people negatively state that SharePoint is dead I often raise objection against that statement. If you are working with SharePoint, following updates from Microsoft and the community, you probably know that Microsoft still invest on its collaboration platform. However, the investment budget is allocated towards SharePoint Online to strengthen Microsoft Cloud ecosystem. It does not mean the on-premises version is not Microsoft priority. There are massive number of SharePoint on-premises out there in the market. On-premises deployment still has a room in my opinion. The last version of Microsoft SharePoint for on-premises is SharePoint Server 2016, offering several significant improvements upon customer’s voice and demand Microsoft has received since 2013.


I will be speaking at Singapore Global Azure Bootcamp 2017

Last year I participated in Singapore Global Azure Bootcamp 2016 as a speaker, talking about planning and deploying SharePoint 2013 on Microsoft Azure. This year should not be a difference from my speaking engagement perspective, as I will also be speaking at the Singapore Global Azure Bootcamp 2017 in Microsoft Singapore. This year is not going to be SharePoint deployment on Microsoft Azure as last time, but the topic is much more interesting I believe so. I will be talking about security principles to designing a secure Azure IaaS  in which I will apply Government Cloud model. I’ve been still supporting my companies in public sector, primarily architecting and contributing to troubleshooting large SharePoint farms.


SharePoint in Azure IaaS

I was really delighted to be a speaker at the Global Azure Bootcamp Singapore 2016 held a couple of weeks ago. In this event, I talked about planning and deploying SharePoint farm in Microsoft Azure with the primary focus on Microsoft Azure IaaS v2.

If you are a seasoned SharePoint architect having done many SharePoint farm deployments, you have probably been facing with number of different challenges. One of them is planning for hardware. You would have to not only plan for hardware specification but may also for manufacturing company e.g. Cisco device network, Hitachi storage or so on. Starting from the scratch is always challenging and time-consuming. As Microsoft Azure IaaS comes out, you have so many options to build and deploy your SharePoint farm. In the event, I brought to attendees 5 common deployment scenarios.

  • Development and test/POC environment
  • Disaster Recovery of on-premises SharePoint farm
  • Internet-facing website built on top of SharePoint
  • App farm (such as Azure Media Services) to support on-premises environment or Office 365
  • SharePoint Intranet hosted in Azure

Start with planning SharePoint farm in Azure, I shared common key areas:

  • Farm Topology
  • Identity Management
  • Business Continuity
  • Performance & Capacity
  • Pricing

In each area, there are number of tasks to do. For example, with farm topology you need to come up with your designated topology, ask yourself the physical architecture you are going to build, do sizing to make sure the farm is not going to frustrate your end user in terms of performance. Once you have the design, look at Azure IaaS offering and map to your design. In my topic I did not introduce classic deployment model and some components such as Cloud Service and Affinity Group which have been deprecated. The new Azure IaaS v2 with the release of Azure Resource Manager helps pretty much.

You can find my slide-deck here http://www.slideshare.net/thuansoldier/planning-and-deployingsharepointfarminazuregabsg2016

All videos and slide-decks shall be published soon in Microsoft Channel 9

© 2018 The Soldier of Fortune.