Author : All posts by ilikesql

17

Apr

Transparent Data Encryption with customer managed keys in Azure SQL Database generally available

Today, we are excited to announce the general availability of Transparent Data Encryption (TDE) with Bring Your Own Key (BYOK) support for Azure SQL Database and Azure SQL Data Warehouse. This is one of the most frequently requested features by enterprise customers looking to protect sensitive data and meet regulatory or compliance obligations that require implementation of specific key management controls. TDE with BYOK support is offered in addition to TDE with service managed keys, which is enabled by default on all new Azure SQL Databases.

TDE with BYOK support uses Azure Key Vault, which provides highly available and scalable secure storage for RSA cryptographic keys backed by FIPS 140-2 Level 2 validated Hardware Security Modules (HSMs). Key Vault streamlines the key management process and enables customers to maintain full control of encryption keys and allows them to manage and audit key access.

Customers can generate and import their RSA key to Azure Key Vault and use it with Azure SQL Database and Azure SQL Data Warehouse TDE with BYOK support. Azure SQL Database handles the encryption and decryption of data stored in databases, log files, and backups in a fully transparent fashion by using a symmetric Database Encryption Key

Share

17

Apr

Preview: programmatically create Azure enterprise subscriptions using ARM APIs

In the past, Azure customers on Enterprise Agreement (EA) have subscriptions that are centrally controlled by the company’s cloud operations or IT team. When a team or employee in the company wants to start using Azure, they need to get access to the EA enrollment so that it gets billed to the company EA. To do that, the employee or team makes a request to the central cloud operations team, go through approval, and have an Azure subscription provisioned as prescribed by the company’s cloud governance policies. During this process, an EA subscription must be manually created using the Azure Account Center. As these company’s Azure adoption increases, the manual step in creating subscriptions becomes a bottleneck in scalability in their cloud management.

To unblock these customers, we’ve created an API and a suite of SDK for Azure EA subscription creation.

Get started with Azure EA subscription creation API

To get started, see documentation at Programmatically create Azure enterprise subscriptions (preview) and our sample code. In this release, you can

Create an Azure EA subscription (regular or dev/test) as an Account Owner. Use Azure RBAC to give another user or service principal to create subscriptions on behalf of an Account

Share

17

Apr

Azure Marketplace new offers in March 2018
Azure Marketplace new offers in March 2018

We continue to expand the Azure Marketplace ecosystem. In March 2018, 55 new offers successfully met the onboarding criteria and went live. See details of the new offers below:

Kentico on Windows Server 2012 R2: Kentico CMS is a free edition web content management system for building websites, online stores, intranets, and community sites. Create, manage, and integrate communities socially to encourage conversations about your brand.

OpenText Process Suite 16.3 Marketplace Info VM: With intelligently automated, content-rich processes that you can quickly build and easily modify, Process Suite gives you the power to deliver a variety of new digital experiences with a much lower IT workload.

Content Suite 16 (January 2018): OpenText Content Suite Platform is a comprehensive enterprise content management (ECM) system designed to manage the flow of information from capture through archiving and disposition.

BigDL Spark Deep Learning Framework VirtualMachine: Deep Learning framework for distributed computing designed for Apache Spark architecture and highly optimized for Intel Xeon CPUs. Feature-parity with TensorFlow, Caffe, etc., without the need for GPUs.

Gallery Server on Windows Server 2012 R2: Gallery Server is a free, open source, easy-to-use Digital

Share

17

Apr

Microsoft at PostgresConf US 2018
Microsoft at PostgresConf US 2018

At Microsoft, our approach is to listen to customers and bring solutions and tools that can help solve their problems. It is at the heart of everything we do. It is the same listening process that got us to PostgreSQL, and a couple of years back we embarked on the journey to bring PostgreSQL as a fully managed database service on Azure. We reached a key milestone towards that journey when we recently announced the general availability of Azure Database for PostgreSQL.

Attending community and customer events is always special for me – it’s an opportunity to engage with and learn from some of the leading minds in the industry. PostgresConf US 2018 is even more special given how much support we have received from the Postgres community and I look forward to meeting community leaders, customers, and partners at the event. I’ll also be joined by a few of my colleagues, and while you can find us at the Microsoft booth, you can also attend product deep dive session by Sunil Kamath and a GDPR session by Mark Bolz.

During my keynote at the conference, I’ll share some of our learnings leading to the general availability of Azure Database

Share

17

Apr

Recovery Services vault limit increased to 500 vaults per subscription per region

Today, we are delighted to announce increased scale limits for Azure Backup. Users can now create as many as 500 recovery services vaults in each subscription per region as compared to the earlier limit of 25 vaults per region per subscription. Customers who have been hitting the vault limits due to a restriction of 25 vaults can now go ahead and create vaults to manage their resources better. In addition, the number of Azure virtual machines that can be registered against each vault has been increased to 1,000 from the earlier limit of 200 machines under each vault.

Key benefits Better management of resources between departments in an organization: Flexibility to create a large number of vaults under a subscription and large number of containers under a vault based on the departmental requirements without worrying about hitting vault limits. Better granularity in reporting and monitoring of data within vaults: Users can create separate vaults as per their requirements segregated based on organizational needs and get more granular reporting of backup usage on a per vault basis. Systematic and comprehensive billing: Users can get vault level detailed billing for a subscription for better financial management within an organization. Related links and

Share

17

Apr

The 3 ways Azure improves your security
The 3 ways Azure improves your security

Today we’re at RSA, and we are delighted to sponsor and participate in this industry event centered in security. I thought I’d take the opportunity to share our perspective on cloud security with Azure.

As we all know, companies worldwide are challenged by the ongoing volume of evolving security threats and with retaining qualified security talent to respond to these threats. In fact, the average large organization gets 17,000 security alerts each week, which results in an of average 99 days to discover security breaches. That contrasts with the less than 48 hours it takes for security breaches to grow from one system compromised into significantly broader issues.

As you look for solutions to address these challenges, Azure can help strengthen your security posture, while reducing cost and complexity. Thousands of companies and governments from all over the world including TD Bank, First Tech Credit Union, Geico, 3M, Rolls-Royce, state of Hawaii, city of Musson, and Heineken have chosen Azure as their trusted cloud. Azure provides value in three key areas – a secure foundation that is provided by Microsoft, built-in security controls to help you quickly configure security across the full-stack, and unique intelligence at cloud scale to help

Share

17

Apr

Announcing new Azure Security Center capabilities at RSA 2018

Migrating your workloads to the cloud can enable some inherent security benefits. With cloud scale machine learning and security analytics, you can mitigate threats quickly, making your environment more secure and your organization more productive.

Azure Security Center provides centralized visibility of the security state of your resources and uses the collective intelligence from machine learning and advanced analytics to not only detect threats quickly but to help you prevent them. It’s agent-based approach helps gain deeper security insights from the workloads and extends these protections to workloads running on-premises as well as other clouds, providing a unified security management for you.

Today we are excited to announce several capabilities in Azure Security Center that will provide enhanced protection to help you keep pace with the evolving cybersecurity landscape:

Visibility and governance at the organizational level

Take advantage of a new overview dashboard to gain visibility into your security state from an organizational level instead of a subscription level. To help organizations identify and address the challenges of managing an organization-wide security posture, you can now set security policies for management groups in your organization. You can also monitor it with an organization-wide compliance score as well as a breakdown

Share

16

Apr

USAFacts breaks down government financial data with Power BI

https://powerbi.microsoft.com/en-us/blog/usafacts-breaks-down-government-financial-data-with-power-bi/Source: https://powerbi.microsoft.com/en-us/blog/usafacts-breaks-down-government-financial-data-with-power-bi/           On tax day this year USAFacts is relying on Power BI to publish a 10-k report to provide a comprehensive view of the combined US federal, state and local governments’ revenues and expenditures. READ MORE

Share

16

Apr

4/19 Webinar: Understanding PowerApps Model Driven App Templates

https://powerbi.microsoft.com/en-us/blog/4-19-webinar-understanding-powerapps-model-driven-app-templates/Source: https://powerbi.microsoft.com/en-us/blog/4-19-webinar-understanding-powerapps-model-driven-app-templates/           An exciting PowerApps Webinar this week covering an important part of the Common Data Service for Applications: Understanding PowerApps Model Driven App Templates

Share

16

Apr

Streamlining GDPR requests with the Azure Portal

Today we’re letting our customers know about our upcoming Data Subject Request (DSR) processing capability in the Azure portal, which will provide tenant admins a simple, powerful tool to quickly fulfill the Data Subject Requests that are central to compliance with the European Union General Data Protection Regulation (GDPR). We will fully support these DSR capabilities before May 25, 2018, the date when enforcement of the GDPR begins and when Microsoft has committed to be GDPR compliant across our cloud services. 

The GDPR is the most significant change to EU privacy law in two decades and sets a new global standard for privacy rights, governing the handling and use of personal data. A fundamental tenet of the GDPR is the set of rights it grants individuals, or data subjects, in connection with their personal data collected by an organization (known as the data controller).

If your organization collects, hosts, or analyzes the personal data of EU residents, GDPR provisions require you to use data processors that guarantee their ability to implement the technical and organizational requirements of the GDPR. The GDPR also requires you to respond to requests from individuals, or data subjects, to receive a copy of their personal

Share