This blog post is co-authored by Joachim Hafner, Cloud Solution Architect
We’re pleased to offer a free e-book for those of you who are new to Azure or in the beginning stages of planning a cloud migration: the Azure Strategy and Implementation Guide for IT Organizations. As cloud solution architects, we hear a lot of the same questions from customers who are starting to think about their cloud implementation process. This motivated us to write this e-book, which provides guidance in the form of a blueprint which customers can follow to help form their cloud strategy.
Whether you are starting with Azure or doing more general research regarding how IT teams navigate cloud implementation, this guide offers a balance of broadly applicable advice and Azure specifics for you to consider. Here is an overview of what is covered:
Chapter 1: Governance – This chapter covers the starting points, from the aspirational “digital transformation” to the important tactical steps of administration and resource naming conventions. Get an overview of topics such as envisioning, to cloud readiness, administration, and security standards and policy. Chapter 2: Architecture – This section takes a longer look at security, touches on cloud design patterns, and
Start Your Visit at the Azure Booth
We invite you to come to the South Hall Lower Lobby of the Moscone Center and stop by our dedicated Azure booth to learn how you can create a gaming empire by building on the gaming cloud that has powered Xbox for years.
The Azure booth will have a wide range of activities for game developers:
Come talk to experts about Azure, PlayFab, Visual Studio, App Center, Mixer, Xbox Live, Mixed Reality and more. Visit four stations to claim a custom, free Xbox controller, and enter to win an Xbox One X daily. Play our mixed reality game Pinball Lizard and take home the sample source code – and get the high score of the day to win an Xbox One X. Play Darwin Project, a 10-player battle royale that offers audience interaction through Mixer, with a shoutcaster moderating and streaming the action live. Attend one of the many in-depth theater sessions or watch one-on-one interviews with product experts across a variety of topics, directly in the booth.
The entire Azure expo experience will show you what’s possible, while giving you the tools and code on how to build it.
Continue Your Learning
We are happy to announce that job monitoring and job view have been added into the Azure Data Lake Tools for Visual Studio Code. Now, you can perform real-time monitoring for the jobs you submit. You can also view job summary and job details for historical jobs as well as download any of the input or output data and resources files associated with the job.
Key Customer Benefits Monitor job progress in real-time within VSCode for both local and ADL jobs. Display job summary and data details for historical jobs. Resubmit previously run Enable jobs resubmission for an old job. Download job inputs, outputs and resource data files. View the job U-SQL script for a submitted job. Summary of key new features
Job View Page: Display job summary and job progress within VSCode.
Data Page: Display job input, output and resources files. Support file download.
Show Historical Jobs: Use command ADL: Show Jobs for both local and ADL historical jobs.
Set Default Context: Use command ADL: Set Default Context to set default context for current working folder.
How to install or update
This post series provides the latest updates and news for Visual Studio Team Services and is a great way for Azure users to keep up-to-date with new features being released every three weeks. Visual Studio Team Services offers the best DevOps tooling to create an efficient continuous integration and release pipeline to Azure. With the rapidly expanding list of features in Team Services, teams can start to leverage it more efficiently for all areas of their Azure workflow, for apps written in any language and deployed to any OS.
Azure Red Shirt Dev Tour: Our VSTS account
Scott Guthrie has been traveling the world on a tour he’s called the Azure Red Shirt Dev Tour. As part of that, he shows the account our team uses to build VSTS. That’s right – we use VSTS to plan, build, test, and release VSTS. See what VSTS looks like for a large team in Scott’s demo of VSTS using our account (mseng.visualstudio.com) – showing ongoing work on VSTS live on stage – from the New York City stop on the tour. If you want to go deep on how our team works, check out DevOps at Microsoft.
Azure database services for MySQL and PostgreSQL are fully managed, enterprise-ready services built using community version of MySQL and PostgreSQL database engines respectively. These services come with built-in high availability and ability to elastically scale compute and storage independently in seconds, helping you to easily adjust resources and respond faster to market and customer demands. Additionally, you benefit from unparalleled security and compliance, Azure IP advantage, as well as Azure’s industry leading global reach.
Since we announced these services in preview last year, users have been providing feedback helping drive product improvements and new features. As part of executing on customer feedback, I am really excited to announce the changes to the pricing model that will provide customers with more flexibility and help optimize costs.
Since the preview launch, we have been offering the Basic and Standard pricing tiers. We are continuing with the Basic tier, re-naming Standard to General Purpose and introducing a new premium tier called Memory Optimized to cater to workloads requiring faster in-memory performance. For more information about the General Purpose and Memory Optimized tiers, and when to use them, visit MySQL and PostgreSQL documentation.
Changing from “compute units” to vCores
Beginning today you
To provide more authentication options, HDInsight Tools for VSCode now can be connected to HDInsight cluster through Ambari for job submissions. You can easily link (HDInsight: Link a cluster) or unlink (HDInsight: Unlink a cluster) a normal cluster by using Ambari managed username and password, which is independent of your Azure signing process. The Ambari connection applies to Spark and Hive clusters in all the Azure environments which host HDInsight services.
To support HDInsight Enterprise Secure Package (in preview), you can also connect to the secured cluster through domain username (e.g. firstname.lastname@example.org). This connection is applicable for both traditional blob storage (WASB) or Azure Data Lake Storage (ADLS) as underlying storage. Once you connect to the secured HDInsight cluster, you can use the signed in domain credentials for all you job submissions.
This addition grants you more flexibilities to connect to your HDInsight clusters in addition to your Azure subscriptions and greatly simplify your experiences in submitting your Hive and Spark jobs.
How to link a cluster Open the command palette by selecting CTRL+SHIFT+P, and then enter HDInsight: Link a cluster.
Enter HDInsight cluster URL -> input Username -> input Password -> select cluster type – –>
Azure recently introduced an advanced, more efficient Load Balancer platform. This platform adds a whole new set of abilities for customer workloads using the new Standard Load Balancer. One of the key additions the new Load Balancer platform brings, is a simplified, more predictable and efficient outbound port allocation algorithm.
While already integrated with Standard Load Balancer, we are now bringing this advantage to the rest of Azure.
Load Balancer and Source NAT
Azure deployments use one or more of three scenarios for outbound connectivity, depending on the customer’s deployment model and the resources utilized and configured. Azure uses Source Network Address Translation (SNAT) to enable these scenarios. When multiple private IP addresses or roles share the same public IP (public IP address assign to Load Balancer or automatically assigned public IP address for standalone VMs), Azure uses port masquerading SNAT (PAT) to translate private IP addresses to public IP addresses using the ephemeral ports of the public IP address. PAT does not apply when Instance Level Public IP addresses (ILPIP) are assigned.
For the cases where multiple instances share a public IP address, each instance behind an Azure Load Balancer VIP is pre-allocated a fixed number of ephemeral ports
The Graphical Execution Plan feature within SQL Server Management Studio (SSMS) is now supported for SQL Data Warehouse (SQL DW)! With a click of a button, you can create a graphical representation of a distributed query plan for SQL DW.
Before this enhancement, query troubleshooting for SQL DW was often a tedious process, which required you to run the EXPLAIN command. SQL DW customers can now seamlessly and visually debug query plans to identify performance bottlenecks directly within the SSMS window. This experience extends the query troubleshooting experience by displaying costly data movement operations which are the most common reasons for slow distributed query plans. Below is a simple example of troubleshooting a distributed query plan with SQL DW leveraging the Graphical Execution Plan.
The view below displays the estimated execution plan for a query. As we can see, this is an incompatible join which occurs when there is a join between two tables distributed on different columns. An incompatible join will create a ShuffleMove operation, where temp tables will be created on every distribution to satisfy the join locally before streaming the results back to the user. The ShuffleMove has become a performance bottleneck for this query:
We are pleased to announce that Azure Active Directory (Azure AD) is integrated with Spring Security to secure your Java web applications. With only few lines of configurations, you can wire up enterprise grade authentication and authorization for your Spring Boot project.
With Spring Boot Starter for Azure AD, Java developers now can get started quickly to build the authentication workflow for a web application that uses Azure AD and OAuth 2.0 to secure its back end. It also enables developers to create a role based authorization workflow for a Web API secured by Azure AD with the power of the Spring Security.
Take the To-do App, which Erich Gamma showed on SpringOne 2017, as an example. The sample is composed of two layers: Angular JS client and Spring Boot RESTful web service. It illustrates the flow to login and retrieves user’s information using AAD Graph API.
Authorization Flow Chart
The authorization flow is composed of 3 phrases:
Login with credentials and get validated through Azure AD. Retrieve token and membership information from Azure AD Graph API. Evaluate the membership for role-based authorization.
Register a new application in Azure AD
To get started, first register a new
This blog post was authored by the Microsoft Build Team.
On May 7–9, brilliant developers and industry game-changers will meet at Microsoft Build in Seattle, Washington. Creators of all kinds will gather to spark ideas, get inspired, and build what’s next. Save the date to register tomorrow for your ringside seat.
Spend three days exploring AI, mixed reality, cloud, data, and quantum. Here’s a preview of what you can expect:
Celebrate your community of tech pioneers with a keynote address by Satya Nadella, CEO of Microsoft, and sessions led by leading developers behind solutions that are changing the world. Choose your own adventure with meetups, deep dives, and more. You can sample a bit of everything or focus on the area that most intrigues you. The schedule is yours to build. Get ready to code with demos and labs on emerging tech and push your edge toward mastery. There’s a wealth of learning opportunities that are just your flavor. Mingle with your tribe, bouncing ideas off product engineers, hanging out with new connections, or sharing strategies over one of Seattle’s famous brews.
Innovative software is transforming the world in remarkable ways—and you can be at the epicenter of it all