Course Overview
After completing this course, students will be able to:
- Managing Azure resources
- Configuring and deploying virtual machines and networks
- Mastering Azure AD, and securing data
- How to identify data storage options, integrate SaaS service on Azure, author deployments, and more.
Who Should Attend?
Azure Solution Architects who advise stakeholders and translate business requirements into secure, scalable, and reliable solutions.
Pre-requisite
- Candidates should have advanced experience and knowledge of IT operations, including networking, virtualization, identity, security, business continuity, disaster recovery, data platform, budgeting, and governance. This role requires managing how decisions in each area affects an overall solution.
- Candidates must have expert-level skills in Azure administration and have experience with Azure development processes and DevOps processes.
Course Outlines
- Design for cost optimization
- Recommend a solution for cost management and cost reporting
- Recommend solutions to minimize costs
- Design a solution for logging and monitoring
- Determine levels and storage locations for logs
- Plan for integration with monitoring tools including Azure Monitor and Azure Sentinel
- Recommend appropriate monitoring tool(s) for a solution
- Choose a mechanism for event routing and escalation
- recommend a logging solution for compliance requirements
- Design authentication
- recommend a solution for single-sign on
- recommend a solution for authentication
- recommend a solution for Conditional Access, including multi-factor authentication
- recommend a solution for network access authentication
- recommend a solution for a hybrid identity including Azure AD Connect and Azure AD Connect Health
- recommend a solution for user self-service
- recommend and implement a solution for B2B integration
- NOT: federation with ADFS
- Design authorization
- choose an authorization approach
- recommend a hierarchical structure that includes management groups, subscriptions and resource groups
- recommend an access management solution including RBAC policies, access reviews, role assignments, physical access, Privileged Identity Management (PIM), Azure AD Identity Protection, Just In Time (JIT) access Design governance
- recommend a strategy for tagging
- recommend a solution for using Azure Policy
- recommend a solution for using Azure Blueprint
- Design security for applications
- recommend a solution that includes KeyVault
- What can be stored in KeyVault
- KeyVault operations
- KeyVault regions
- recommend a solution that includes Azure AD Managed Identities
- recommend a solution for integrating applications into Azure AD
- recommend a solution that includes KeyVault
- Design a solution for databases
- select an appropriate data platform based on requirements
- recommend database service tier sizing
- recommend a solution for database scalability
- recommend a solution for encrypting data at rest, data in transmission, and data in use
- Design data integration
- recommend a data flow to meet business requirements
- recommend a solution for data integration, including Azure Data Factory, Azure Data Bricks, Azure Data Lake, Azure Synapse Analytics
- Select an appropriate storage account
- choose between storage tiers
- recommend a storage access solution
- recommend storage management tools
- Design a solution for backup and recovery
- recommend a recovery solution for Azure hybrid and on-premises workloads that meets recovery objectives (RTO, RLO, RPO)
- design and Azure Site Recovery solution
- recommend a site recovery replication policy
- recommend a solution for site recovery capacity
- recommend a solution for site failover and failback (planned/unplanned)
- recommend a solution for the site recovery network
- recommend a solution for recovery in different regions
- recommend a solution for Azure Backup management
- design a solution for data archiving and retention
- recommend storage types and methodology for data archiving
- identify business compliance requirements for data archiving
- identify requirements for data archiving
- identify SLA(s) for data archiving
- recommend a data retention policy
- Design for high availability
- recommend a solution for application and workload redundancy, including compute, database, and storage
- recommend a solution for autoscaling
- identify resources that require high availability
- identify storage types for high availability
- recommend a solution for geo-redundancy of workloads
- Design a compute solution
- recommend a solution for compute provisioning
- determine appropriate compute technologies, including virtual machines, App Services, Service Fabric, Azure Functions, Windows Virtual Desktop, and containers
- recommend a solution for containers
- AKS versus ACI and the configuration of each one
- recommend a solution for automating compute management
- recommend a solution for compute provisioning
- Design a network solution
- recommend a solution for network addressing and name resolution
- recommend a solution for network provisioning
- recommend a solution for network security
- private endpoints
- firewalls
- gateways
- recommend a solution for network connectivity to the Internet, on-premises networks, and other Azure virtual networks
- recommend a solution for automating network management
- recommend a solution for load balancing and traffic routing
- Design an application architecture
- recommend a microservices architecture including Event Grid, Event Hubs, Service Bus, Storage Queues, Logic Apps, Azure Functions, and webhooks
- recommend an orchestration solution for deployment of applications including ARM templates, Logic Apps, or Azure Functions
- select an automation method
- choose which resources or lifecycle steps will be automated
- design integration with other sources such as an ITSM solution
- recommend a solution for monitoring automation
- recommend a solution for API integration
- design an API gateway strategy
- determine policies for internal and external consumption of APIs
- recommend a hosting structure for API management
- recommend when and how to use API Keys
- Design migrations
- assess and interpret on-premises servers, data, and applications for migration
- recommend a solution for migrating applications and VMs
- recommend a solution for migration of databases
- determine migration scope, including redundant, related, trivial, and outdated data
- Develop an App Service Logic App
- Create a Logic App
- Create a custom connector for Logic Apps
- Create a custom template for Logic Apps
- Implement API management
- Create an APIM instance
- Configure authentication for APIs
- Define policies for APIs
- Develop event-based solutions
- Note: Creating event models is in scope
- Implement solutions that use Azure Event Grid
- Implement solutions that use Azure Notification Hubs
- Implement solutions that use Azure Event Hub
- Develop message-based solutions
- Implement solutions that use Azure Service Bus
- Implement solutions that use Azure Queue Storage queues