Azure Linked Subscription Level Template Deployment Requires Location

Subscription Level Template deployments is relatively new feature. Support for Azure CLI was added in version 2.0.40 and for AzureRM PowerShell module is yet to come. Basically instead of deploying resources at resource group you are doing that at subscription level. This opens a lot of possibilities some of which are:

Continue reading “Azure Linked Subscription Level Template Deployment Requires Location” →

Defining Input Parameters For Policy Definitions in ARM Template

My good friend and fellow MVP Tao Yang wrote a great post on Using ARM Templates to Deploying Azure Policy Definitions That Requires Input Parameters. Azure Policy has two terms that you should be aware:

Policy Definition – This is the policy itself. This is the definition of what will be governed. The policy definition when created does not do anything until it is assigned. There are policy definitions available out of the box (created by Microsoft) and such that can be created on your own. Out of box policies are of type built-in and the ones created by you are custom.
Policy Assignment – This assigns policy definition to be applied at specific level like subscription, management group or resource group.

Continue reading “Defining Input Parameters For Policy Definitions in ARM Template” →

Mitigate speculative execution side-channel vulnerabilities

Seems the new year bring us some bad surprises in terms of security. There has been some rumors and now turned out to be truth that certain processors are vulnerable to certain attacks. Yes processors. That means that affects a wide variety of Operating Systems. As Microsoft puts it:

Microsoft is aware of a new publicly disclosed class of vulnerabilities referred to as “speculative execution side-channel attacks” that affect many modern processors and operating systems including Intel, AMD, and ARM. Note: this issue will affect other systems such as Android, Chrome, iOS, MacOS, so we advise customers to seek out guidance from those vendors.

Source: ADV180002 | Guidance to mitigate speculative execution side-channel vulnerabilities

Continue reading “Mitigate speculative execution side-channel vulnerabilities” →

ARM Templates for Service Map Dependency Agent Deployment

Yesterday Dave announced that there is a new Azure VM extension that deploys the Service Map Dependency Agent. The example provided was only for PowerShell so it was natural that we need ARM template as well. Continue reading “ARM Templates for Service Map Dependency Agent Deployment” →

Moving OMS Workspace between Resource Groups

This will be a short one. Azure Resource Manager is a powerful beast and Operations Management Suite is gaining more of its functionality every day. And by that statement I do not mean OMS features specific to Azure. I mean the API, management and orchestration stuff of Azure Resource Manager. Continue reading “Moving OMS Workspace between Resource Groups” →

Spread the word:

Like this:

Spread the word:

Like this:

Spread the word:

Like this:

Spread the word:

Like this:

Spread the word:

Like this: