Official training Azure Learn Azure fundamentals

You will get necessary knowledge to take the AZ900 Microsoft Azure Fundamentals Exam.

List of labs

• Virtual Machines https://docs.microsoft.com/en-us/learn/modules/intro-to-azure-virtual-machines/
• WebApp https://docs.microsoft.com/en-us/learn/modules/host-a-web-app-with-azure-app-service/
• Containers https://docs.microsoft.com/en-us/learn/paths/administer-containers-in-azure/
• Serverless https://docs.microsoft.com/en-us/learn/paths/create-serverless-applications/

Check Azure Portal setting

• change language
• portal menu to Docked

Check Azure Cloud Shell icon

• run command az
• upload file

Customize Azure Dashboard

• pin resource group
• pin graph/query from Azure Monitor
• share dashboard

This Windows jump server will be our workstation for next steps in this lab.

Deploy new Windows Server 2019 as workstation

• use Azure portal - create new server with public IP address
• use following script

az group create -n rg-co-vmjump -l westeurope
az vm create -n covmjump -g rg-co-vmjump --image win2019datacenter --admin-username azureuser

Install Edge browser, Azure CLI, VS Code, MySql Workbench, WinScp into your Azure workstation

Invoke-WebRequest "https://c2rsetup.officeapps.live.com/c2r/downloadEdge.aspx?ProductreleaseID=Edge&platform=Default&version=Edge&source=EdgeStablePage&Channel=Stable&language=en" -OutFile MicrosoftEdgeSetup.exe
.\MicrosoftEdgeSetup.exe /install
Invoke-WebRequest "https://aka.ms/installazurecliwindows" -OutFile .\AzureCLI.msi; Start-Process msiexec.exe -Wait -ArgumentList '/I AzureCLI.msi /quiet'; rm .\AzureCLI.msi
Invoke-WebRequest "https://go.microsoft.com/fwlink/?Linkid=852157" -OutFile VSCodeSetup-x64.exe
.\VSCodeSetup-x64.exe /silent
Invoke-WebRequest "https://aka.ms/vs/16/release/vc_redist.x64.exe" -OutFile vc_redist.x64.exe
.\vc_redist.x64.exe
Invoke-WebRequest "https://dev.mysql.com/get/Downloads/MySQLGUITools/mysql-workbench-community-8.0.20-winx64.msi" -OutFile mysql-workbench.msi
.\mysql-workbench.msi
Invoke-WebRequest "https://winscp.net/download/files/202005191145724e9754bdf14d2e1264cb6a18808598/WinSCP-5.17.5-Setup.exe" -OutFile WinSCP-Setup.exe
.\WinSCP-Setup.exe
Invoke-WebRequest "https://github.com/jjindrich/jjazure-training-az900/archive/master.zip" -OutFile app.zip

Reopen Windows Powershell to apply new PATH settings.

Advanced scenarios

• provision Azure Bastion server to access Windows server with HTTPS

Web application Movie App List

• dotNet ASP.Net Core 2.2 webapp with mySql database
• Source code - movie-app-list
• configuration - appsettings.json
• compiled binaries - movie-app-list

This section deploys web application part to Azure Virtual Machine. You can use scripts to speed up deployment.

Prepare networking with Azure Portal

• create new resource group for networking rg-co-network
• create new virtual network vnet-comain 10.10.0.0/16 with subnets snet-comain-web 10.10.1.0/24 and snet-comain-db 10.10.2.0/24
• peer network vnet-comain with your jump server network

or use ARM script (peering is not scripted)

cd src/az-networking
az group create -n rg-co-network -l westeurope
az deployment group create -n Network -g rg-co-network --template-file deploy.json --parameters deploy.params.json

Deploy web application with Azure Portal

• create new Windows 2019 virtual machine cowmwebwin in resource group rg-co-vmwebwin without publicIP and no public ports network vnet-comain
• create new Ubuntu 18.04 virtual machine cowmweblx in resource group rg-co-vmweblx without publicIP and no public ports network vnet-comain
• install application on Windows - https://docs.microsoft.com/en-us/aspnet/core/host-and-deploy/iis
  1. install IIS and ASP.NET Core Runtime Windows Hosting Bundle Installer version 2.2
  2. create new IIS site and Application Pool (No Managed Code)
  3. copy application from bin/movie-app-list to IIS site folder
• install application on Linux (Ubuntu) - https://docs.microsoft.com/en-us/aspnet/core/host-and-deploy/linux-nginx
  1. install ASP.NET Core Runtime
  2. copy application from bin/movie-app-list to /app
  3. configure service for app
  4. configure Nginx

You can use following installation scripts for Windows install.ps1 and Linux Ubuntu install.sh.

Check website is running http://<your_win_or_lx> from your workstation. It's getting error because missing database.

Enable monitoring

• create new Azure Log Analytics workspace
• open Virtual Machine resource and enable Insights under Monitoring section

Create new Azure Database for MySQL and connect app

• name comysql in resource group rg-co-sql
• enable firewall - Allow access to Azure services
• deploy database create script using MySql Workbench - create database and table
• change connection string on web server - change appsettings.json MovieContext to your ADO.Net connection string

Check website is running http://<your_win_or_lx> from your workstation. You can create new record.

Hint: Enable Development mode for troubleshootings - set Environment variable

Advanced scenarios

• allow private communication with database - Private Endpoint to get private Ip

There are different options how to publish web to internet

• Azure LoadBalancer - L4 load balancer
• Azure Application Gateway - L7 HTTP/HTTPS loadbalancer
• Azure FrontDoor - global HTTP/HTTPS loadbalancer

Check website is running http://<your_lb_> from internet.

Hint: Remember to update NSG rule to allow HTTP traffic from Internet

Advanced scenarios

• create DNS zone - use Azure DNS to get public zone
• integrate with Virtual Network to access database privately

Create new Azure Web App and configure application deployment

• name cowebapp in resource group rg-co-webapp with Code .Net Core 3.1 LTS on Windows
• open FTPS connection - open Deployment Center and select FTP
• copy application from bin/movie-app-list to FTP folder /site/wwwroot
• change connection string on webapp - change appsettings.json MovieContext to your ADO.Net connection string

Check website is running https://cowebapp.azurewebsites.net/ from internet.

Advanced scenarios

• configure autoscaling
• explore Application Insights monitoring

Create new Azure Function App

• name cofunc in resource group rg-co-func with .Net Core 3.1 on Windows (because of Portal development)
• create new function ProcessTrigger with Event Grid trigger and check Code+Test blade

Configure Trigger subscription fired when VM is started

• select resource group containing VM and select Events
• configure Event subscription with Endpoint Type = Azure Function and select our Function ProcessTrigger

Now let's check Function processing logs

• open Azure Function ProcessTrigger and navigate to Monitor section
• now start VM (other browser window)
• check Logs and wait for event "action": "Microsoft.Compute/virtualMachines/start/action"

Advanced scenarios

• process file uploaded to Azure Blob Storage (e.g. save to another destination)

Create Azure LogicApps

• select resource group containing VM and select Events
• select LogicApps and create new workflow - check trigger is Azure Event Grid and Authenticate
• prepare workflow - e.g. create calendar event

Open Azure Monitor

• review Insight section
• create new query in Logs
• create new metrics Alert

Open Azure Security Center

• review recommendation
• customize Default policy