Azure Automation Account

Posted on May 7, 2023 by Mohsen Akhavan

What is Azure Automation Account?

An Azure Automation account is a cloud-based management solution offered by Microsoft Azure for automating tasks and processes across Azure resources and other third-party systems. It provides a centralized location to create, deploy, manage, and monitor workflows, runbooks, and scripts to perform repetitive tasks, orchestrate complex processes, and reduce manual errors.

Overall, the Azure Automation account is a powerful tool for managing and automating IT operations and business processes, improving efficiency, reducing costs, and minimizing errors.

Some key features:

Workflow Automation: Azure Automation allows you to automate a wide range of tasks, from simple script execution to complex process automation across hybrid environments, using various workflow tools such as PowerShell, Python, and Azure Logic Apps.
Configuration Management: Azure Automation enables you to manage and apply consistent configurations across Azure and on-premises resources by using Desired State Configuration (DSC).
Monitoring and Reporting: Azure Automation provides comprehensive monitoring and reporting capabilities, including alerting, logging, and reporting, to help you detect and resolve issues quickly and efficiently.
Integration with Other Azure Services: Azure Automation can be integrated with other Azure services, such as Azure Virtual Machines, Azure Functions, and Azure Storage, to automate workflows and improve efficiency.

In the below sample, I wanna describe how to config a scheduled task for Stop and Start a VM with the PowerShell runbook.

Create an Azure Automation account: Go to the Azure portal and create an Automation account. You can do this by searching for “Automation” in the search bar and clicking on “Automation accounts” under the “Services” category. Then click “Add” and follow the prompts to create an Automation account.
Import the AzureRM modules: In your Azure Automation account, click on “Modules” in the left-hand menu and then click “Browse gallery”. Search for “AzureRM.Compute” and “AzureRM.Profile” modules, and then click “Import” to import them into your Automation account.
Create a new runbook: Click on “Runbooks” in the left-hand menu and then click “Create a runbook”. Give your runbook a name and select “PowerShell” as the runbook type.
Add the PowerShell script: In the editor, copy and paste the following PowerShell script

`Connect to Azure`

$connection = Get-AutomationConnection -Name 'AzureRunAsConnection' Connect-AzAccount -ServicePrincipal -Tenant $connection.TenantID -ApplicationId $connection.ApplicationID -CertificateThumbprint $connection.CertificateThumbprint

`Stop the VM`

Stop-AzVM -ResourceGroupName "myResourceGroup" -Name "myVMName" -Force

`Start the VM`

Start-AzVM -ResourceGroupName "myResourceGroup" -Name "myVMName"

Replace “myResourceGroup” and “myVMName” with the name of your resource group and VM.

Create a schedule: Click on “Schedules” in the left-hand menu and then click “Add a schedule”. Give your schedule a name, set the recurrence and start time, and select the runbook you just created.

That’s it! Your VM will now automatically stop and start according to the schedule you set up. You can also use similar PowerShell scripts to perform other automation tasks, such as resizing VMs or backing up data.

Microsoft published Azure Communication Service. What is this and how to setup it with Azure Email Communication Service?

Posted on April 14, 2023 by Mohsen Akhavan

What is the Azure Communication Service?

Azure Communication Services is a fully-managed platform as a service (PaaS) offering from Microsoft Azure that enables developers to build communication features into their applications. It provides a suite of APIs and SDKs that developers can use to integrate voice and video calling, email, chat, SMS, and other communication capabilities into their applications.

With Azure Communication Services, developers can create a wide range of communication experiences, from one-to-one conversations to large-scale group chats and conferences. They can also leverage the platform’s built-in security and compliance features, as well as its global reach and scalability, to deliver reliable and secure communication experiences to users around the world.

What is the Azure Communication Service Email?

If you are looking to integrate email capabilities into your applications, you’ll be happy to know that Microsoft Azure has introduced a new primitive called Azure Communication Services Email. This new service facilitates high-volume transactional, bulk, and marketing emails on the Azure Communication Services platform, making it easy to enable Application-to-Person (A2P) use cases.

With Azure Communication Services Email, you can easily integrate email capabilities into your applications using production-ready email SDK options. This will enable you to send and receive emails, manage email accounts and settings, and integrate with other Azure services, all through a simple and intuitive API.

How to install and configure?

In the Azure portal search and create “Communication Service” and then “Email Communication Service”.

2. After creating two resources, in Email Communication Service setup your custom domain.

3. Verify your domain with add a TXT record on your DNS.

4. Connect “Communication Services” to the verified domain.

5. Now use this SDK to add “Communication Service” in your application.

Client Certificate Authentication or mTLS (Mutual TLS) with Azure App Service and Application Gateway

Posted on March 18, 2023 by Mohsen Akhavan

Why use mTLS is important?

mTLS, or mutual Transport Layer Security, is a protocol used for securing network communications by providing encryption, authentication, and integrity verification. It ensures that both the client and server are authenticated and verified before any data is exchanged, thus preventing man-in-the-middle attacks and other security threats. The use of mTLS is particularly important for applications that handle sensitive data, such as financial transactions or medical records, as it provides an additional layer of security beyond traditional TLS, which only authenticates the server. Additionally, mTLS can be used to enforce access control policies, ensuring that only authorized clients are able to connect to the server. Overall, the use of mTLS provides a strong and reliable method for securing network communications and protecting against a wide range of security threats.

What is the Azure Application Gateway?

Azure Application Gateway is a web traffic load balancer and application delivery controller service provided by Microsoft Azure. It enables customers to manage and optimize web traffic to their web applications.

The main features of Azure Application Gateway include SSL termination, routing, SSL offloading, multi-site routing, web application firewall, and autoscaling. It can be used to distribute traffic across multiple backend instances of web applications hosted on Azure Virtual Machines or other cloud services. It also provides advanced traffic management capabilities such as session affinity and URL-based routing.

Overall, Azure Application Gateway is a flexible and powerful service that can help customers improve the performance, security, and scalability of their web applications hosted on Azure or on-premises.

How to implement?

At the end of this post I added some important ref that you can implement and test the Client Certificate Authentication. Before start the below items need to setup:

Azure App Service
Azure Application Gateway
Export a Trust Client CA Certificate

Reference Documents

How to get a 100% discount Microsoft Azure exam voucher?

Posted on January 5, 2022 by Mohsen Akhavan

Hello everyone! In the IT industry, public cloud has become an interesting and important topic, and many companies are migrating their infrastructure to a public cloud. Microsoft Azure is one of the top three public cloud providers that offer cloud solutions and services in a wide range of topics.

I have received many emails and comments asking me to explain how to start this journey or become a cloud expert. My suggestion is always to select a Microsoft certificate path and start learning about public cloud or improving your cloud skills.

In this post, I want to introduce a way to obtain a 100% discount Microsoft exam voucher. Please follow the steps below:

Search for “Microsoft Training Days” or click on this link.
Select the Fundamentals topics that you want to learn (Azure, Data, and AI Fundamentals).
Register for upcoming events.
You will receive the voucher within 5 business days after the event has finished.

Don’t miss out on this opportunity to improve your skills and knowledge in public cloud with Microsoft Azure. Start your journey today!

#mvpbuzz #mct #microsoftlearn #microsftcertification