The aim of this blog is to demonstrate how to automate the scheduled deletion of resource groups across your sandbox / development subscriptions as part of your FinOps practice, in an effort to manage your cloud sprawl as well as manage your security vulnerabilities. Deployment Plan In the blog we will be deploying; One Azure… Continue reading Azure Automation – delete selected resource groups in a subscription
Author: allen.visser
Deploy Azure resources using Power Automate Flow
This aim of this blog is to demonstrate how to implement a Power Automate Flow using an approval group to provide management control over the deployment of Azure resources. This is in an effort to prevent cloud sprawl and thus prevent cost overruns and minimizing security risks Deployment Plan Step 1 – ARM Template Step… Continue reading Deploy Azure resources using Power Automate Flow
ARM Templates test toolkit
Microsoft provides anAzure Resource Manager template (ARM template) test toolkit to help you verify whether your ARM template complies with recommended practices. When your template isn’t compliant with recommended practices, it returns a list of warnings with the suggested changes. Step 1 – Download Download the arm-ttk.zip file from here and extract onto your local… Continue reading ARM Templates test toolkit
Automated monitoring Azure App Registration secrets using using Logic Apps
When provisioning App Registrations, their secrets are set to a maximum of 24 months. Currently, Azure does not provide a notification platform to proactively alert you when secrets are nearing expiration, which can result in business disruption. We are often asked by clients to implement automated monitoring and alerting platforms especially with regards to secrets… Continue reading Automated monitoring Azure App Registration secrets using using Logic Apps
Check Point CloudGuard IaaS High Availability Terraform deployment in Azure
One of our clients has requested a Check Point CloudGuard IaaS High Availability deployment in Azure. As per current limitations, CloudGuard can host a maximum of 2 members in a cluster, with each member deployed in a separate availability zone. Only High Availability Mode (Active/Standby) is supported. Load Sharing Mode is not supported. I have… Continue reading Check Point CloudGuard IaaS High Availability Terraform deployment in Azure
FinOps – Microsoft Cost Management AWS Connector
This blog demonstrates the process of provisioning the Microsoft Cost Management AWS connector which enables ingestion of your AWS cost details into Azure to oversee and manage your AWS expenditure. Through this integration, you are presented with a unified single pane of glass within the Azure portal, enabling you to monitor and manage spending across… Continue reading FinOps – Microsoft Cost Management AWS Connector
Backup your Azure Firewall using Logic Apps
I have chatted to several clients who believe that because their Azure Firewall is a FWaaS offering, Azure is actively backing up their Azure Firewall and their associated Azure Firewall Policy configurations. However, this assumption is incorrect. Azure Firewall is Microsoft Azure’s cloud-native firewall-as-a-service (FWaaS) solution, operating within the Shared Responsibility Model (SRM). As per… Continue reading Backup your Azure Firewall using Logic Apps
Cost analysis with the Cost Management Power BI App
Analyse your multi-cloud cost with the Cost Management Power BI App. This app will allow you to analyse your Azure and AWS costs all in a single pane of glass. This article is to written to configure cost analysis for Azure Enterprise Agreements (EA) subscriptions. This blog will explain how to easily install and use… Continue reading Cost analysis with the Cost Management Power BI App
Deploy Azure Infrastructure using PowerShell scripts, GitHub and Azure DevOps pipelines
This blog is written on a 100 level, explaining how to use the most simplistic tooling to deploy Azure resources using PowerShell scripts, GitHub and deployed via Azure DevOps pipelines with continuous integration. Deployment Plan Step 1 – PowerShell scripts Step 2 – Github.com remote repository Step 3 – Upload PowerShell scripts Step 4 –… Continue reading Deploy Azure Infrastructure using PowerShell scripts, GitHub and Azure DevOps pipelines
Exporting Registered Apps expiring secrets and certificates
This blog post aims to streamline the manual extraction of your Registered Applications whose secrets are either nearing expiration or have already expired. The process utilizes a PowerShell script and concludes by exporting the results to a CSV file. Step 1 – Prepare an output folder This will become the target folder into which your… Continue reading Exporting Registered Apps expiring secrets and certificates