Category: Uncategorized

Trend Micro Cloud One – custom role

The json script below is the custom role required to deploy your Azure based Cloud One HA solution not using a GLWB. Copy the script below and save into a .json file.

Resource Deployment

This blog is a quick 101 introduction for anybody wanting to know how to quickly and easily deploy an Azure resource using Terraform with end to end easy instructions. Deployment Steps: Step 1 – Authenticating on Azure Terraform must authenticate to Azure to create infrastructure az login Your browser will open and prompt you to… Continue reading Resource Deployment

Migration Plan for moving from MMA to AMA

In this blog I break down the migration plan | process for migrating from the legacy MMA to the modernized AMA agent as per Microsoft’s recommendations. The aim of the procedures stipulated below are to ensure a safe and non-disruptive AMA migration and deployment during the migration proces using an incremental and controlled strategy. As… Continue reading Migration Plan for moving from MMA to AMA

Enable Azure Monitor for VMs with Azure Monitoring Agent(AMA)

Go to Azure Portal > Azure Policy > Assign initiative > select your scope = subscription or Management Group, Select any Exclusions if required, Basics – Initiative definition > search for ‘ama’ > select [Preview]: Enable Azure Monitor for VMs with Azure Monitoring Agent(AMA) > add, Assignment name – populate a custom initiative name, Policy… Continue reading Enable Azure Monitor for VMs with Azure Monitoring Agent(AMA)

Fortinet Fortigate (HA) Template Deployment

The aim of this blog is to deploy a high availability Fortinet Next Generation Firewall Fortigate template which deploys a minimum of 3 instances in a virtual machine scale set spread across 3 availability zones. This deployment includes the Forti Analyzer which I have included in the template for centralized security log collection purposes. If… Continue reading Fortinet Fortigate (HA) Template Deployment

Azure Monitor private availability testing – Application Insights of non public URL’s.

I wrote this blog in an attempt to simplify and streamline the complexity of configuring Azure Monitoring testing of non public URL’s in disconnected / no ingress scenarios. I ran down numerous rabbit holes trying to figure this out and hopefully I have simplified this deployment and architecture for you, thus making your experience frustration… Continue reading Azure Monitor private availability testing – Application Insights of non public URL’s.

Azure Function Timer Trigger Function.cs content

The content here is colated from hours of deep diving documentation along with numerous technical support calls with Microsoft, to derive the final product shown below. Hopefully by grabbing this content, I have saved you weeks of effort. Obviously you need to edit the internal ip address and your timer interval. Replace your function.cs with… Continue reading Azure Function Timer Trigger Function.cs content

Web Application Firewall OWASP Core Rule Sets and Custom Managed Rules

This blog provides a simple explanation on updating the OWASP Core Rule Sets on your WAF (Web Application Firewall) as well managing your custom managed rules as part of the Cloud Shared Responsibility Model. The blog is broken down into the following sections for easier reading: Web Application Firewall Tuning your WAF as per your… Continue reading Web Application Firewall OWASP Core Rule Sets and Custom Managed Rules