November 2020 Update for Azure Diagnostic Settings Policy Definitions

Last month, I released some updates to the Azure Policy definitions for Diagnostics Settings. After that update, there was a requirement for me to revisit and revalidate all existing policy definitions, so I have spent few days and have gone through them all, making sure they are still up-to-date. I have also added few definitions for few additional Azure services. Here’s a the change log: Updated the existing policy definitions for the following Azure services: Azure Container Registry Azure Kubernetes Service Azure API Management Azure Cognitive Services Cosmos DB Azure Data Factory Event Grid Topic ExpressRoute Circuits Azure Firewall Azure

Continue reading

October 2020 Update for Azure Diagnostic Settings Policy Definitions

Over the last couple years, I’ve been maintaining a set of custom Azure Policy Definitions for deploying Diagnostic Settings for applicable Azure services. You can find them in my GitHub repo: https://github.com/tyconsulting/azurepolicy/tree/master/policy-definitions/resource-diagnostics-settings I’ve updated them again over the last couple of weeks. This is what’s changed: Diagnostic Settings Policies: Minor bug fix for the Diagnostic Settings policies for Azure Automation Account Updated policies for Event Hub – included additional log categories that weren’t available when the policy was firstly written. Also updated policies for Recovery Services Vault – added additional log categories Updated policies for SQL Managed Instance – added

Continue reading

Moving My Data to Azure and Office 365 Using Synology Cloud Sync

Syncing data between on-prem locations and public cloud has become a very common practice for many organisations, and sometimes even for home users. I have seen organisations using solutions from storage providers to sync data to Azure Storage Accounts and other cloud providers. Personally, in order to prevent hardware failure, and being able to access my files while I’m away from home, I’ve also been wanting to migrate some of my data from my NAS to Microsoft OneDrive and Azure Storage Accounts. Few weeks ago, Synology reached out to me and asked me if I’d be interested to review their

Continue reading

Video on AzureTar YouTube Channel: Integrating Terraform Enterprise with CI/CD Pipeline

Last weekend, I was invited to record a video on my friend Jorge Arteiro’s YouTube Channel AzureTar. In this video, I have demonstrated some POC code I was working on during my spare time over the last month or so – Integrating Azure DevOps and Terraform Enterprise (or Terraform Cloud). I’ve demonstrated how to use my newly published PowerShell module tfe (PSGallery, GitHub) to drive Terraform Enterprise deployment as part of your CI/CD Pipeline. You can find the recording here: https://www.youtube.com/watch?v=kC5ikBNjf-4&t=5s I’d like to thank the AzureTar hosts Jorge and Fernando for having me. I’m looking forward to recording more

Continue reading

Recording for Inside Azure Management Virtual Summit Now Available

This week, on July 23rd (US time), we had a one-day 17-hour free online event Inside Azure Management Virtual Summit. I have teamed up with my buddy Alex Verkinderen (@AlexVerkinderen) again, and delivered an updated version of our talk at Microsoft Ignite the Tour Sydney in February 2020: Azure Monitor – Design and Implement Monitoring Solution with ARM and CI/CD. In our session, we have covered and demonstrated the following in the Azure Pipeline: Using ARM What-If API in the PR build so approvers can see what changes will be made to your Azure environments. Using Microsoft Security Code Analysis

Continue reading

Inside Azure Management book V4 and Free Online Summit

The Inside Azure Management book v4 has been officially released few weeks ago. In case you haven’t got it, you can either download for free, or purchase a kindle version on Amazon. To celebrate the book launch, the authors of this book (including myself), will host a one-day 16-hour free online summit on Wednesday 23rd July 2020. Come join us for a full day of deep-dive technical sessions across a variety of Microsoft cloud topics from Microsoft MVPs and special Microsoft guests. Topics will include DevOps and Automation Cyber Security Cloud Governance Migration and Monitoring Docker and Kubernetes AI and

Continue reading

Use GitHub Super Linter in Azure Pipelines

Recently, GitHub has released an open-sourced tool called Super Linter (Blog, Repo). It’s basically a swiss army knife of linters for a collection of languages. This is really cool since I can replace many language-specific tests with a single tool. At the time of writing this article, it already supports many popular languages such as Dockerfile, Golang, JavaScript, JSON, Markdown, YAML, Python3, PHP, Terraform, PowerShell, bash, and many more. The full list is documented on the README file on the GitHub repo. Although the GitHub Super Linter is designed to be used in GitHub Actions, it runs on a container

Continue reading

OMSDataInjection PowerShell Module Updated

I’ve just pushed a small update to my old OMSDataInection PowerShell module. This module is designed to send custom logs to a Log Analytics workspace via its HTTP Data Collector API. The last update was back in 2016, when it was still called OMS. In this version (v1.3.0), I’ve added an additional optional input parameter to allow users to add an Azure Resource Id to the log entry. This is required when the workspace is configured to use resource-context RBAC model. By specifying a valid Azure Resource Id, the user can control who has access to the log entry. This

Continue reading

Deploying Containerized Socks5 Proxy Server Using ACR, ACI and Azure DevOps

Background In certain parts of the world, some of the popular apps and services that I use daily are blocked by state-owned firewalls. Couple of years ago, before we went to that part of the world for family holiday, I looked into setting up proxy servers on the public cloud so we can actually use our Android phones when we are over there. One of my high school friends told me he’s using a popular Socks5 proxy server called Shadowsocks hosted on a GCP VM instance. Shadowsocks is a Linux based server, it is extremely easy to setup, and it

Continue reading

Using Raspberry Pi for Displaying Ubiquiti CCTV Cameras in Kiosk Mode

I recently blogged my home office setup. When we bought the house, there is a TV wall mount already installed in my office, right above where I put the elliptical: Unfortunately, I couldn’t use it because the previous owner didn’t leave the mounting VASE plate with us. I wanted to put a spare monitor there and use it to view the live footage of my Ubuiqiti Unifi CCTV cameras. after several failed attempts in finding the compatible VASE plate, I finally managed to find one on Amazon, so I mounted a spare 24 inch monitor onto the wall mount. I

Continue reading
%d bloggers like this: