Following on from my previous post about managing tags using Azure Policy and Terraform, there was some interest in how the Policies worked for both enforcing the tags, and making them inherit down from the Resource Group to the deployed resources.
Tag Management with Azure Policy and Terraform
When deploying resources via Terraform, especially as part of a CI/CD pipeline, one of the main pain points I’ve seen from a Governance perspective is how best to manage tagging. For example, say I want to define the following tags for filtering and cost management purposes:
- business_owner
- cost_centre
- application_name
Deploying a Linux VM with CMK Disk Encryption using Terraform
Continuing the recent Terraform theme, I’ve also been working on an example of how to deploy a VM in Azure using the new method of Disk Encryption with Customer Managed Keys.
Deploying the Azure Monitor Agent for Linux using Terraform
Hashicorp Terraform is a very popular tool for deploying and managing resources, both in a cloud environment or on-premises. The support in Azure for Terraform is excellent, but I had a bit of trouble getting the Azure Monitor agent installed as a VM Extension, so thought I would share my working code here.
Automating Azure Bastion using PowerShell Functions
Inspired by a conversation with a colleague about “Just In Time” access to workloads, I decided to investigate how to automate provisioning and de-provisioning Azure Bastion on weekdays only to reduce the overall running costs.
On-Demand, Serverless SFTP
SSH File Transfer Protocol or SFTP has been around for over 20 years, and still remains a great way to transfer files securely, specifically allowing the use of SSH keys to ensure that only the right users can perform the necessary operations.
CI/CD with Kubernetes on ACS - Part 3 - Configuring VSTS
Part 1 - Introduction
Part 2 - Creating ACS & ACR
Part 3 - Configuring VSTS (this post)
Part 4 - Kubernetes-ifying Application
Part 5 - Build Definition
Part 6 - Release Definition
Part 7 - Wrap-up
Extending Storage Spaces Volumes
One of the cool features introduced in Windows Server 2012 was Storage Spaces, which is the ability to create Storage Pools that span multiple physical disks; it is sort of like software RAID on steroids. Storage Spaces was further enhanced in 2012 R2, and some additional polish has been added in 2016.
CI/CD with Kubernetes on ACS - Part 2 - Creating ACS and ACR
Part 1 - Introduction
Part 2 - Creating ACS & ACR (this post)
Part 3 - Configuring VSTS
Part 4 - Kubernetes-ifying Application
Part 5 - Build Definition
Part 6 - Release Definition
Part 7 - Wrap-up
CI/CD with Kubernetes on ACS - Part 1 - Introduction
Part 1 - Introduction (this post)
Part 2 - Creating ACS & ACR
Part 3 - Configuring VSTS
Part 4 - Kubernetes-ifying Application
Part 5 - Build Definition
Part 6 - Release Definition
Part 7 - Wrap-up