Upload
dotnetcampus
View
69
Download
0
Tags:
Embed Size (px)
Citation preview
Template designed by
cert-path
70-534 – Architecting Azure Solutions
Roberto Freato – Freelance IT Consultant & Trainer
MVP on Windows Azure, Microsoft Certified Trainer
[email protected] - @childotg
• Cos’è il cert path del DotNetCampus?
• Le certificazioni professionali, tecniche e di prodotto
• I diversi percorsi di certificazione Microsoft – MCP e MCT
• L’ esame 70-534: Architecting Microsoft Azure Solutions
cert path
• Azure come piattaforma
• Differenza dagli altri esami
• Il programma d’esame
• Il metodo d’esame
focus
70-532 - Developing Microsoft Azure Solutions
70-533 - Implementing Microsoft Azure Infrastructure Solutions
70-534 - Architecting Microsoft Azure Solutions
esami su azure
Design Microsoft Azure Infrastructure and networking (15-20%)
Secure resources (15-20%)
Design an application storage and data access strategy (15-20%)
Design an advanced application (15-20%)
Design websites (15-20%)
Design a management, monitoring, and business continuity strategy (15-20%)
agenda
Let’
s g
o Design Microsoft Azure
Infrastructure and networking
Describe how Azure uses Global Foundation Services (GFS)
datacenters
• Understand Azure datacenter architecture
• regional availability
• high availability
design Microsoft Azure Infrastructure and networking (15-20%)
Design Azure virtual networks, networking services, DNS, DHCP,
and IP addressing configuration
• Extend on-premises Active Directory
• deploy Active Directory
• define static IP reservations
• understand ACLs and Network Security Groups
design Microsoft Azure Infrastructure and networking (15-20%)
Design Azure Compute
• Design Azure virtual machines (VMs)
• understand availability sets, fault domains, and update
domains
• differentiate between machine classifications
design Microsoft Azure Infrastructure and networking (15-20%)
Describe Azure virtual private network (VPN) and ExpressRoute
architecture and design
• Describe Azure P2S and S2S VPN
• Azure VPN and ExpressRoute
design Microsoft Azure Infrastructure and networking (15-20%)
Describe Azure services
• Traffic Manager
• Azure Media Services
• CDN
• Azure Active Directory (Azure AD)
• Azure Cache
• Multi-Factor Authentication
• Service Bus
design Microsoft Azure Infrastructure and networking (15-20%)
Let’
s g
o Secure resources
Secure resources by using managed identities
• Describe the differences between Active Directory on-
premises and Azure AD
• programmatically access Azure AD using Graph API
• secure access to resources from Azure AD applications using
OAuth and OpenID Connect
secure resources (15-20%)
Secure resources by using hybrid identities
• Use SAML claims to authenticate to on-premises resources
• describe DirSync synchronization
• implement federated identities using Azure Access Control
service (ACS) and Active Directory Federation Services (ADFS)
secure resources (15-20%)
Secure resources by using identity providers
• Provide access to resources using identity providers such as
Microsoft account, Facebook, Google, and Yahoo
secure resources (15-20%)
Identify an appropriate data security solution
• Use the appropriate Access Control List (ACL)
• identify security requirements for data in transit and data at
rest
secure resources (15-20%)
Design a role-based access control strategy
• Secure resource scopes such as the ability to create VMs and
websites
secure resources (15-20%)
Let’
s g
o Design an application storage
and data access strategy
Design data storage
• Design storage options for data including Table Storage
• SQL Database, DocumentDB, Blob Storage
• MongoDB and MySQL
• design security options for SQL Database or Azure Storage
• identify the appropriate VM type and size for a solution
design an application storage and data access strategy (15-20%)
Design applications that use Mobile Services
• Create Azure Mobile Services
• consume Mobile Services from cross-platform clients
• integrate offline sync capabilities into an application
• extend Mobile Services using custom code
• implement Mobile Services using Microsoft .NET or Node.js
• secure Mobile Services using Azure AD
design an application storage and data access strategy (15-20%)
Design applications that use notifications
• Implement push notification services in Mobile Services
• send push notifications to all subscribers, specific subscribers,
or a segment of subscribers
design an application storage and data access strategy (15-20%)
Design applications that use a web API
• Implement a custom web API
• scale using Azure websites
• offload long-running applications using WebJobs
• secure a web API using Azure AD
design an application storage and data access strategy (15-20%)
Design a data access strategy for hybrid applications
• Connect to on-premises data from Azure applications using
Service Bus Relay, BizTalk Hybrid Connections, or website’s
virtual private network (VPN) capability
• identify constraints for connectivity with VPN
• identify options for joining VMs to domains or cloud services
design an application storage and data access strategy (15-20%)
Design a media solution
• Describe Media Services
• understand key components of Media Services including
streaming capabilities
• video on-demand capabilities
• monitoring services
design an application storage and data access strategy (15-20%)
Let’
s g
o Design an advanced
application
Create compute-intensive applications
• Design high-performance computing (HPC) and other
compute-intensive applications using Azure Services
design an advanced application (15-20%)
Create long-running applications
• Implement worker roles for scalable processing
• design stateless components to accommodate scale
design an advanced application (15-20%)
Select the appropriate storage option
• Use a queue-centric pattern for development
• select the appropriate storage for performance
• identify storage options for cloud services and hybrid
scenarios with compute on-premises and storage on Azure
• differentiate between cloud services and VMs interacting with
storage service and SQL Database
design an advanced application (15-20%)
Integrate Azure services in a solution
• Identify the appropriate use of machine learning, big data,
Media Services, and search services
design an advanced application (15-20%)
Let’
s g
o Design websites
Design websites for scalability and performance
• Globally scale websites
• create websites using Microsoft Visual Studio
• debug websites
• understand supported languages
• differentiate between websites to VMs and cloud services
design websites (15-20%)
Deploy websites
• Implement Azure Site Extensions
• create packages, hosting plans, deployment slots
• resource groups
• publishing options, Web Deploy, and FTP locations and
settings
design websites (15-20%)
Design websites for business continuity
• Scale up and scale out using Azure Websites and SQL Database
• configure data replication patterns
• update websites with minimal downtime
• back up and restore data
• design for disaster recovery
• deploy websites to multiple regions for high availability
• design the data tier
design websites (15-20%)
Let’
s g
o Design a management,
monitoring, and business
continuity strategy
Evaluate hybrid and Azure-hosted architectures for Microsoft
System Center deployment
• Understand at an architectural level which components are
supported in Azure
• describe design considerations for managing Azure resources
with System Center
• understand which scenarios would dictate a hybrid scenario
design a management, monitoring, and business continuity strategy (15-20%)
Design a monitoring strategy
• Identify the Microsoft products and services for monitoring Azure solutions
• understand the capabilities of System Center for monitoring an Azure solution, understand built-in Azure capabilities, identify third-party monitoring tools including open source
• describe use cases for Operations Manager, Global Service Monitor, and Application Insights
• describe the use cases for Windows Software Update Services (WSUS), Configuration Manager, and custom solutions
• describe the Azure architecture constructs such as availability groups and update domains and how they impact a patching strategy
design a management, monitoring, and business continuity strategy (15-20%)
Describe Azure business continuity/disaster recovery (BC/DR)
capabilities
• Understand the architectural capabilities of BC/DR
• describe Hyper-V Replica and Azure Site Recovery (ASR)
• describe use cases for Hyper-V Replica and ASR
design a management, monitoring, and business continuity strategy (15-20%)
Design a disaster recovery strategy
• Design and deploy Azure Backup and other Microsoft backup
solutions for Azure
• understand use cases when StorSimple and System Center
Data Protection Manager would be appropriate
design a management, monitoring, and business continuity strategy (15-20%)
Create a PowerShell script specific to Azure
• Create a PowerShell script specific to Azure
design a management, monitoring, and business continuity strategy (15-20%)
Describe the use cases for Azure Automation configuration
• Understand when to use Azure Automation
• Chef, Puppet, PowerShell
• Desired State Configuration (DSC)
design a management, monitoring, and business continuity strategy (15-20%)
Template designed by
cert-path
70-534 – Architecting Azure Solutions
Roberto Freato – Freelance IT Consultant & Trainer
MVP on Windows Azure, Microsoft Certified Trainer
[email protected] - @childotg