Azure Arc Systems Management (eBook)
XIII, 298 Seiten
Apress (Verlag)
978-1-4842-9480-2 (ISBN)
This book is for enterprise and solution architects, systems integrators, and anyone managing enterprise-scale, multi-cloud or hybrid IT landscapes. The book examines usage of Azure Arc for governance and systems management with security as an overarching theme. It is not an implementation manual but provides high-level guidance on best practices and links to detailed guidance. It offers insight into the types of problems that Azure Arc can solve, and will help you determine whether it is the right choice for your organization.
Industry leaders have made serious investments in the design of control plane products to address these gaps with varying approaches and degrees of success. Azure Arc is designed to provide a consolidated view of assets such as databases and Kubernetes installations across major cloud providers, edge locations, and customer-owned datacenters. It facilitates deployment of new infrastructure, patching and upgrades, monitoring, policy, and security controls for assets living on-premises or in competitor clouds as if they were native to Azure. While competitive products exist, at this writing none have the flexibility and reach of Arc to effectively manage very large hybrid estates.
Readers will appreciate the author's approach of walking through typical enterprise computing scenarios while listing industry- or scenario-specific challenges that are difficult to overcome, and then reinforcing understanding by restating the challenges while explaining how Azure Arc can be utilized to remediate them.
What You Will Learn
- Discover what Azure Arc is, the types of problems it is intended to solve, and how to map your requirements to its capabilities
- Streamline and secure large Arc-enabled Kubernetes deployments via modern GitOps practices
- Use Azure Arc to consolidate management across a broad range of hybrid and multi-cloud ecosystems through policy-driven governance
- Apply monitoring and automation to defend systems against security threats that are beyond the ability of manual administration to deflect
- Uncover practical guidance that is written in a way that makes basic precepts approachable to non-technical stakeholders and then branches out into areas that will offer advanced readers new insights and consolidate a broad topic into a usable direction
Enterprise and solution architects, systems integrators, and anyone else looking to solve enterprise-scale administration problems across a multi-cloud or hybrid architecture
Table of Contents 5
About the Author 9
About the Technical Reviewer 10
Introduction 11
Chapter 1: The Challenges of Enterprise-Scale Hybrid and Multi-cloud Architectures 12
The Challenges of Hybrid and Multi-cloud Architectures in a Modern Application Stack 15
DevOps 16
Governance 17
Security 18
Modernization 20
Upgrades 22
Monitoring 23
Management 24
Chapter 2: What Is Azure Arc? 25
Arc – A Single Control Plane Across Multi-cloud and Hybrid Architectures 25
Internal Architecture 27
Live in a Managed World – On-Premise 31
Advanced Usage Scenarios 33
DevOps 33
Azure Stack HCI, Edge, and Hub 35
IoT and Edge Security 39
Azure Arc Enabled for Machine Learning 40
Arc-Enabled Kubernetes 41
Chapter 3: Overview of Benefits of Arc in the Enterprise 43
DevOps 44
GitOps 51
Governance and Policy 53
Modernization 56
Upgrades 62
Chapter 4: Securing the Enterprise with Arc 66
Security As Job One 66
Monitoring – Light in the Corners of the IT Universe 72
Integration with Lighthouse 73
Private Link 75
Security 77
Secure Access Service Edge (SASE) 77
Role-Based Access Control (RBAC) 79
Security Risks Resulting from Arc 83
Myriad Risk Factors Require Thoughtful Design 83
Chapter 5: Enterprise DBS Management and Arc 87
Introduction 87
Data Proliferation and Our Planet 89
Data Integrity 91
Distributed Computing and Your Data 94
Security Enhancements for Arc-Enabled Data Services 103
SQL Server 2022 105
PostgreSQL on Azure 107
Azure Data Studio 111
Ease the Challenges of Database Management with Arc 115
Chapter 6: Managing Kubernetes Workloads in Hybrid or Multi-cloud Data Centers 118
Summary of Kubernetes Capabilities per Their Docs 122
Arc-Enabled Kubernetes 125
Running a Successful Production Trial 126
Kubernetes Deployment Paths for EKS, GKS, and On-Premise Clusters 127
Amazon’s Elastic Kubernetes Service [EKS] 128
Google Kubernetes Engine [GKE] 129
On-Premise Kubernetes 130
Conclusion 132
What About Google Anthos? 132
Reaping the Benefits of Kubernetes Running Under Arc 133
GitOps with Arc 134
Proactive Security for Arc-Enabled Kubernetes 140
Custom Locations for Arc-Enabled Kubernetes 147
Chapter 7: Policy and Governance of Hybrid and Multi-cloud Infrastructure 150
Introduction 150
Policy Scopes in Azure 151
Policy Baselines for Kubernetes 156
Network Policies 163
Policies Governing Containers 166
Data Policies 172
Remediating Existing Resources via Policy 174
GitOps and Policy Development for Kubernetes 175
Policy for IT Consumers 178
Policy and FinOps 181
Effective Policy 182
Chapter 8: Monitoring and Process Automation via the Arc Control Plane 184
Monitoring for Discovery and Validation 184
Application Performance Monitoring11 189
Monitoring for Security 193
Monitoring and Data 199
Monitoring the Internet of Things [IoT] 206
Creating a Policy Feedback Loop 215
Cost Monitoring 218
Chapter 9: Automation in the Era of ML and AI 223
Automation in the Era of AI 223
Acquiring, Maintaining, and Modeling Your Actionable Data 226
Model Feeding and Care 235
Bias and the Greater Impact of Model Corruption 241
Mitigating Environmental Impacts of AI 250
Capturing the Money in Your Models 252
Chapter 10: Azure Arc – History and Horizons 257
The Metamorphose of Enterprise Computing Platforms 257
What Is the Fulcrum for Arc? 260
Azure Arc Landing Zones 268
Azure Lighthouse 270
Arc Horizons 272
VMware Shops Get the Love They Deserve 272
Resources for Arc Adoption 273
Arc Adoption 279
Summary 280
Index 284
| Erscheint lt. Verlag | 27.4.2024 |
|---|---|
| Zusatzinfo | XIII, 293 p. 27 illus., 21 illus. in color. |
| Sprache | englisch |
| Themenwelt | Mathematik / Informatik ► Informatik ► Datenbanken |
| Mathematik / Informatik ► Informatik ► Netzwerke | |
| Mathematik / Informatik ► Informatik ► Software Entwicklung | |
| Schlagworte | Administration • AWS outposts • Azure Arc • Azure Stack • Dashboard • Google Anthos • Governance • hybrid • Infrastructure • Microsoft • Multi-Cloud • Policies • Process Automation • security • single page of glass • Upgrades |
| ISBN-10 | 1-4842-9480-7 / 1484294807 |
| ISBN-13 | 978-1-4842-9480-2 / 9781484294802 |
| Informationen gemäß Produktsicherheitsverordnung (GPSR) | |
| Haben Sie eine Frage zum Produkt? |
PDF (Wasserzeichen)Größe: 6,5 MB
DRM: Digitales Wasserzeichen
Dieses eBook enthält ein digitales Wasserzeichen und ist damit für Sie personalisiert. Bei einer missbräuchlichen Weitergabe des eBooks an Dritte ist eine Rückverfolgung an die Quelle möglich.
Dateiformat: PDF (Portable Document Format)
Mit einem festen Seitenlayout eignet sich die PDF besonders für Fachbücher mit Spalten, Tabellen und Abbildungen. Eine PDF kann auf fast allen Geräten angezeigt werden, ist aber für kleine Displays (Smartphone, eReader) nur eingeschränkt geeignet.
Systemvoraussetzungen:
PC/Mac: Mit einem PC oder Mac können Sie dieses eBook lesen. Sie benötigen dafür einen PDF-Viewer - z.B. den Adobe Reader oder Adobe Digital Editions.
eReader: Dieses eBook kann mit (fast) allen eBook-Readern gelesen werden. Mit dem amazon-Kindle ist es aber nicht kompatibel.
Smartphone/Tablet: Egal ob Apple oder Android, dieses eBook können Sie lesen. Sie benötigen dafür einen PDF-Viewer - z.B. die kostenlose Adobe Digital Editions-App.
Zusätzliches Feature: Online Lesen
Dieses eBook können Sie zusätzlich zum Download auch online im Webbrowser lesen.
Buying eBooks from abroad
For tax law reasons we can sell eBooks just within Germany and Switzerland. Regrettably we cannot fulfill eBook-orders from other countries.
aus dem Bereich
