Recovery Services Vault- Backup Alerts- Configure Notifications with PowerShell?
Hi, Using Recovery Services Vaults to backup VMs in Azure, we can configure Backup Alert notifications using the portal- is there a way of doing this in PowerShell (or via API/ CLI...)? Use case- we want to turn on email notifications on all our vaults, or update/add an email address.
Azure Information Protection retroactive protection - AIP
Hello all, I need a clarification for a use scenario of AIP. hypothesis, using a label called"highly confidential" that at the end of the implementation will protect documents with the protection flag of AIP configuration. What I need to understand is in the following scenario: 1. We start to use the label without the protection flag for example for three months. 2. During this time period a total of 100 documents has been labeled as "highly confidential" and obviously only labeled without protection. 3. After this three month we will edit the label enabling the flag of protection. The question is about what will happen to the 100 documents labeled before the edit of the label, will be retroactive protected ? thanks for helping if something is not clear please ask for clarificationAssess and Migrate Hyper-V VMs to Azure using Azure Migrate
Today, the Azure Migrate team launched an update to the Azure Migrate service, which can help you discover, assess, and migrate applications, infrastructure, and data from your on-prem environment to Microsoft Azure. This is excellent timing since we all know that Windows Server 2008 and Windows Server 2008 R2 are soon out of support and you get free extended security updates if you migrate your VMs to Azure. With Azure Migrate, you can now centrally track the progress of your migration journey across multiple thrid-party and Microsoft tools. In this post, I am going to show you how you can step-by-step assess and migrate Hyper-V VMs to Azure using Azure Migrate. Check it out here: https://www.thomasmaurer.ch/2019/07/assess-and-migrate-hyper-v-vms-with-azure-migrate/
Whitepaper Achieving Compliant Data Residency and Security with Azure
Introduction Security and compliance–basic elements of the trusted cloud–are top priorities for organizations today. This paper is designed to help customers ensure that their data is handled in a manner that meets their data protection, regulatory, and sovereignty requirements on the global cloud architecture of Microsoft Azure. Transparency and control are also essential to establishing and maintaining trust in cloud technology. Microsoft recognizes that restricted and regulated industries require additional details for their risk management and to ensure compliance at all times. Microsoft provides an industry-leading security and compliance portfolio. Security is built into the Azure platform, beginning with the development process, which is conducted in accordance with the Security Development Lifecycle (SDL), and includes technologies, controls and tools that address data management and governance, Active Directory identity and access controls, network and infrastructure security technologies and tools, threat protection, and encryption to protect data in transit and at rest. Microsoft also provides customers with choices to select and limit the types and locations of data storage on Azure. With the innovation of the security and compliance frameworks, customers in regulated industries can successfully run mission-critical workloads in the cloud and leverage all the advantages of the Microsoft hyperscale cloud. This simple approach can assist customers in meeting the data protection requirements of government regulations or company policies by helping them to: Understand data protection obligations. Understand the services and controls that Azure provides to help its customers meet those obligations. Understand the evidence that customers need to assert compliance. The paper is structured into these three sections, with each diving deeper into the security and technologies that help Microsoft customers to meet data protection requirements. The final section discusses specific requirements to which industries and organizations in selected European markets are subject. Download this Awesome whitepaper, “Achieving compliant data residency and security with Azure.” Learn here more on Compliance, Trust, Security and ResponsibilitiesWhy should I care about an Azure Virtual Machine Backup and how to set it up!
Dear Azure Friends, In this article, I am concerned with gaining attention when it comes to responsibilities and misunderstandings. The following customer statements: "The virtual machine is hosted in Azure, so the responsibility lies with Azure". "I pay for the virtual machine in Azure so Azure has to take care of the backup". Honestly this is absolute nonsense (sorry for this expression). There is only one answer to these customer statements: Shared responsibility in the cloud!! Let's take a look together at shared responsibility in the cloud. https://docs.microsoft.com/en-us/azure/security/fundamentals/shared-responsibility Now let's take a closer look. A virtual machine in Azure is infrastructure-as-a-service (IaaS). Please take a look at the intersection, we can see exactly where the responsibilities lie. Everything that has to do with physical infrastructure lies with Microsoft. The rest is clearly up to the customer. Let's take a close look => from the operating system!!! Now the following customer scenario: The customer runs a virtual machine in Azure. First, some applications from third-party providers are installed and a few operating system adjustments are made. Everything is fine, after a few weeks operating system updates (including security patches) are installed. After the reboot, the system in Azure no longer appears as "Running" but "unknown". So what now? Call Microsoft? Open a ticket? We have seen that the responsibility does not lie with Microsoft but with the customer! This is exactly what is regularly and often underestimated. In order to prevent this scenario from happening, it is imperative to have a backup. So that in case of emergency a recovery can be made. Of course it needs more than just a backup, that has to be handled company wide with different processes. But let's keep it simple in this example and start with setting up a backup for a virtual machine. When it comes to backup, there is no way around a Recovery Service Vault. Now we can customize the proposed backup policy for our needs. We assign a new name and set up the schedule. If you wish you can select different retention options, from weekly, monthly to yearly. You can optionally name the Azure Backup Resource Group below. Click "OK" and then click "Enable Backup". The deployment is made then click on "Go to resource". Now we are in the Recovery Service Vault. Here we can find the details of our backup job. For some time now, the Backup Center has been available in Azure and will be the first point of contact for setting up backups in the future. Here we immediately see info about our backup in the overview. In the meantime I started the backup manually (outside the schedule) so that we can look at the backup together. The backup result in the virtual machine details. The Backup Center shows us that the transfer to the Vault still needs to be processed. Important: The backup is the first step in the right direction, don't forget to perform a test restore regularly to make sure that your virtual machine will work exactly as you expect it to after a restore! If the customer had created at least one backup, this "ugly" situation would never have occurred. For this reason it is super important to know where the RESPONSIBILITIES lie! I hope this article was useful. Thank you for taking the time to read the article. Best regards, Tom Wechsler P.S. All scripts (#PowerShell, Azure CLI, #Terraform, #ARM) that I use can be found on github! https://github.com/tomwechslerSetup Azure Backup in Windows Admin Center
With Windows Admin Center you have a great new web-based management experience for Windows Server. With Microsoft efforts to bring Hybrid Cloud capabilities closer to your on-premises systems, they added support for Azure Backup in Windows Admin Center. This allows you to simply configure Azure Backup for your Windows Server with a couple of clicks. Setting up a cloud backup of a server is simple and safes you a lot of time and resources. It is especially great, if you have a small environment in your datacenter or hosted at a different service provider, where having an own backup infrastructure doesn’t make much sense. Check out my blog: https://www.thomasmaurer.ch/2018/09/azure-backup-windows-admin-center/Backup Windows 10 to Microsoft Azure Backup
Azure Backup for your Windows 10 PC allows you to backup Files and Folders and store and backup them to the cloud. You can use this for small environments, VIP machines or for remote workers which are always on the road. Data is encrypted on the on-premises client machine using AES256 and the data is sent over a secure HTTPS link. Backups are stored encrypted in Azure with the customers own key. https://www.thomasmaurer.ch/2018/10/backup-windows-10-microsoft-azure-backup/
