Introduction to Azure Cloud
Cloud Services
Rental of software and hardware resources on-demand.
Total Cost of Ownership
| Cost Type | Examples |
|---|---|
| π₯οΈ Hardware | Server, server room |
| π₯ Personnel | Admin & developer salaries |
| β‘ Variable | Energy, maintenance |
Benefits: No Software to Manage
- β Installation and configuration is much easier
- β Backups and redundancy are automatic
- β Shorter time to market
- β "Rental" of know-how β lower personnel expenses
- β Higher security
Benefits: No Servers to Manage
- π Optimization of fixed costs
- β‘ Flexibility β quick service start
- π§ No maintenance required
Serverless
The cloud provider automatically provisions, scales, and manages infrastructure.
- No need to allocate specific disks or compute nodes
- Highly scalable and event-driven
- Resources used only when a trigger occurs
Shared Responsibility Model
| Managed by Azure | Managed by You |
|---|---|
| Physical datacenters | Data |
| Networking & hypervisor | Identity & access |
| Core platform services | Code, config, secrets |
In practice: RBAC (least privilege), patching, backups, monitoring.
Disadvantages of Cloud Services
- πΈ Complicated fee tracking and optimization
- π Integration with existing infrastructure
- π Lock-in to a specific provider's services
- π΅οΈ Partial loss of control over data
- π Need for trained personnel
Costs: What to Watch
- Pay-as-you-go β you pay for usage (compute, storage, egress)
- Set budgets + alerts and tag resources (project/course/team)
- Shut down unused VMs and services when not needed
Cloud Deployment Models
| Model | Description |
|---|---|
| βοΈ Public | Your workload runs in a shared foreign datacenter |
| π’ Private | Applications run in your own or rented datacenter |
| π Hybrid | Managed uniformly using cloud provider tools |
Distribution of Cloud Services
Anything As a Service β Pay as You Go
| Layer | Model | Example |
|---|---|---|
| Infrastructure | IaaS | VMs, disks, network |
| Platform | PaaS | Kubernetes, Heroku |
| Applications | SaaS | Gmail, Office 365 |
IaaS β Infrastructure as a Service
Virtualization of hardware and network infrastructure:
- π₯οΈ Virtual servers and networks
- πΎ Disks and block devices
- βοΈ Load balancers
PaaS β Platform as a Service
Rental of "cloud" operating system services:
- π³ Docker, Docker Compose
- βΈοΈ Kubernetes
- π Heroku
SaaS β Software as a Service
Ready-made applications or components:
- π¦ Container registry
- ποΈ Database
- π€ Machine learning systems
- π Translation, search engine
Cloud Service Providers
| Provider | Share |
|---|---|
| Amazon AWS | 32% |
| Microsoft Azure | 21% |
| Google Cloud | 8% |
| Others | 39% |
Others: Heroku, IBM Cloud, Alibaba Cloud, DigitalOcean
What is Azure Cloud?
- π Connected public services of Microsoft data centers
- π±οΈ Control via web portal or command line (
az) - π Accessible with a student account
The Most Important Azure Services
Storage
Azure Storage Accounts:
| Type | Description |
|---|---|
| File | File system (SMB/NFS) |
| Disk | Block device |
| Blob | Object storage |
Special: Data Lake, Archive, HPC Cache
Virtual Machines
Linux distributions:
- CentOS, RHEL, SUSE, Debian, Ubuntu
Windows:
- Windows Server
Or bring your own custom image.
Web Apps
Without a container β managed runtimes:
- Java, Node.js, PHP, Python, .NET, Ruby
With a container β any dependencies
- CI/CD: automatic build & deploy
- GitHub integration
- Mountable storage (
/home, etc.)
Database β SQL
- Azure SQL (managed SQL Server)
- SQL Server on VM
- PostgreSQL / MySQL / MariaDB
Database β NoSQL
- Cosmos DB β MongoDB & Cassandra compatible
- Redis β in-memory cache
- Cassandra β wide-column store
Load Balancer
- π’ Publish services to the internet
- π Ensure high availability
- π HTTPS termination
Azure Networking Basics
| Component | Purpose |
|---|---|
| VNet + subnets | Private network for services |
| NSG | Inbound/outbound rules at subnet/NIC |
| Public IP / DNS | Publish services to the internet |
ACR β Container Registry
- π¦ Registry of container images
- Used by App Services and AKS
- Private registry within your subscription
AKS β Kubernetes Service
- βΈοΈ Managed Kubernetes cluster
- On-demand cluster creation
- Automatic scaling
- CI/CD integration
- Hybrid cloud support β manage multiple clusters
Azure Account Structure
Account : Login and identity
Subscription : Billing and accounting unit
Tenant (Microsoft Entra ID) : Identity boundary β users, groups, app registrations
Resource Organization
Resource Group : A group of resources within a subscription
Resource : A specific billable service
ARM Template (resourceManagerTemplate)
: File defining one or more resources as code
Tags and Governance
| Concept | Purpose |
|---|---|
| Tags | Cost allocation (project, course, team) |
| Management Groups | Group subscriptions for policies |
| RBAC | Least-privilege access control |
Quality of Service β SKU
SKU = Stock Keeping Unit
Choose the tier that matches your needs:
| Tier | Attributes |
|---|---|
| Basic | Low cost, limited redundancy |
| Standard | Balanced performance |
| Premium | High speed, redundancy, low latency |
Selection of Location
It matters where the service physically runs:
Region : Geographic area with one or more datacenters
Data Center : Specific physical facility
Considerations: latency β‘, jurisdiction βοΈ
Managing Azure Services
| Tool | Description |
|---|---|
| Azure Portal | Web interface for managing services |
Azure CLI (az) |
Command-line scripting & automation |
| ARM / Bicep | Infrastructure as code |
Management Architecture
+--------------+ +---------------+
| Provider API |-----| Cloud Service |
+--------------+ +---------------+
|
App protocol
|
+--------------------+
| Web or CLI client |
+--------------------+