AZ-900 Microsoft Azure Fundamentals
This certification helps you to demonstrate foundational knowledge of cloud concepts in general and Microsoft Azure. This is the first course necessary for acquiring the basics of the Cloud model offered by Azure.
If I had one piece of advice for this certification is to learn the definitions of the concepts and tools offered by Azure. Practice in Azure is not actually necessary to pass the exam.
This is the first course to take if you begin working on the Cloud.
The cloud models are as follows: private, public, and hybrid.
Definition
Azure Arc : Helps manage your cloud environment in a hybrid system
Azure VMware Solution : Allows you to run your VMware workloads in Azure with seamless integration and scalability
Two types of expenses: Capital Expense (CapEx) and Operational Expenses (OpEx)
Cloud-based auditing allows for reporting non-compliant resources according to company standards and providing mitigation strategies.
The main architectural components of Azure can be divided into two essential parts: the physical infrastructure and the management infrastructure.
A region is a geographic area consisting of at least one data center, but it can contain several that are close to each other and connected by a low-latency network. Availability zones are physically separated data centers within an Azure region. Availability zones are connected through very fast private fiber-optic networks.
Sovereign regions are isolated instances of Azure separate from the main Azure instance. You might need to use a sovereign region for legal or compliance purposes. These regions are physically and logically isolated instances of the Azure network for U.S. government agencies and public sector partners.
Virtual machines, virtual networks, databases, cognitive services, etc., are all considered resources in Azure.
An Azure subscription provides authenticated and authorized access to Azure products and services. It also enables you to provision resources. An Azure subscription is associated with an Azure account, which is an identity in Azure Active Directory (Azure AD) or in a directory trusted by Azure AD.
Azure Virtual Desktop is a desktop and application virtualization service that runs in the cloud.
Azure Virtual Desktop provides centralized security management for user desktops through Azure Active Directory (Azure AD). You can enable multi-factor authentication to secure user connections.
Azure Functions is a serverless computing option driven by events that requires no maintenance at the virtual machine or container level. It executes your code when triggered and automatically releases resources when the function completes.
App Service allows you to create and host web applications, background tasks, mobile back-ends, and RESTful APIs in the programming language of your choice.
Azure App Service is an HTTP service for hosting web applications, REST APIs, and mobile back-ends. It supports multiple languages including .NET, .NET Core, Java, Ruby, Node.js, PHP, or Python.
Azure virtual networks and subnets enable Azure resources to communicate with each other, with users over the Internet, and with on-premises client computers.
Azure ExpressRoute allows you to extend your on-premises networks into the Microsoft cloud through a private connection, facilitated by a connectivity provider. This connection is called an ExpressRoute circuit.
ExpressRoute uses the BGP (Border Gateway Protocol). BGP is used to exchange routes between on-premises networks and resources running in Azure. This protocol enables dynamic routing between your local network and services running in the Microsoft cloud.
Azure DNS is a hosting service for DNS domains that provides name resolution using the Microsoft Azure infrastructure.
Locally Redundant Storage (LRS) replicates your data three times within a single data center in the primary region.
For regions that have availability zones, Zone-redundant Storage (ZRS) synchronously replicates your Azure Storage data across three availability zones within the primary region.
The GRS replication (Geo-Redundant Storage) synchronously copies your data three times within a single physical location in the primary region using LRS (Locally Redundant Storage). It then asynchronously copies your data to a single physical location in the secondary region (the paired region) also using LRS.
Azure Blob Storage is the object storage solution for the cloud. It allows storing large amounts of data, such as text or binary data. Azure Blob Storage is unstructured.
Azure Files provides managed file shares in the cloud that are accessible using standard SMB (Server Message Block) or NFS (Network File System) protocols.
Azure Migrate is a service that helps you migrate from an on-premises environment to the cloud.
Azure Data Box is a physical migration service that enables transferring large amounts of data to Azure (80TB max).
AzCopy is a command-line utility that you can use to copy blobs or files to and from your Azure Storage account.
Azure allows you to control access through Azure Role-Based Access Control (Azure RBAC).
Zero Trust is a security model that assumes the worst-case scenario and protects resources accordingly.
Azure Blueprints allows you to standardize the deployment of subscriptions or cloud environments. Each component of the blueprint definition is called an artifact.
Azure Policy is an Azure service that enables you to create, assign, and manage policies to control or audit your resources.
Azure Resource Manager (ARM) is the deployment and management service in Azure. It provides a management layer that allows you to create, update, and delete resources in your Azure account.
Azure Advisor evaluates your Azure resources and provides recommendations to help you improve reliability, security, and performance.
Azure Monitor is a platform that enables you to collect data about your Azure resources, analyze that data, visualize information, and take action based on the insights gained.
To gain access to the whole document, please fill the form (home page) to contact me.