E-Book, Englisch, 298 Seiten
Maxwell Azure Arc Systems Management
1. ed
ISBN: 978-1-4842-9480-2
Verlag: Apress
Format: PDF
Kopierschutz: 1 - PDF Watermark
Governance and Administration of Multi-cloud and Hybrid IT Estates
E-Book, Englisch, 298 Seiten
ISBN: 978-1-4842-9480-2
Verlag: Apress
Format: PDF
Kopierschutz: 1 - PDF Watermark
This book is for enterprise and solution architects, systems integrators, and anyone managing enterprise-scale, multi-cloud or hybrid IT landscapes. The book examines usage of Azure Arc for governance and systems management with security as an overarching theme. It is not an implementation manual but provides high-level guidance on best practices and links to detailed guidance. It offers insight into the types of problems that Azure Arc can solve, and will help you determine whether it is the right choice for your organization.
Industry leaders have made serious investments in the design of control plane products to address these gaps with varying approaches and degrees of success. Azure Arc is designed to provide a consolidated view of assets such as databases and Kubernetes installations across major cloud providers, edge locations, and customer-owned datacenters. It facilitates deployment of new infrastructure, patching and upgrades, monitoring, policy, and security controls for assets living on-premises or in competitor clouds as if they were native to Azure. While competitive products exist, at this writing none have the flexibility and reach of Arc to effectively manage very large hybrid estates.
Readers will appreciate the author’s approach of walking through typical enterprise computing scenarios while listing industry- or scenario-specific challenges that are difficult to overcome, and then reinforcing understanding by restating the challenges while explaining how Azure Arc can be utilized to remediate them.
What You Will Learn
- Discover what Azure Arc is, the types of problems it is intended to solve, and how to map your requirements to its capabilities
- Streamline and secure large Arc-enabled Kubernetes deployments via modern GitOps practices
- Use Azure Arc to consolidate management across a broad range of hybrid and multi-cloud ecosystems through policy-driven governance
- Apply monitoring and automation to defend systems against security threats that are beyond the ability of manual administration to deflect
- Uncover practical guidance that is written in a way that makes basic precepts approachable to non-technical stakeholders and then branches out into areas that will offer advanced readers new insights and consolidate a broad topic into a usable direction
Enterprise and solution architects, systems integrators, and anyone else looking to solve enterprise-scale administration problems across a multi-cloud or hybrid architecture
Autoren/Hrsg.
Weitere Infos & Material
1;Table of Contents;5
2;About the Author;9
3;About the Technical Reviewer;10
4;Introduction;11
5;Chapter 1: The Challenges of Enterprise-Scale Hybrid and Multi-cloud Architectures;12
5.1;The Challenges of Hybrid and Multi-cloud Architectures in a Modern Application Stack;15
5.1.1;DevOps;16
5.1.2;Governance;17
5.1.3;Security;18
5.1.4;Modernization;20
5.1.5;Upgrades;22
5.1.6;Monitoring;23
5.1.7;Management;24
6;Chapter 2: What Is Azure Arc?;25
6.1;Arc – A Single Control Plane Across Multi-cloud and Hybrid Architectures;25
6.2;Internal Architecture;27
6.2.1;Live in a Managed World – On-Premise;31
6.3;Advanced Usage Scenarios;33
6.3.1;DevOps;33
6.3.2;Azure Stack HCI, Edge, and Hub;35
6.3.3;IoT and Edge Security;39
6.3.4;Azure Arc Enabled for Machine Learning;40
6.3.5;Arc-Enabled Kubernetes;41
7;Chapter 3: Overview of Benefits of Arc in the Enterprise;43
7.1;DevOps;44
7.2;GitOps;51
7.3;Governance and Policy;53
7.4;Modernization;56
7.5;Upgrades;62
8;Chapter 4: Securing the Enterprise with Arc;66
8.1;Security As Job One;66
8.2;Monitoring – Light in the Corners of the IT Universe;72
8.2.1;Integration with Lighthouse;73
8.2.2;Private Link;75
8.3;Security;77
8.3.1;Secure Access Service Edge (SASE);77
8.3.2;Role-Based Access Control (RBAC);79
8.3.3;Security Risks Resulting from Arc;83
8.3.4;Myriad Risk Factors Require Thoughtful Design;83
9;Chapter 5: Enterprise DBS Management and Arc;87
9.1;Introduction;87
9.1.1;Data Proliferation and Our Planet;89
9.1.2;Data Integrity;91
9.2;Distributed Computing and Your Data;94
9.2.1;Security Enhancements for Arc-Enabled Data Services;103
9.2.2;SQL Server 2022;105
9.2.3;PostgreSQL on Azure;107
9.2.4;Azure Data Studio;111
9.2.5;Ease the Challenges of Database Management with Arc;115
10;Chapter 6: Managing Kubernetes Workloads in Hybrid or Multi-cloud Data Centers;118
10.1;Summary of Kubernetes Capabilities per Their Docs;122
10.2;Arc-Enabled Kubernetes;125
10.2.1;Running a Successful Production Trial;126
10.3;Kubernetes Deployment Paths for EKS, GKS, and On-Premise Clusters;127
10.3.1;Amazon’s Elastic Kubernetes Service [EKS];128
10.3.2;Google Kubernetes Engine [GKE];129
10.3.3;On-Premise Kubernetes;130
10.4;Conclusion;132
10.5;What About Google Anthos?;132
10.6;Reaping the Benefits of Kubernetes Running Under Arc;133
10.6.1;GitOps with Arc;134
10.6.2;Proactive Security for Arc-Enabled Kubernetes;140
10.6.3;Custom Locations for Arc-Enabled Kubernetes;147
11;Chapter 7: Policy and Governance of Hybrid and Multi-cloud Infrastructure;150
11.1;Introduction;150
11.1.1;Policy Scopes in Azure;151
11.1.2;Policy Baselines for Kubernetes;156
11.1.2.1;Network Policies;163
11.1.2.2;Policies Governing Containers;166
11.1.2.3;Data Policies;172
11.1.2.4;Remediating Existing Resources via Policy;174
11.1.2.5;GitOps and Policy Development for Kubernetes;175
11.1.3;Policy for IT Consumers;178
11.1.3.1;Policy and FinOps;181
11.1.3.2;Effective Policy;182
12;Chapter 8: Monitoring and Process Automation via the Arc Control Plane;184
12.1;Monitoring for Discovery and Validation;184
12.1.1;Application Performance Monitoring11;189
12.1.2;Monitoring for Security;193
12.1.3;Monitoring and Data;199
12.1.4;Monitoring the Internet of Things [IoT];206
12.1.5;Creating a Policy Feedback Loop;215
12.1.6;Cost Monitoring;218
13;Chapter 9: Automation in the Era of ML and AI;223
13.1;Automation in the Era of AI;223
13.2;Acquiring, Maintaining, and Modeling Your Actionable Data;226
13.2.1;Model Feeding and Care;235
13.2.2;Bias and the Greater Impact of Model Corruption;241
13.2.3;Mitigating Environmental Impacts of AI;250
13.2.4;Capturing the Money in Your Models;252
14;Chapter 10: Azure Arc – History and Horizons;257
14.1;The Metamorphose of Enterprise Computing Platforms;257
14.2;What Is the Fulcrum for Arc?;260
14.2.1;Azure Arc Landing Zones;268
14.2.2;Azure Lighthouse;270
14.3;Arc Horizons;272
14.3.1;VMware Shops Get the Love They Deserve;272
14.3.2;Resources for Arc Adoption;273
14.3.3;Arc Adoption;279
14.3.4;Summary;280
15;Index;284
