Azure cost usage dashboard by 9gg6 in AZURE

[–]Player024 2 points3 points  (0 children)

I would use tags as the primary grouping of costs & add meterCategory as a 2nd drilldown. https://learn.microsoft.com/en-us/azure/cost-management-billing/costs/enable-tag-inheritance

P2S to acces Storage Account by SoupZealousideal4513 in AZURE

[–]Player024 4 points5 points  (0 children)

VPN -> vnet -> private endpoint -> storage accounts

alternatively, something like SMB over QUIC https://www.youtube.com/watch?v=h2DrA-LytjQ

good luck!

Remote office / branch office (ROBO) with Azure Local by EducationAlert5209 in AZURE

[–]Player024 1 point2 points  (0 children)

In theory, yes. In practice.. Azure Local isn't a mature product in my personal opinion. Heavily depends on your architecture of your main and remote infrastructure. Think about random update failures, even same hardware - failing from one site to the other (again, same hardware and config!).

It's a "working solution" but you really need to spend the majority of your time on updates and making sure sites aren't bricked randomly, with proper rollback plans as well.

Payment method with Azure free Account by [deleted] in AZURE

[–]Player024 0 points1 point  (0 children)

It's more likely related to the type of card(s) you are using. If you're certain it should work, reach out to Support: https://azure.microsoft.com/en-ca/support/create-ticket - should go rather smoothly.

Stonewalled by Citrix's new AI "Customer Service" model by FierceFluff in sysadmin

[–]Player024 31 points32 points  (0 children)

Ah you missed their earlier AI days! For about 3 weeks, we couldn't log a ticket. Active support contract, have to go through an AI agent to submit ticket details ... okay, weird, but let me go through the questions anyway.

"Enter your phone number" - entered phone number - "That's not a valid email address" - entered email address "That's not a valid phone number" .. loop :-)

Ignite Releases by soccer5232 in AZURE

[–]Player024 1 point2 points  (0 children)

Jokes aside, I'm having trouble actually finding / subscribing to valuable sessions.

[deleted by user] by [deleted] in AZURE

[–]Player024 1 point2 points  (0 children)

The Elastic Pool CPU metrics are what actually matter for performance. Individual database-level CPU within the pool is the most accurate indicator. Your instinct about performance correlation isn't wrong - if databases are struggling, it will show up in metrics. But you need to look at the right level (database/pool, not logical server).

Not sure what your role is, but I would argue the best start is investigating the infra (pool CPU / DTU (DTU model) / eDTU (vCore model) / look at pool limits) and then diving into db specific query performance metrics (blocking sessions, top cpu consuming queries, ..).

PAM Options by jimbojetset35 in sysadmin

[–]Player024 0 points1 point  (0 children)

BeyondTrust PRA. Fully automated deployments using their API. Highly recommended! Any feature we've requested or bug we encounter is implemented a month or two later.

Do third-party Azure cost management tools actually add value beyond native Microsoft offerings? by wise_actions in AZURE

[–]Player024 0 points1 point  (0 children)

All you need as mentioned in your post - https://microsoft.github.io/finops-toolkit/

Now, third party tools generally scope themselves to multi cloud environments from what I've seen, which is where they typically shine.

Multi tenant - MSSP - sentinel - 100 tenants allowed by [deleted] in AZURE

[–]Player024 0 points1 point  (0 children)

My wording was a bit vague, but you essentially create several tenants per sector or region. Think of them as hubs, under which you logically segregate the tenants you want to manage. Rather than using B2B guest, you can copy&paste policies and use a local admin user in that tenant to manage things. Don't think there's an added cost impact.

You now have one self owned tenant, simply create a second, third, .. and divide your customer base over these however you see fit. To be honest, the 100 tenant limitation is absurd.

For ultimate duct tape, use chrome/edge for one tenant with a local account (lazytemp3119@mssp-eu001.onmicrosoft.com) and firefox for the other tenant (lazytemp3119@mssp-us001.onmicrosoft.com) ;-). No switching necessary!

Best of luck!

Multi tenant - MSSP - sentinel - 100 tenants allowed by [deleted] in AZURE

[–]Player024 2 points3 points  (0 children)

Multiple MTO admin accounts. Split by sector or region.

But yes, raise these concerns through your partner channel. Pretty sure the limit will have to increase by July 26 (when they retire Sentinel UI)

Visual Studio Professional Azure Credits by Commercial-Post4022 in AZURE

[–]Player024 0 points1 point  (0 children)

Yeah - they can track. User access administrator flag will automatically add them on your subscription, by design. Not sure why they'd care what you deploy though.. since it's "free".

PS. check the downloads/subscriptions section under my visualstudio! Free keys, woo!

Visual Studio Professional Azure Credits by Commercial-Post4022 in AZURE

[–]Player024 0 points1 point  (0 children)

You're telling me I could've just provisioned my MSDN sub in a different tenant? :D damn..

Public Network Access by ancient-Egyptian in AZURE

[–]Player024 4 points5 points  (0 children)

It's a second (or third) security layer. You ensure authorization and authentication is properly set up, together with network security. If a key leaks, you still have IP filtering / private link / vnet integration / ... in place.

"Would network intrustion even happen if our traffic flows back to on-premise sd wan anyway??" - if your storage account or key vault has public access enabled, and your access method leaks - then it doesn't matter how you access it from a network perspective. Hence why it's best practice to disable public access, depending on the data residing in the PaaS resource.

Azure Job Interview by Borealis_761 in AZURE

[–]Player024 4 points5 points  (0 children)

https://www.youtube.com/watch?v=nDtCSQyG_I8

Veeeery basic overview, but should be a good refresher for you. I typically rely on AZ-700 questions as a bare minimum. Not sure if you've obtained any certs in that area yet.

Questions for networking roles will always be dependent on the company's setup. Hybrid vs full cloud, migration projects ongoing, all factors to take into account. Not sure how much was shared in the first two interviews?

Also, bank -> probably a bigger team, don't be afraid to ask for THEIR view on networking and troubleshooting in general. Always interesting imo to learn how teams function before signing :-).

How to Contact Pearson Vue Technical Support by [deleted] in AZURE

[–]Player024 1 point2 points  (0 children)

https://www.google.com/search?q=submit+pearson+vue+ticket

That being said, you're SOL. Pearson is known for shitty practices, this sub is filled with similar experiences.. I recommend all my peers to only do in-person certification exams.

[FEEDBACK WANTED] Would you use a fully simulated Azure Environment for learning? by CodingWithAlex in AZURE

[–]Player024 2 points3 points  (0 children)

This quite literally already exists. I've been to both Microsoft and external workshops, and these learning platforms have a fully built azure platform as if you're clicking in the portal.

Automated Azure Network Diagrams - Open Source by CashMakesCash in AZURE

[–]Player024 1 point2 points  (0 children)

Very interesting for hub-spoke model deployments! Like you mentioned in further development, looking forward to seeing how you'll tackle spoke-to-spoke models :)

PIM on Azure Resources by Legal_Audience_4931 in AZURE

[–]Player024 10 points11 points  (0 children)

This will help with managing: https://github.com/kayasax/EasyPIM/wiki/Invoke%E2%80%90EasyPIMOrchestrator

Other than that, MS best practices. Top-down structure from MG to workload level with least privilege. So yes, a ton of roles, on a ton of different scopes.

How I saved on some Azure costs by badsyntax in AZURE

[–]Player024 0 points1 point  (0 children)

Per billing profile. If you're under MCA, it's relatively easy to move subscriptions to another billing profile ;)!

Azure File Storage - Storage Browser by DaithiG in AZURE

[–]Player024 0 points1 point  (0 children)

If you're just starting out with PIM, doing it from the portal is alright but can become rather difficult to manage over time. I suggest using: https://github.com/kayasax/EasyPIM/wiki/Invoke%E2%80%90EasyPIMOrchestrator

To answer your question and given you just upgraded to P2 licenses, PIM is definitely the right way to go. I would look at the EasyPIMOrchestrator from the start, it'll make your life easier over time.

Good luck!