Enhanced Azure Security for sending Emails – November 2017 Update

Azure is committed to stopping SPAM and reducing the customer impact caused by negative IP reputation.  Starting on November 15th, 2017, sending outbound email directly to external domains (such as outlook.com, gmail.com) from a Virtual machine (VM) will be made available only to certain subscription types. Outbound SMTP connections using TCP port 25 (primarily used…


How to monitor and alert potential Disk and VM Level IO Throttling on Linux VMs using ARM

Introduction This blog post will present a step-by-step guide to enable disk performance monitoring on Linux VMs running on Azure using the Linux Diagnostics Extension 3.0 (LAD3). This article is a continuation of a previous post regarding the monitoring of potential Disk and VM level throttling on Windows VM. For a full introduction on what…


How to monitor and alert potential Disk and VM Level IO Throttling on Windows VMs using ARM

This article will present a step-by-step guide to enable disk performance monitoring on Windows VMs running on Azure. Goal is to detect potential Disk Level and VM Level IO Throttling. This guideline is applicable to all Azure VMs deployed with Azure Resource Manager and running any Windows OS version.   Let’s start first by explaining…

1

Troubleshooting Windows activation failures on Azure VMs

Azure VMs will activate using the Azure KMS service if all of the following are true: Windows is configured with the appropriate KMS client setup key for that version of Windows. Windows is configured to use the Azure KMS service kms.core.windows.net:1688. VM has network connectivity to kms.core.windows.net:1688. For example, if the guest firewall or Azure network security group (NSG) rule does…

18

Azure Disk Encryption – How to recover BEK file from Azure Key Vault

In today’s blog, we will demonstrate behavior of Azure Disk Encryption Extension and how it integrates with Key Vault and the Azure Platform to create and read the (BEK) secrets. It will also describe how you can recover the BEK file from the Key Vault in a scenario where you need to recover the data…

2

Microsoft Azure: How to execute a synchronous Azure PowerShell cmdlet multiple times at once, using a single PowerShell session

  Overview Often times, Microsoft Azure customers have requirements to create multiple resources of the same type, and they wish to have these resources created as quickly as possible in a scripted solution. Many of the Azure PowerShell cmdlets are synchronous in nature, where the cmdlet will not return until provisioning is complete. Synchronous operations…


Cross-subscription circuit links that cross the ARM/classic boundary

(contributed by Michael Jolley) While enabling an ARM circuit for use with classic deployments is fairly straightforward on its own, it can be confusing to do so as part of creating cross-subscription circuit links with classic deployments. To do the circuit links, you have to switch between ARM and classic mode while simultaneously switching subscriptions….

2

VM stuck in “Updating” when NSG rule restricts outbound internet connectivity

An Azure VM may experience the following symptoms if you have a network security group (NSG) rule configured to deny outbound internet connectivity: When you create a new VM the status remains on Updating. When you update a VM agent extension on an existing VM, the VM status remains on Updating. When you update a…

0