Azure Data Share is a new data service aimed at file based data sharing across organizations leveraging Azure Storage or Azure Data Lake. It implements a publish and subscription model that should help regulate any file transfer between organizations. It is supposed to substitute FTP or Web file transfers, the only drawback I see is that you must use storage account APIs to process the received data programmatically, so existing runbooks and automations must be changed. Azure data Share is currently in preview.
Azure Lighthouse is the other big announcement of the week, the service is primarily focused on partners providing managed services for Azure. It is not a case next week will be the Inspire 2019 week. The interesting feature for non partners is cross tenant monitoring and data access, this is a huge step forward for enterprises with multiple tenants but in need of a common managing (i.e. policies, blueprints, …) and monitoring (i.e. Azure Monitor, Security Center, Sentinel, …) point of control.
Azure Update Management adds in GA computer groups for systems not running in Azure, this features brings non-azure systems on par with those on Azure in terms of:
- Dynamic targeting for an update deployment.
- Preview capabilities to verify the set of machines that will be targeted with the dynamic group targeting.
The third big announcement is Azure SQL Database service has updated its service level agreement (SLA) to provide up to 99.995% availability. In addition, for the Business critical service tier it now offers a 100% SLA. Astonishing.
Azure Migrate is now GA, it promises to be the starting point for your Azure migrations in lift and shift scenarios. This is closely connected to the Azure Migration Program that includes the prescriptive guides and the tools aimed at a successful Azure migration. You know what? Except for very limited cases I don’t believe in lift&shift.
One of the business unit under my control as Technology Director is what we call unified endpoint management. In this area the dualism between Intune and SCCM is something I will have to manage for years to come. Intune added two interesting features:
- general availability of security baselines
- general availability of administrative templates (aka GPO replacement)
On the SCCM side, that is still by far the tool we use to deploy corporate Windows 10 based endpoints, Desktop Analytics entered the public preview phase.
Larger, more powerful standard file shares for Azure Files now in preview. Now you can have shares up to 100 TiB with up to 10000 IOPS, the single file limit is still set at 1 TiB.
Azure Firewall adds several capabilities and updates both in general availability and preview.
- Multiple public IPs (up to 100)
- Availability Zones now generally available
- SQL FQDN filtering, this allows you to limit access from your VNets to only the specified SQL server instances.
- Azure HDInsight (HDI) FQDN tag
- Central management using partner solutions (Barracuda, Algosec CloudFlow, Tufin Orca)
Azure Ephemeral OS Disk is now Generally Available
Azure Data Box Heavy is now generally available