Scribd
Upload
106 views33 pages

Planning and Implementing Data Services

This module covered planning and implementing data services in Microsoft Azure. It discussed Azure SQL Database as a PaaS relational data store built on SQL Server technologies. It described how to provision, secure, migrate databases to, monitor, and ensure business continuity of Azure SQL databases. Hands-on exercises demonstrated creating, securing, migrating, restoring, and monitoring Azure SQL databases.

Uploaded by

Alok Sharma
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
106 views33 pages

Planning and Implementing Data Services

This module covered planning and implementing data services in Microsoft Azure. It discussed Azure SQL Database as a PaaS relational data store built on SQL Server technologies. It described how to provision, secure, migrate databases to, monitor, and ensure business continuity of Azure SQL databases. Hands-on exercises demonstrated creating, securing, migrating, restoring, and monitoring Azure SQL databases.

Uploaded by

Alok Sharma
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
You are on page 1/ 33

Module 7

Planning and Implementing Data


Services
Module Overview

Data Services in Microsoft Azure


Implementing Azure SQL Database
Managing Azure SQL Database Security
Monitoring Azure SQL Database
• Managing Azure SQL Database Business
Continuity
Lesson 1: Data Services in Microsoft Azure

Demonstration: Preparing the Environment


Data Services as Components of Azure
Overview of Data Services in Microsoft Azure
• Azure SQL Database versus SQL Server
Demonstration: Preparing the Environment

To prepare the lab environment for this module,


you must:
• Sign in to Your Microsoft Azure subscription
• Enable preview features
• Prepare the Azure environment
Data Services as Components of Azure

Compute Data Services Network Services


Virtual Machines Storage Virtual Networks

PaaS Cloud Services SQL Database Traffic Manager

Websites Backup ExpressRoute

Mobile Services Site Recovery

App Services
Media Services Active Directory Automation

Service Bus MFA CDNs

Push Notifications
Overview of Data Services in Microsoft Azure

• Application Data Storage Services


• Azure Storage
• Cache
• Azure SQL Database
• Virtual Machines

• Data Processing and Analysis Services


• HDInsight
• Machine Learning

• Data Infrastructure Services


• StorSimple
• Backup
• Site Recovery
Azure SQL Database vs SQL Server

• Unsupported features include:


• SQLCLR
• Global temporary tables
• Service broker
• Some system tables and dynamic management views
• Trace flags
• Database isolation
• You cannot switch database context between user databases
• Distributed queries are not supported
• Common operations tasks
• Creating databases
• Configuring security
• Managing data recovery
Lesson 2: Implementing Azure SQL Database

Azure SQL Database Architecture


Provisioning Azure SQL Database
Tools for Azure SQL Database
Migrating a SQL Server Database to Azure SQL
Database
• Demonstration: Using Azure SQL Database
Azure SQL Database Architecture

Azure Subscription

Resource Group

SQL Database Server

Master Isolated user


database databases

• Azure SQL Database is:


• a PaaS relational data store
• built on SQL Server technologies
Provisioning Azure SQL Database

Creating a Database: Creating a Server:


• Name Server name
• Server Administrative login
• Service Tier credentials
• Performance level Geographical region
• Maximum size Enable access from
• Collation Windows Azure
• Resource group services
Enable remote access
by defining a firewall
rule for specific IP
addresses
Tools for Azure SQL Database

• Azure management portals


• Full portal
• Preview portal

• SQL Server Management Studio


• SQLCMD
• Visual Studio
Migrating a SQL Server Database to Azure SQL Database

Transact-SQL Script

DAC Package

Deployment Wizard
in
SQL Server Management Studio
Demonstration: Using Azure SQL Database

In this demonstration, you will see how to:


• Create an Azure SQL Database
• Configure firewall settings
• Use SQL Server Management Studio
• Configure a client connection string
Lesson 3: Managing Azure SQL Database Security

Overview of Azure SQL Database Security


Managing Firewall Rules
Managing Logins and Users
Managing Role Membership and Permissions
• Demonstration: Configuring Security
Overview of Azure SQL Database Security

Server Level:
Logins Master database
roles

Firewall Rules

Database Level:
Users Database
roles

Firewall Rules

Permissions
Schema and Object Level:
Managing Firewall Rules

• Server-Level Firewall Rules


• View in sys.firewall_rules
• Manage using sp_set_firewall_rule and
sp_delete_firewall_rule
• Database-Level Firewall Rules
• Allow IP ranges to access individual databases
• View in sys.database_firewall_rules
• Manage using sp_set_database_firewall_rule and
sp_delete_database_firewall_rule
Managing Logins and Users

• Managing Logins
• Defined in the master database
• Requires login name and password
• Fully-qualified name is <login_name>@<server_name>
CREATE LOGIN MyLogin
WITH PASSWORD = 'Pa$$w0rd';

• Managing Users
• Permits a login to access a database
CREATE USER MyUser
FROM LOGIN MyLogin;
Managing Role Membership and Permissions

• Managing Role Membership


• Database roles are defined in each database
• Roles with server-level permissions are defined in the
master database
EXEC sp_addrolemember 'dbmanager', 'MyUser';
EXEC sp_addrolemember 'db_datareader', 'MyUser';

• Managing Permissions
• Use the same GRANT, REVOKE, and DENY semantics as
SQL Server
• Use roles to control access, and only use explicit
permissions to override where necessary
DENY SELECT ON dbo.MyTable TO MyUser;
Demonstration: Configuring Security

In this demonstration, you will see how to:


• Manage firewalls
• Manage logins, users, roles, and permissions
Lesson 4: Monitoring Azure SQL Database

SQL Database Metrics and Alerts


Dynamic Management Views
SQL Database Auditing
• Demonstration: Monitoring SQL Database
SQL Database Metrics and Alerts

• Database metric charts


• Successful and failed logins
• Storage utilization

• Alerts
• Send an automated email notification when a threshold
value is exceeded
Dynamic Management Views

• System metadata views


• Current activity
• Historic activity

• Commonly used to troubleshoot concurrency


and performance issues

SELECT s.program_name, s.status, t.transaction_begin_time,


t.state
FROM sys.dm_tran_sessions s
JOIN sys.dm_tran_session_transaction st
ON s.session_id = st.session_id
JOIN sys.dm_tran_active_transactions t
ON st.transaction_id = t.transaction_id
SQL Database Auditing

1. Enable auditing for a database


• Audit records are stored in an Azure Storage table

2. Use secure connection strings


• <server_name>.database.secure.windows.net

3. View audited events


• Summary view in Azure portal
• Download as Excel workbook

Secure Connection

Client App SQL Database Azure Storage


(Table)
Demonstration: Monitoring SQL Database

In this demonstration, you will see how to:


• View SQL Database metrics
• Configure SQL Database auditing
Lesson 5: Managing Azure SQL Database
Business Continuity

Database Copy and Export


Self-Service Restore
Geo-Replication
• Demonstration: Managing Data Recovery and
High Availability
Database Copy and Export

1. Export a copy of the database at periodic


intervals
2. Store the exported .bacpac file in a storage
account
3. Import the copied database in the event of a
database, server, or data centre failure
Self-Service Restore

• Azure automatically creates periodic


backups in a remote data center
• You can restore databases to a previous
point in time:
• Basic: daily restore point retained for 24 hours
• Standard: restore to a specific point in time within
seven days
• Premium: restore to a specific point in time within 35
days
Geo-Replication

• Continuous copy of a primary database to one or


more secondary databases in remote data
centers
• Standard edition secondary databases are offline
redundant copies
• Premium edition secondary databases can be read-only

• Failover procedure:
1. Bring the secondary online
2. Modify application connection strings
Demonstration: Managing Data Recovery and
High Availability

In this demonstration, you will see how to:


• Restore a database
• Configure Geo-Replication
Lab: Planning and Implementing Data Services

Exercise 1: Creating, Securing, and Monitoring an


Azure SQL Database
Exercise 2: Migrating a SQL Server Database to
Azure SQL Database
• Exercise 3: Restoring a Database

Logon Information
Virtual Machine: 20533B-MIA-CL1
User Name: Student
Password: Pa$$w0rd

Estimated Time: 60 minutes


Lab Scenario

Managers at A. Datum are planning to migrate


some of the company’s application databases to
the cloud.
To achieve this goal, you plan to use Microsoft
Azure SQL Database. You have been asked to test
SQL Database by creating a new database of
A. Datum servers and by migrating sample data
from the A. Datum customer relationship
management system. Managers have asked you to
investigate how SQL Database will support an
existing custom application used with A. Datum,
as well as disaster recovery features.
Lab Review

• If the SalesApp web application was deployed to a


server with a fixed public IP address, how could
you enable it to access the sales database without
allowing it to access the master database or any
other databases on the server?
Module Review and Takeaways

• Review Question(s)

You might also like

pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy