Archive
GPO and PowerShell support in #AzureAD and #Intune? Tech Preview released – #EnvokeIT Workspace Client
Finally… we’re pleased to announce that we now have released the Tech Preview of the EnvokeIT Workspace Client service!! 🙂
What is this and why did we build this SaaS device configuration service?
Have you also tried to roll-out Windows 10 with Azure AD and potentially also Microsoft Intune and lack capabilities like Group Polices to control registry and files or to run PowerShell scripts?
We’ve solved that for you! The EnvokeIT Workspace Client is a device configuration client built on the cloud and for the cloud! Now you have all the capabilities that you require to deliver a modern Windows 10 Out-of-the-box delivery using Azure AD!
Have a look at our “quick” overview video or just sign up for a free Tech Preview tenant and you’ll be up and running within minutes!
The service is built for Windows on Azure and leverages the latest technology to ensure that you can adopt the Windows and Azure AD architecture without lacking what you need from good old Group Policies!
Here are some examples of what the service can solve for you:
- You want to remove the Windows “bloatware” for all your Windows 10 devices, no problem
- If you want to specify and ensure that all your users have the same company background, you can do that!
- If you need to configure application settings for all users, no problem!
- Do you need to have an updated User Guides or other material easily pushed to your users desktop, no problem!
- If your web applications require that they are put in Local Intranet or Trusted Sites in your browsers, then you can push that out!
- Does your Windows application require specific local settings files to be pushed to the clients, no worries we’ve got you covered there as well!
- Do you need to push out Microsoft Edge policies you can do that as well! For a complete list of built-in Group Policy objects that you can configure see this list.
- If you need to do special configuration of the OS, applications or user settings you can do that through PowerShell scripts, you write the scripts and our agent makes sure it’s run in user or system context. Configuration possibilities are endless with PowerShell script support!
Read more at the site or sign up for your own trial tenant!
https://cloudclientportal.envokeit.com
http://www.envokeit.com/en/project/envokeit-workspace-client/
And if you need any assistance in your Windows 10, Office 365 or Enterprise Mobility Project just contact us at EnvokeIT: info@envokeit.com or send an email to me directly: richard.egenas at envokeit.com
//Richard
#Azure November newsletter
Once again I’m amazed of the pace that Microsoft releases new innovative and great service in Azure! Just love it! 🙂
Free e-book: Enterprise Cloud Strategy
What if you were able to achieve both efficiency and innovation in your business domains and applications across your entire portfolio? What if you could take advantage of the cloud and all its resources and features? With a good road map and strategy, you can. Download the free e-book, Enterprise Cloud Strategy, and find ways to build your own road map to success.
Advancing our ambition to democratize artificial intelligence
Microsoft recently announced a new partnership with OpenAI, a nonprofit AI research organization co-founded by Elon Musk, Sam Altman, Greg Brockman and Ilya Sutskever. Together we hope to make significant contributions to advance the field of AI, and make it more accessible to every developer and every organization. Read more about the partnership and why OpenAI chose Azure as the primary cloud platform from Harry Shum, Microsoft Executive Vice President of AI and Research and Sam Altman, co-founder, OpenAI (and be sure to watch the video about why they chose Azure). Also, visit the Azure Blog for more information.
Connect(); // 2016: Keynotes and technical sessions available on demand
Missed the Microsoft Connect(); developer event? Catch up on all the news and keynotes or dive right into any of the technical sessions on Visual Studio, .NET, Xamarin, DevOps, Azure, Data with Intelligent Apps, UWP, developing for Office and more! Browse the on-demand content.
G-Series instances now available for Azure Cloud Services
G-Series instances are available in Azure Cloud Services in all regions where G-Series instances for Azure Virtual Machines are currently offered. They feature the latest Intel Xeon processor E5 v3 family and provide unparalleled computational performance, substantial memory, and robust local solid-state drive (SSD) storage.
VMware backup now available in Azure Backup
VMware backup in Azure Backup helps protect virtual machines running on the VMware platform, on-premises or in the cloud. If you run backups on-premises, this new capability helps you meet requirements for operational recovery. If you back up your information to the cloud, you can meet long-term compliance rules and have an offsite copy of your data. For more information, visit the Operations Management Suite | Protection & Recovery webpage.
In-Memory OLTP for Azure SQL Database generally available
You can use In-Memory OLTP, a feature of Azure SQL Database, to achieve incredible performance gains (up to 30 times) for transaction processing and data ingestion in Premium databases, with no or minimal changes to the application. Memory-optimized tables, memory-optimized table types, and natively compiled T-SQL modules are now available in all Premium databases, including databases in Premium elastic pools. For more information, read the Microsoft Azure SQL Database provides unparalleled performance with In-Memory technologies blog post.
Azure SQL Database Long-Term Retention in public preview
For applications with compliance or operational requirements to retain data, Azure SQL Database now offers Long-Term Retention (LTR). With just a few clicks, you can easily enable your databases to create weekly backups stored in your own Azure Backup vault and extend the retention period built into SQL Database from 35 days to up to 10 years. The backups in the vault are restorable and are automatically deleted after your configured retention period. For more information, visit the Azure Blog.
Azure Content Delivery Network adds new features for better performance, real-time management, and mobile users
Azure Content Delivery Network is a multi-CDN platform that offers massively scalable, secure delivery of content with accelerated performance. New capabilities include the ability to set up real-time alerts about delivery anomalies, such as bandwidth and cache status, and a mobile rules engine where you can customize rules and features targeted to mobile devices, such as device model and operating system. Visit the Azure Blog for more information.
Azure Active Directory Domain Services generally available
Azure Active Directory Domain Services offers scalable, high-performance, managed services such as domain join, LDAP, Kerberos, Windows Integrated Authentication, and Group Policy support. With the click of a button, administrators can enable managed domain services for Linux and Windows virtual machines and directory-aware applications deployed in Azure infrastructure services. By maintaining compatibility with Windows Server Active Directory, Azure Active Directory Domain Services gives you an easy way to migrate traditional on-premises applications to the cloud.
Azure HDInsight introduces advanced security capabilities in public preview
Azure HDInsight has several new key security capabilities. It integrates with Azure Active Directory and Azure Active Directory Domain Services for enterprise-grade authentication and identity management. HDInsight also integrates with Apache Ranger for a central policy and management portal where administrators can maintain fine-grained control policies over Hadoop data access, components, and services. Data processed by HDInsight is stored in Azure Data Lake Store or Azure Storage. Both offer server-side encryption to secure data at rest.
Azure Data Factory adds more connectors and achieves higher speeds
Azure Data Factory allows you to bring data from a rich variety of locations into Azure for advanced analytics and predictive modeling. We recently added support for FTP/S, Amazon S3, Amazon Redshift, and Parquet file format. Load speeds have also been greatly enhanced: you can now load into Azure SQL Data Warehouse at 1.2 GBps and load into Azure Data Lake Store and Azure Blob Storage at over 1.0 GBps.
Azure Analysis Services in public preview
Built on the proven analytics engine in Microsoft SQL Server Analysis Services, Azure Analysis Services delivers enterprise-grade Business Intelligence semantic modeling capabilities with the scale, flexibility, and management benefits of the cloud. For more information, visit the Azure Blog.
Microsoft Azure IaaS Operations Guidance – #AAD, #RBAC, #ARM, #Microsoft, #Azure
Here you can find a ton of great guidance material for Azure operations by mzbowe! Really good summary!
This is a collection of Azure Infrastructure installation and operational guidance resources I provide to my customers. By keeping these links up to date with each engagement, all of my customers may benefit. Hopefully you can too! The latest Azure updates will always be at Azure service updates. Make it part of your operational procedure to review that monthly, if not weekly! In 2015, there were over 500 updates. Wow!
The goal of this guide to highlight core installation and operational procedures for an Azure IaaS deployment which predominantly will consist of Compute, Network and Storage resources. This article Azure Infrastructure Services Implementation Guidelines, gives a pretty good run down of what needs to be created and in what order. The resources I will keep updated below pretty much follow most of those resources in the last link. But for now, there is a very important piece of that puzzle missing. For the newer Azure Resource Manager (ARM) model of deployment, we need to plan, design and create Azure Resource Groups. Once we have Resource Groups, we can delegate administration with Role Based Access Control (RBAC).
Besides all this, if you just need to ramp up and learn more on Azure, go to the Azure Learning Paths page. Check it out and learn something new! I also have my Azure Certification resources (Slides and Videos) from MS Ignite 2015, to get you certified and ready to go!
- aka.ma/Certification/70-533 | Microsoft Azure Infrastructure Certification Prep
- aka.ma/Certification/70-534 | Microsoft Azure Architecture Certification Prep
Azure Active Directory
- How Azure subscriptions are associated with Azure Active Directory
- This is an important link to read and understand. Microsoft Azure does not equal Azure Active Directory. If you create a brand new Azure subscription, you will have an Azure Active Directory tenant by default. But, sometimes companies have Office 365 first, without an Azure Subscription. With Office 365, you get an Azure Active Directory tenant for free. That is your cloud directory. It can be standalone. Or many companies will synchronize or federate with their on-premises identities. But, an Azure AD tenant for Office 265 is not necessarily tied to an Azure Subscription. An Azure subscription is just another service like Office 365. If your company is going to have both, then the KEY goal is that both of those connect to the same Azure Active Directory tenant. So if you started Office 365 and made the primary domain name contoso.com, then when you login to create an Azure subscription, make sure to do so with a Global Admin account in the contoso.com Azure AD tenant that you use to administer Office 365. See Manage the directory for your Office 365 subscription in Azure.
- Azure Active Directory editions
- Before you get too excited about everything you discover on the azure website, make sure you know what version you have. There are many flavors and enterprise agreements. Depending on the version you have, you may have more or less services available to you. Azure Active Directory Premium will get you the whole kitchen sink. But there are different ways to get that as well e.g. an Enterprise Mobility Suite license.
- Hybrid Identity Design Considerations
- The Four Pillars of Identity – Identity Management in the Age of Hybrid IT
- Azure Active Directory Authentication Protocols
- Authentication Scenarios for Azure AD
- Azure Active Directory federation compatibility list: third-party identity providers that can be used to implement single sign-on
- Azure AD terminology
- Getting started with Azure Multi-Factor Authentication in the cloud
- Azure AD Privileged Identity Management
Azure AD Operational Guidance
- Administer your Azure AD directory
- Assigning administrator roles in Azure Active Directory (Azure AD)
- Create or edit users in Azure Active Directory
- Azure AD Password Reset for Users and Admins
- Managing access to resources with Azure Active Directory groups
- View your access and usage reports which is part of
Microsoft announcing SQL Server on Linux – #SQL, #Microsoft, #DB, #PaaS
This is sooo cool and further shows how Microsoft has changed over the past years!
It’s been an incredible year for the data business at Microsoft and an incredible year for data across the industry. This Thursday at our Data Driven event in New York, we will kick off a wave of launch activities for SQL Server 2016 with general availability later this year. This is the most significant release of SQL Server that we have ever done, and brings with it some fantastic new capabilities. SQL Server 2016 delivers:
- Groundbreaking security encryption capabilities that enable data to always be encrypted at rest, in motion and in-memory to deliver maximum security protection
- In-memory database support for every workload with performance increases up to 30-100x
- Incredible Data Warehousing performance with the #1, #2 and #3 TPC-H 10 Terabyte benchmarks for non-clustered performance, and as of March 7, the #1 SAP SD Two-Tier performance benchmark on Windows1
- Business Intelligence for every employee on every device – including new mobile BI support for iOS, Android and Windows Phone devices
- Advanced analytics using our new R support that enables customers to do real-time predictive analytics on both operational and analytic data
- Unique cloud capabilities that enable customers to deploy hybrid architectures that partition data workloads across on-premises and cloud based systems to save costs and increase agility
These improvements, and many more, are all built into SQL Server and bring you not just a new database but a complete platform for data management, business analytics and intelligent apps – one that can be used in a consistent way across both on-premises and the cloud. In fact, over the last year we’ve been using the SQL Server 2016 code-base to run in production more than 1.4 million SQL Databases in the cloud using our Azure SQL Database as a Service offering, and this real-world experience has made SQL Server 2016 an incredibly robust and battle-hardened data platform.
Gartner recently named Microsoft as leading the industry in their Magic Quadrant for Operational Database Management Systems in both execution and vision. We’re also a leader in Gartner’s Magic Quadrant for Data Warehouse and Data Management Solutions for Analytics, and Magic Quadrant for Business Intelligence and Analytics Platforms, as well as leading in vision in the Magic Quadrant for Advanced Analytics Platforms.
Extending SQL Server to Also Now Run on Linux
Today I’m excited to announce our plans to bring SQL Server to Linux as well. This will enable SQL Server to deliver a consistent data platform across Windows Server and Linux, as well as on-premises and cloud. We are bringing the core relational database capabilities to preview today, and are targeting availability in mid-2017. Read more…
Microsoft acquires Xamarin! – #Microsoft, #Xamarin, #Mobility, #EnvokeIT
This is really cool and something that I personally love! Great move by Microsoft!! 🙂
If you have any questions about this acquisition or if you need assistance with your mobile app development contact us at EnvokeIT!
Microsoft to acquire Xamarin and empower more developers to build apps on any device
As the role of mobile devices in people’s lives expands even further, mobile app developers have become a driving force for software innovation. At Microsoft, we are working to enable even greater developer opportunity and innovation by providing the best experiences to all developers, on any device, with powerful tools, an open platform and a global cloud.
As part of this commitment I am pleased to announce today that Microsoft has signed an agreement to acquire Xamarin, a leading platform provider for mobile app development.
In conjunction with Visual Studio, Xamarin provides a rich mobile development offering that enables developers to build mobile apps using C# and deliver fully native mobile app experiences to all major devices – including iOS, Android, and Windows. Xamarin’s approach enables developers to take advantage of the productivity and power of .NET to build mobile apps, and to use C# to write to the full set of native APIs and mobile capabilities provided by each device platform. This enables developers to easily share common app code across their iOS, Android and Windows apps while still delivering fully native experiences for each of the platforms. Xamarin’s unique solution has fueled amazing growth for more than four years.
Xamarin has more than 15,000 customers in 120 countries, including more than one hundred Fortune 500 companies – and more than 1.3 million unique developers have taken advantage of their offering. Top enterprises such as Alaska Airlines, Coca-Cola Bottling, Thermo Fisher, Honeywell and JetBlue use Xamarin, as do gaming companies like SuperGiant Games and Gummy Drop. Through Xamarin Test Cloud, all types of mobile developers—C#, Objective-C, Java and hybrid app builders —can also test and improve the quality of apps using thousands of cloud-hosted phones and devices. Xamarin was recently named one of the top startups that help run the Internet.
Continue reading here!
//Richard
Microsoft and AzureCon delivers! Love it! – #Azure, #AzureCon, #EnvokeIT, #IoT, #SaaS, #PaaS
I really love the way that Microsoft and Azure delivers! It’s so amazing with all the PaaS and SaaS offerings they now have on top of the traditional IaaS delivery. There is no other cloud provider out there that delivers anything near it! I’m amazed and so happy to be a part of this journey!
If you didn’t have the time to look at AzureCon you have a lot of great videos and topics to go through!!
Here is a short overview of the many great things released and presented:
- General Availability of 3 new Azure regions in India
- Announcing new N-series of Virtual Machines with GPU capabilities
- Announcing Azure IoT Suite available to purchase
- Announcing Azure Container Service
- Announcing Azure Security Center
Watching the Videos
All of the talks presented at AzureCon (including the 60 breakout talks) are now available to watch online. You can browse and watch all of the sessions here.
Announcing General Availability of 3 new Azure regions in India
Yesterday we announced the general availability of our new India regions: Mumbai (West), Chennai (South) and Pune (Central). They are now available for you to deploy solutions into.
This brings our worldwide presence of Azure regions up to 24 regions, more than AWS and Google combined. Over 125 customers and partners have been participating in the private preview of our new India regions. We are seeing tremendous interest from industry sectors like Public Sector, Banking Financial Services, Insurance and Healthcare whose cloud adoption has been restricted by data residency requirements. You can all now deploy your solutions too.
Announcing N-series of Virtual Machines with GPU Support
This week we announced our new N-series family of Azure Virtual Machines that enable GPU capabilities. Featuring NVidia’s best of breed Tesla GPUs, these Virtual Machines will help you run a variety of workloads ranging from remote visualization to machine learning to analytics.
The N-series VMs feature NVidia’s flagship GPU, the K80 which is well supported by NVidia’s CUDA development community. N-series will also have VM configurations featuring the latest M60 which was recently announced by NVidia. With support for M60, Azure becomes the first hyperscale cloud provider to bring the capabilities of NVidia’s Quadro High End Graphics Support to the cloud. In addition, N-series combines GPU capabilities with the superfast RDMA interconnect so you can run multi-machine, multi-GPU workloads such as Deep Learning and Skype Translator Training.
Announcing Azure Security Center
This week we announced the new Azure Security Center—a new Azure service that gives you visibility and control of the security of your Azure resources, and helps you stay ahead of threats and attacks. Azure is the first cloud platform to provide unified security management with capabilities that help you prevent, detect, and respond to threats.
The Azure Security Center provides a unified view of your security state, so your team and/or your organization’s security specialists can get the information they need to evaluate risk across the workloads they run in the cloud. Based on customizable policy, the service can provide recommendations. For example, the policy might be that all web applications should be protected by a web application firewall. If so, the Azure Security Center will automatically detect when web apps you host in Azure don’t have a web application firewall configured, and provide a quick and direct workflow to get a firewall from one of our partners deployed and configured: Read more…
Citrix Lifecycle Management cloud service – is it something for you? YES! – #Citrix, #WorkSpaceCloud, #DaaS @EnvokeIT
I must admit that both Microsoft and Citrix are on the right track, it’s amazing to see the number of great “cloud” services that they now are releasing. If you’ve been reading my blog and follow me on Twitter then you know that I’m already a HUGE fan of Azure and all its offerings, and now Citrix comes up with a real interesting cloud based service to simplify the life-cycle management of their offerings, great job!
In this post we’re going to look at little closer to the Citrix Lifecycle Management service. So let’s start of with what it is, have a look at this great overview video:
Citrix Lifecycle Management is a comprehensive cloud-based lifecycle management solution to accelerate and simplify the design, deployment and ongoing management of Citrix workloads and enterprise applications.
Supporting many types of IT workloads across virtual and private or public cloud environments, this solution enables IT organizations to become faster, more cost-effective and more agile, and it helps maintain service quality and high availability with redundancy, automatic scaling and disaster recovery of applications. Built on blueprints incorporating validated reference architectures, configurations and best practices, Citrix Lifecycle Management provides a unified and standardized set of management tools for rapid and best practice-driven design, deployment and management of Citrix workloads and enterprise applications.
See this blog for a further explanation of Citrix Lifecycle Management.
Citrix Lifecycle Management is delivered as a cloud-based service through the newly launched Citrix Workspace Cloud.
The cloud service interacts with many types of supported Resource Locations that can be located either up in a public cloud service like Azure (that rocks!) or your on premise location and leveraging any of these technologies:
Once that you’ve connected the service to one of your Resource Locations then you can really start to look at the process of deploying your services to it, here is a good overview of the process of deploying a blueprint:
As you can see the process is really straight forward, 1 connect to your Resource Location, 2 Add your blueprint and then as the 3rd step you Deploy it! Read more…
Converged Microsoft Account and Azure Active Directory Programming Model – #Microsoft, #Azure
Wow, finally Microsoft is doing something about the Microsoft Account and Azure AD identity “mess”! 🙂
Until now, building an application that worked with both personal and business accounts from Microsoft required integrating with two different technology stacks. Not only that, you had to have separate buttons in your app where your user needed to choose, up front, to sign-in with a personal account or a work or school account.
With the v2 app model preview, it is possible to sign-in both personal and work users with a single button. Let’s take a quick look at the end user’s experience. We begin with your application, with the addition of a “Sign-in with Microsoft” button.
We’re using the Microsoft brand because end users don’t know about Azure or Azure Active Directory. But they do know that Windows, Outlook, OneDrive, Xbox, and Office 365 are services from Microsoft and they need an account from Microsoft to sign-in there.
When the user clicks the button, they come to a consolidated sign-in page:
The user enters their username. Under the covers we figure out if the username corresponds to a personal account or a work account. Then we take the user to the right page to enter their password. Today this may involve a redirect – in the future we’ll optimize this out.
Read more here!
//Richard
Azure AD Premium a visionary in Gartner IDaaS Magic Quadrant! I love it! – #Azure, #AzureAD, #IDaaS
This is awesome! I just love what Microsoft is doing with all the cool Azure offerings! That’s also why I’ve been digging deeper into this area lately and also took the Microsoft Specialist – Architecting Microsoft Azure Solutions exam and been playing around with Azure AD, DirSync and ADFS a lot.
Now with the whole release of Windows 10, Azure AD, Intune, ADFS and System Center we’re going to have a lovely story going forward with how to do client management going forward, just take a Windows 1o device, join it through Azure AD, Intune and federation and then sign in using your on-premise AD credentials. On top of that you can also then leverage Azure AD or federation with it for your SaaS apps as well and with SSO, and why not use the Azure connector to make your on-premise web apps available on the Internet with authentication as well!
Microsoft and Azure rocks!
Now also with the magic quadrant from Gartner that shows how well Microsoft is doing! It look very promissing, and just think about combingin all this also with Citrix Workspace cloud going forward! So great! 🙂
Gartner just released their Magic Quadrant for Identity Management as a Service (IDaaS) and after only ~10 months in market, Azure AD premium was placed in the “Visionary” quadrant, far to the right of our competitors for our completeness of vision and our ability to execute, only slightly below companies with established, multi-year track records.
If you are a Gartner client, you can find the report here. We will have a complimentary copy to share soon, so please check back.
We’re really pleased with this result. We believe it validates our vision of providing of a complete solution for hybrid identity management, a solution that includes not just a directory and employee identity management, but full suite of identity capabilities, an integrated device management offering (Microsoft Intune), leading edge information protection (Azure RMS) and a robust set monitoring and security capabilities.
I am especially delighted by this validation because it says a lot about our customers, implementation partners and ISV partners who have worked together with us. They have been awesome about sharing their time and energy every day, to make sure that the products and services we build meet their needs and are helping them position their companies to thrive in the emerging world of cloud and devices.
This graphic was published by Gartner, Inc. as part of a larger research document and should be evaluated in the context of the entire document. The Gartner document is available upon request from Microsoft.
Gartner does not endorse any vendor, product…
Continue reading here!
//Richard
Microsoft Specialist – Architecting Microsoft Azure Cloud Solutions – #Azure, #LoveAzure, #EnvokeIT
Yes, I found a really interesting exam and must say that this is a great one! Makes you show that you understand all the great services that Azure has to offer and on such a good level as well!
I’m happy I made it and that EnvokeIT continues its journey within the Microsoft Cloud and Mobility area! 🙂
The things that I love is the way that Microsoft puts a lot of really good material out there for free for all us techies to consume, like the Microsoft Virtual Academy, Channel 9, Azure Friday, etc.
Also what is really good if you’re preparing for this exam (70-534) is to go through this great prep guide:
So go and explore everything that Azure has to offer and if you have any thoughts or questions around Azure don’t hesitate to contact me at richard at envokeit.com or through our official contact details for the UK and Swedish businesses here.
Have a great weekend!
//Richard
The IT Melting Pot! 