Get notified of changes in Azure Key Vault by using Event Grid

Get notified of changes in Azure Key Vault by using Event Grid

There are numerous ways to secure and audit your Azure Key Vault setup and usage. In 2019, I wrote Who accessed my Azure Key Vault?, which is still relevant. In this article, I want to talk about how to set up automatic notifications when something change related to your secrets. Events in Key VaultsBefore we drill into the steps to get this done, I want to talk about events in general, and things we might want to think about before we dive in. What events can we subscribe to? The Azure Key Vault uses EventGrid for events. The currently supported…

Read More

Use Application Insights for Worker Service applications in .NET Core console apps, containers, and any non-HTTP apps

Use Application Insights for Worker Service applications in .NET Core console apps, containers, and any non-HTTP apps

Relying on Application Insights to provide great data has always been a core component of anything I create. Recently, I upgraded my projects to .NET Core 3.1, and in few cases I also upgraded to .NET 5 (Preview). A lot of my code is executed in containers, or other background processes that may not have a native Application Insight integration. With the upgrade to .NET Core 3.1, we noticed after a while that no logs were persisted to the cloud anymore. I could see telemetry being created when debugging, and from that perspective all the unit tests were…

Read More

Create a custom Azure Security Center recommendation with Azure Policy

Create a custom Azure Security Center recommendation with Azure Policy

In Azure Security Center you get a lot of built-in recommendations based on various compliance- and security controls. These are based on industry standards and include things like Azure CIS, PCI DSS, SOC TSP, ISO 27001, and more. However, many organizations have different requirements than the defaults, and sometimes want to introduce additional or modified checks. With Azure Security Center we get the capability to use custom recommendations together with Azure Policy, where we now can define our corporate policies and roll them out as recommendations in ASC. A great way to tailor the experience according to our use cases.…

Read More

Programmatically create Azure Container Instances and connect a Managed Identity

Programmatically create Azure Container Instances and connect a Managed Identity

"This feature is currently in preview. Previews are made available to you on the condition that you agree to the supplemental terms of use. Some aspects of this feature may change prior to general availability (GA). Currently, managed identities on Azure Container Instances, are only supported with Linux containers and not yet with Windows containers." - Microsoft DocsPreviously I wrote about a post explaining how to programmatically create new Azure Container Instances (ACI) that are connected to a specific Virtual Network, allowing communication with services and data that resides inside that network. In this post I'm sharing a brief additional…

Read More

Programmatically create Azure Container Instances in an existing Virtual Network

Programmatically create Azure Container Instances in an existing Virtual Network

In recent years I've worked extensively with various approaches to create ACI's, also known as Azure Container Instances. I have these standard approaches for various scenarios: Define a YAML file, and create ACI from the command line.Define an ARM template and create ACI using a Resource Deployment.Programmatically create ACI using the Azure Fluent SDK.In various use cases in my daily work, I have to rely on some of these approaches for spinning up new workloads, for short- or long-term tasks. Use caseI have Azure Functions and Azure App Services for everyday background tasks and web front-end. It…

Read More

Use Azure App Service Diagnostics - Improve performance, best practices, security and more.

Use Azure App Service Diagnostics - Improve performance, best practices, security and more.

I already wrote about "Diagnosing and troubleshooting configuration and application errors in Azure App Services" in October 2019. Today, I am seeing an update to the service and I wanted to bring this new experience to light - it comes with an improved UX, and I really like it. In my daily work, I deal with production workloads every day. I have built, designed and am operating distributed applications and systems, and some are hosted in Azure App Services. Sometimes we see performance degradation. In other cases we experience intermittent errors that we can't easily understand. Enter Azure App Service…

Read More

Solving ASP.NET Core running on Azure App Service causing 500.30 ANCM In-Process Start Failure

Solving ASP.NET Core running on Azure App Service causing 500.30 ANCM In-Process Start Failure

Recently I attempted to re-deploy and replicate some of the infrastructure I have running and deploy the same version of the source to a new Slot in an Azure App Service. I hit the error message below: Azure App Service presenting the 500.30 error message on ASP.NET Core 3Following the link (here), gives us an indication of what the error is about: The worker process fails. The app doesn't start. The ASP.NET Core Module attempts to start the .NET Core CLR in-process, but it fails to start. The cause of a process startup failure can usually be…

Read More

I am giving away consulting advice for Azure

I am giving away consulting advice for Azure

With the recent pandemic, and many changes to organizations, workforces, and projects, we see an ever-increasing demand for moving things to the cloud. I see a growing trend in questions and requests for advice around Azure, specifically. Today I am announcing that I'll help you answer your current Azure questions, gratis, and you'll get my professional advice directly to your inbox - as in the days of my principal consulting work. This offer stands for every subscriber to my newsletter. I am hoping on a lot of engagement, and therefore I would recommend that you only submit one question if…

Read More