AZ-900 Azure Fundamentals

My notes from AZ-900: Azure Fundamentals course

Module 1 - Cloud Concepts

Why Cloud Services?

Cloud Computing

Key Concepts

Economy of Scale

CapEx vs. OpEx

Types of Cloud Models

Public Cloud vs. Private Cloud

  Public Cloud Private Cloud
Data center Cloud provider owned Organization-owned
Ownership Cloud service provider The organization itself
Users Multiple organizations Within the organization
Access Public Single organization
Connectivity Over the internet Usually over private network
Skill to use No deep tech skill required Require deep tech skills to setup, manage, and maintain

Hybrid Cloud


Public Cloud Private Cloud Hybrid Cloud


  • No CapEx
  • Agility
  • Consumption-based
  • No maintenance
  • No deep skill required


  • Complete control over resources and security
  • Compliance achievable
  • Specific scenario achievable


  • Flexibility - most flexible
  • Costs - still can take advantage from public cloud
  • Control & Security - can still put in private cloud
  • Compliance still achievable
  • Specific scenario achievable


  • Security requirement may not be met
  • Compliance may not be met
  • Ownership - cannot manage as they wish
  • Specific scenario - legacy app or h/w


  • Up-front CapEx
  • Agility
  • Maintenance
  • Skills


  • Up-front CapEx
  • Costs
  • Skills - including make both operate together
  • Ease of management - should have guidelines on what on public or private cloud

Shared Responsibility Model


IaaS PaaS SaaS


  • Most basic but most flexible
  • Rent only IT infrastructure
  • No upfront cost


  • Provide environment for building, testing, and deploying s/w
  • Without worrying about underlying infrastructure
  • No upfront cost


  • Software that centrally hosted and managed e.g. Office 365
  • Usually licensed through monthly or annual subscription
  • No upfront cost

Common usage scenarios

  • Migrating workloads - easy to migrate from on-premise
  • Test and development environment - quicker to deploy
  • Website hosting - lower cost
  • Storage, backup, and recovery - more simplified

Common usage scenarios

  • Development framework - developer can build upon
  • Analytics or Business Intelligence - analyze and mine data

Common usage scenarios

  • Office 365
  • Skype
  • Microsoft Dynamics CRM Online


IaaS PaaS SaaS


  • No CapEx
  • Agility
  • Consumption-based
  • Skills - no deep technical to deploy & use
  • Cloud benefits - secured and HA
  • Flexibility - control to configure, manages h/w


  • No CapEx
  • Agility
  • Consumption-based
  • Skills - no deep technical to deploy & use
  • Cloud benefits - secured and HA
  • Productivity - focus on application development


  • No CapEx
  • Agility
  • Pay-as-you-go - monthly or yearly
  • Flexibility - data accessible from anywhere


  • user manages and maintains services they provision


  • Some limitations from PaaS


  • Software limitations - no or limited customizations

Module 2 - Core Azure Services

Core Azure Architectural Components


Region Pairs


Availability Options

Availability Set

Availability Zones

Resource Group

Azure Resource Manager

Core Azure Services and Products

Azure Compute

Compute Services

Container Services

Azure Network Services

Data Categories

Structured Data Semi-structured Data Unstructured Data
  • data that has fixed schema, all data have the same fields or properties
  • stored in DB table rows and columns
  • Rely on keys for relationship between tables
  • a.k.a. Relational Data
  • Easy to enter, query, and analyze
  • Examples:
    • Sensor data
    • Financial data
  • less organized vs. structured data
  • not stored in relational format - fields not quite fit into tables, rows, and columns
  • contains tags to organize the hierarchy of data
  • a.k.a. Non-relational or NoSQL
  • Examples:
    • Books
    • Blogs
    • HTML documents
  • no designated structure
  • can hold any kind of data (free form)
  • More prominent these days
  • Examples:
    • PDF document
    • JPG image
    • JSON file
    • Video content

Azure Storage Services

Azure Database Services

Azure Marketplace

Azure Solutions

Internet of Things

Big Data and Analytics

Artificial Intelligence

Serverless Computing


Azure App Service

Azure Management Tools

Azure Management Tools

Azure Advisor

Module 3 - Security, Privacy, Compliance and Trust

Securing Network Connectivity

Defense in Depth


Azure Firewall

Azure DDoS Protection

Network Security Group (NSG)

Application Security Group

Choosing Network Security Solution

Core Azure Identity Services

Authentication and Authorization

Azure Active Directory (Azure AD)

Azure Multi-factor Authentication (MFA)

Security Tools and Features

Azure Security Center

Usage Scenarios

Key Vault

Azure Information Protection (AIP)

Azure Advanced Threat Protection (ATP)

Azure Governance Methodologies

Azure Policy

Implementing Azure Policy

Policy Initiatives

Role-Based Access Control (RBAC)

Resource Locks

Azure Blueprints

Subscription Governance

Monitoring and Reporting


Azure Monitor

Azure Service Health

Monitoring Applications and Services

Privacy, Compliance and Data Protection Standards

Compliance Terms and Requirements

Microsoft Privacy Statement

Trust Center

Service Trust Portal

Compliance Manager

Azure Government Services

Azure China 21Vianet


Module 4 - Azure Pricing and Support

Azure Subscription

Azure Subscriptions

Subscription Offers

Management Group

Planning and Managing Cost

Purchasing Azure Products and Services

Factors  Affecting Costs

Zones for Billing

Pricing Calculator

Total Cost of Ownership Calculator

Minimizing Costs

Azure Cost Management

Azure Support Options

Support Plan Options

Alternative Support Channels

Knowledge Center

Azure Service Level Agreement (SLAs)

Service Level Agreement (SLAs)

Composite SLAs

Application SLAs

Service Lifecycle in Azure

Public and Private Preview Features

Azure Portal Preview

General Availability (GA)

Monitoring Service and Feature Updates