This is the eleventh blog in the Microsoft Azure Fundamentals Certification Series(AZ-900) of Topic 3: Azure Cloud Security.

If you have not gone through the previous topic 2.5 Azure Management Tools read it at https://k21academy.com/az90020

For the full list of blogs in Azure Fundamentals series, go to https://k21academy.com/az90011

This blog will cover the topic 3.1 Azure Secure Network Connectivity which includes Firewall, DDOS, and NSG.

As with any other cloud service, the protection of the cloud is Microsoft’s responsibility, protection in the cloud is your responsibility. Proper knowledge of the following tools and where to use them can immensely reduce security risks to your cloud deployments.

Azure Firewall

1. The Azure Firewall is a managed service that provides cloud-based network security for the protection of your Azure virtual network resources.
2. It’s a completely stateful firewall service that has high availability and near unlimited cloud scalability.
3. It enables you to centrally create, enforce, and log application and network policies across subscriptions and virtual networks.
4. It provides full-service integration with Azure Monitor for logging and analytics.
5. The firewall can also be configured with threat intelligence-based filtering to block well known malicious traffic automatically using Microsoft updated sources.

Azure DDoS Protection

1.  DDoS attacks are targeted at any service endpoint that is publicly reachable from the internet and try to exhaust an application’s resources, resulting in access being unavailable to legitimate users.
2. DDoS protection is an always-on and real-time service and can easily defend against common network-level attacks.
3. It provides the same protection that Microsoft utilizes for its services over both IPv4 and IPv6 public addresses.
4. Real-time telemetry is available via Azure Monitor views during an attack for taking action and logged as well as for analysis at a later stage.

Azure Network Security Groups

1. Azure Network Security groups(NSG’s) can be used to filter network traffic from and to Azure resources in the Azure Virtual network.
2. NSG contain security rules that enable you to allow or deny outbound traffic from, or inbound traffic to, various types of Azure resources.
3. For existing connections, a flow record is created, Azure resources are denied or allowed to communicate based on the connection state of the flow record.
4. A flow record allows a Network Security Group to become stateful.

Sample Questions

The following Question is a sample of what you can now answer from the Microsoft Azure Fundamentals Certification Exam[AZ-900] after going through this blog.

Q1. You plan to deploy several Azure virtual machines. you need to control the ports that devices on the Internet can use to access the virtual machines. what should you use?

1. A network security group (NSG)
2. An Azure Active Directory (Azure AD) role
3. An Azure Active Directory group
4. An Azure key vault

Correct Answer: A

Explanation: Restricting Internet access to your VMs in Azure can be achieved by making use of Azure Network Security Groups.

Q2. You have an Azure environment that contains 10 virtual networks and 100 virtual machines.

You need to limit the amount of inbound traffic to all the Azure virtual networks. What should you create?

1. one network security group (NSG)
2. 10 virtual network gateways
3. 10 Azure ExpressRoute circuits
4. one Azure firewall

Correct Answer: D

Explanation: Azure firewall can cover all the virtual networks and allows us to create policies for inbound (and outbound) traffic.

Related/Reference

1. [AZ-900] Microsoft Azure Certification Fundamental Exam: Everything You Must Know
2. Learn how to create a Free Microsoft Azure Trial Account
3. [AZ-900] Microsoft Azure Fundamentals: Topic 1.1 Overview & Benefits
4. [AZ-900] Microsoft Azure Fundamentals: Topic 1.2  CapEx vs OpEx Model
5. Topic 1.3 [Video]Cloud Service Model: SaaS | PaaS | IaaS
6. Topic 1.4 Cloud Deployment Models: Public, Private & Hybrid 
7. Topic 2.1 Azure Architecture: Region, Availability Zone & Geography
8. Topic 2.2 Azure Resource Groups, ARM &  ARM Template
9. Topic 2.3 Azure Core Services: Compute, Network, Storage & Database
10. Topic 2.4 Microsoft Azure Solutions: IoT, Big Data Analysis, ML & Serverless
11. Topic 2.5 Azure Management Tools: Powershell, Cloud Shell & Advisor
12. How to Register For [AZ-900] Microsoft Azure Fundamentals Certification Exam

What’s Next?

Begin your journey towards Azure, Getting [AZ-900] Microsoft Azure Fundamentals certified, and earning a lot more in 2020 by joining our FREE Masterclass.

Click on the below image to Register for the FREE MASTERCLASS Now!

The post [AZ-900] Microsoft Azure Secure Network Connectivity: Firewall, DDOS, & NSG appeared first on Oracle Trainings.

This blog post is the twelfth blog  Microsoft Azure Fundamentals Certification Series(AZ-900) of Topic 3: Security Services.

If you have not gone through the previous Topic 3.1 Azure Security Network Connectivity: firewall, DDOS, NSG  read it at https://k21academy.com/az90022.

For the full list of blogs in this series, refer to https://k21academy.com/az90011

In this blog post, we’ll cover Topic 3.2 Microsoft Azure Core Identity Services which includes Azure Active Directory(Azure AD) and Multifactor Authentication(MFA).

Identity management is the process of controlling, authenticating, and authorizing security principals i.e services, applications, users, groups, etc.

Azure provides security through additional levels of validation, monitoring suspicious activity through advanced security reporting, auditing, and alerting helps mitigate potential security issues. The security services offered by Azure are:

Azure Active Directory

1. Azure AD is Microsoft’s cloud-based identity and access management service which is a directory of users in Azure.
2.  It creates and manages a single identity for each user across the enterprise, keeping users, groups, and devices in sync.
3. Provides SSO(Single sign-on) access to applications, including thousands of pre-integrated SaaS apps.
4. Enables application access security by enforcing rules-based Multi-Factor Authentication for both on-premises & cloud applications.
5. Provisions secure remote access to on-premises web applications through Azure AD Application Proxy.
6. Azure AD device registration provides the device with an identity that it uses to authenticate the device when a user signs in.

Azure AD Application Proxy provides remote access and SSO for many types of on-premises web applications with thousands of SaaS applications that Azure AD supports.

Azure AD B2C is a global, identity management service for consumer-facing applications with millions of identities and is highly available. It can be integrated across mobile and web platforms. The consumers can sign in to all the applications through customizable experiences.

Note: SSO means being able to access all the applications and resources that you need to do business, by signing in only once using a single user account.

Azure Multi-Factor Authentication

1. It is a method of authentication that requires the use of more than one verification method
2. It adds a critical second layer of security to user sign-ins and transactions.
3. It offers a range of verification options: phone calls, text messages, mobile app notifications, verification codes, and third-party OAuth tokens.

Note: Azure provides Role-Based Access Control on Azure Resource Manager that allows granular control of access to the users.

Sample Questions

Here are a few sample questions from the Microsoft Azure Fundamentals Certification Exam[AZ-900] that you should be able to solve after reading this blog.

Q1: Which of the following statements are true?
A. Identities stored in an on-premises Active Directory can be synchronized to Azure Active Directory (Azure AD).

B.  Identities stored in Azure Active Directory (Azure AD), third-party cloud services, and on-premises Active Directory can be used to access Azure resources.
C. Azure has built-in authentication and authorization services that provide secure access to Azure resources.

Correct Answer: A, C

Explanation: By default, on-premise AD and Azure AD are not synced but can be synced when needed.

Q2: Which of the following statements are true?
A. Azure Active Directory (Azure AD) requires the implementation of domain controllers on Azure virtual machines.
B. Azure Active Directory (Azure AD) provides authentication services for resources hosted in Azure and Microsoft 365.
C. Each user account in Azure Active Directory (Azure AD) can be assigned only one license.

Correct Answer: B

Related/References

1. [AZ-900] Microsoft Azure Certification Fundamental Exam: Everything You Must Know
2. Learn how to create a Free Microsoft Azure Trial Account
3. [AZ-900] Microsoft Azure Fundamentals: Topic 1.1 Overview & Benefits
4. Topic 2.1 Azure Architecture: Region, Availability Zone & Geography
5. How to Register For [AZ-900] Microsoft Azure Fundamentals Certification Exam
6. Topic 3.1 Microsoft Azure Secure Network Connectivity: Firewall, DDOS, & NSG

What’s Next?

Begin your journey towards Azure, Getting [AZ-900] Microsoft Azure Fundamentals certified, and earning a lot more in 2020 by joining our FREE Masterclass.

Click on the below image to Register for the FREE MASTERCLASS Now!

The post [AZ-900] Microsoft Azure Core Identity Services: Azure AD & MFA appeared first on Oracle Trainings.

In this video blog, we are going to cover the Docker Container overview, the difference between VM & Containers, Docker Engine Components, Overview of Docker architecture & its Components. Also, we are discussing what is Azure Container Instances (ACI) and Azure Kubernetes Service (AKS).

Note: Azure Container Instances & Azure Kubernetes are new topics which recently added in Azure Administration Certification AZ-104 Exam to know more about the certificate exam topics click here and to know more about the difference between [AZ-104] vs [Az-103] click here

What Is Container (Docker)?

Containers are a software package into an invisible box with everything that the application needs to run. That includes the operating system, application code, runtime, system tools, system libraries, and etc. Docker containers are built off Docker images. Since images are read-only, Docker adds a read-write file system over the read-only file system of the image to create a container.

Different Container Providers

• Docker
• Microsoft Azure
• Amazon Web Services (AWS)
• Google Cloud Platform
• Linux Containers

What Is Docker?

Docker is an open-source platform based on Linux containers for developing, shipping, and running applications inside containers. we can deploy many containers simultaneously on a given host. Containers are very fast and lightweight because they don’t need the extra load of a hypervisor because they run directly within the host machine’s kernel.

Difference Between Virtual Machine & Container (Docker)

The major difference between the VMs and Container is In VMs a hypervisor is used to virtualize physical hardware. Each VM contains a guest OS, a virtual copy of the hardware that the OS requires to run while in Containers Instead of virtualizing the underlying hardware, containers virtualize the operating system so each container contains only the application and its libraries.

1) Operating System: In virtual machine has its guest OS above the host OS, which makes virtual machines heavy. While in multiple containers share the host OS, and that is why they are lightweight.

2) Security: VM does not share OS, and there is strong isolation in the host kernel. Hence, they are more secure as compared to Containers. A container has a lot of security risks, and vulnerabilities because the containers have a shared host kernel.

3) Performance: Containers are lightweight and consume fewer resources While VM is heavy and consumes more resources so containers give better performance then VM.

4) Portability: Containers are easily portable because they do not have separate operating systems. While virtual machines have separate OS, so porting a virtual machine is very difficult.

Docker Engine Components

Docker Engine is the layer on which Docker runs. It is installed on the host machine. It’s a lightweight runtime and tooling that manages containers, images, builds, and more.

There are three components in the Docker Engine:

a) Server: It is the docker daemon called dockerd. It can create and manage docker images. i.e. Containers, networks.

b) Rest API: It is used to instruct docker daemon what to do.

c) Command Line Interface (CLI): It is a client that is used to enter docker commands.

Docker Architecture & Components

Docker uses a client-server architecture. The docker client talks to the Docker daemon, which used to building, running, and distributing the Docker containers. The Docker client and daemon communicate using a REST API, over UNIX sockets, or a network interface.

There are five major components in the Docker architecture:

a) Docker Daemon listens to Docker API requests and manages Docker objects such as images, containers, networks, and volumes.

b) Docker Clients: With the help of Docker Clients, users can interact with Docker. Docker client provides a command-line interface (CLI) that allows users to run, and stop application commands to a Docker daemon.

c) Docker Host provides a complete environment to execute and run applications. It comprises of the Docker daemon, Images, Containers, Networks, and Storage.

d) Docker Registry stores Docker images. Docker Hub is a public registry that anyone can use, and Docker is configured to use images on Docker Hub by default. You can run your own registry on it.

e) Docker Image read-only templates that you build from a set of instructions written in Dockerfile. Images define both what you want your packaged application and its dependencies to look like what processes to run when it’s launched.

Azure Container Instances (ACI)

Azure Container Instances (ACI) offers the fastest and simplest way to run a container in Azure, without having to manage any virtual machines. For container orchestration in Azure (build, manage, and deploy multiple containers) use Azure Kubernetes Service (AKS). You can deploy Azure Container Instances using Azure Portal, Azure CLI, Powershell, or ARM Template.

What Is Kubernetes?

In organizations, multiple numbers of containers running at a time so it is very hard to manage all the containers together we use Kubernetes. Kubernetes is an open-source platform for managing containerized workloads and services. Kubernetes takes care of scaling and failover for your application running on container. This allows you to automatically mount a storage system of your choice, such as local storage, public cloud providers. this can restart containers that fail, replaces containers, kills containers that don’t respond to your health check.

Azure Kubernetes Service (AKS)

Azure Kubernetes Service (AKS) is a managed container service; The Kubernetes masters are managed by Azure. Users can use AKS to deploy, scale, and manage Docker containers and container-based applications across a cluster of container hosts. You only manage and maintain the agent nodes. As a managed Kubernetes service, AKS is free – you only pay for the agent nodes within your clusters, not for the masters. You can create an AKS cluster in the Azure portal, with the Azure CLI, or template-driven deployment options such as Resource Manager templates and Terraform.

Join FREE Masterclass

We cover both Azure Container Instance (ACI) and Azure Kubernetes Service (AKS) in detail in our Azure Administration Certification AZ-104 training program. To know more about What to expect in the exam, Exam wise topics, Hands-On labs you must perform registering for our FREE Masterclass.

Click on the below image to Register Our FREE Masterclass Now!

The post [Video] Containers (Docker) & Kubernetes In Azure For Beginners appeared first on Oracle Trainings.

This blog-post will cover everything you need to know about the [AZ-300] Microsoft Azure Architect Technologies certification exam.

You must be having many questions like, why is this certification important? What domains does it cover? What are the eligibility criteria? How to prepare for it? And whatnot.

What Is Azure Architect Technologies Certification?

The AZ-300 Microsoft Azure Certification is geared towards those who advise stakeholders and translate business requirements into secure, scalable, and reliable solutions.

Why Should You Learn Azure?

• Validates technical skills like storage, networking, compute, security, and other Cloud operations on Microsoft Azure.
• Top-paying info-tech certification in the world.
•  It provides you with global recognition for your knowledge, skills, and experience.
• The organization looks for those who know Oracle Cloud, AWS, Azure, etc.

Why Azure Certification Is Beneficial?

• As a result of the increase in demand for Azure, the need for Azure administrators is rapidly increasing along the lines. Hence, one CV with this gleaming certification will have an enormous advantage.
• In terms of job prospects and earning, a certification leads to a rampant increment in both.
• Almost 70% of people agree that certification has improved their earning and 84% of people have seen better job prospects after getting certified.
• Updating your LinkedIn profile with this certificate will boost your job profile and increase your chances of getting chosen.

Exam Details (AZ-300)

• Certification Name: [AZ-300] Microsoft Azure Architect Technologies
• Prerequisites: There are no prerequisites for taking this course. Microsoft recommends candidates to have a minimum of six months of hands-on experience administering Azure.
• Exam Cost: USD 165.00

AZ-300 Exam Topics

Candidates should have advanced experience and knowledge across various aspects of IT operations, including networking, virtualization, identity, security, business continuity, disaster recovery, data management, budgeting, and governance. This role requires managing how decisions in each area affect an overall solution. Candidates must be proficient in Azure administration, Azure development, and DevOps, and have expert-level skills in at least one of those domains.

The important domains covered in the [AZ-300] Microsoft Azure Architect Technologies certification exam are:

• Deploy and configure infrastructure (40-45%)
• Implement workloads and security (25-30%)
• Create and deploy apps (5-10%)
• Implement authentication and secure data (5-10%)
• Develop for the cloud and for Azure storage (15-20%)

Exam Retake Policy

• If a candidate fails the exam in his/her’s first attempt, they have to wait for a period of 24 hours before reapplying for the exam.
• In case the candidate’s second attempt also fails they should re-access their training and retake the exam after a waiting period of 14 days.
• finally, a candidate has a maximum of 5 retakes allowed in a year.

Who This Certification Is For?

Anyone looking to gain the Microsoft Certified: Azure Solutions Architect Expert Certification needs to complete this [AZ-300] Microsoft Azure Architect Technologies certification exam and the [AZ-301] Microsoft Azure Architect Design certification exam.

Next Task For You

Interested in other Microsoft Azure Certifications as well?

Check out this blog post to know all about the [AZ-104] Microsoft Azure Certification Exam. Also, check out this blog to know everything about the AZ-400 Microsoft Azure DevOps Certification Exam.

Click on the Join Waitlist now button below to join the waitlist of our much-awaited AZ-300 Certification Training which will help you clear the exam with flying colors.

The post [AZ-300] Microsoft Azure Architect Technologies Certification Exam: Everything You Need To Know appeared first on Oracle Trainings.

This blog post covers everything you must know if you are appearing for the 1Z0-1084-20 Oracle Cloud Infrastructure Developer 2020 Associate Certification.

What Is [1Z0-1084-20] Oracle Cloud Infrastructure Developer Associate?

The Oracle Cloud Infrastructure Developer Associate Certification is designed for developers looking to design and develop cloud-based applications and provides the candidate with the ability to design and architect cloud-native applications on Oracle Cloud Infrastructure.

The certification is meant for developers who are looking to validate their understanding of Oracle Cloud Infrastructure services and develop applications using cloud-native services.

Note: This certification comes under the Cloud Recertification policy.  

Prerequisite for 1Z0-1084-20

There is no Pre-requisite for this certification, you can go for this exam directly. Up-to-date OCI learning and hands-on experience are recommended.

Exam Details:

• Name of the Certification: [1Z0-1084-20] Oracle Cloud Infrastructure Developer 2020 Associate
• Platform: Available on Oracle University and delivered via Pearson VUE.
• Exam Duration: 105 minutes
• Exam number: 1Z0-1084-20
• Number of Questions: 60
• Passing score: 70%
• Exam Cost: $150 or INR 10,475

Exam Syllabus [1Z0-1084-20]

To successfully prepare for the 1Z0-1084-20 Oracle Cloud Infrastructure Developer Associate, it is recommended that you have an understanding of the cloud-native applications and methodologies.

Module 1: Developing a high available, highly scalable & secure cloud-native application

Module 2: Deploying a cloud-native application

Module 3: Security

Module 4: Logging, Monitoring, and Alerting

Module 5: Application Modernization on OCI

Note: To go through the practice exam for 1Z0-1084-20 click here.

Registration

Register for the 1Z0-1084-20 exam at Oracle’s official website i.e. Oracle Cloud Infrastructure Developer 2020 Associate.

Related/References

• 1Z0-1085 | Oracle Cloud Infrastructure Foundations Associate
• 1Z0-1067 | Oracle Cloud Infrastructure 2019 Certified Cloud Operations Associate
• 1Z0-1072 | Oracle Cloud Infrastructure 2019 Certified Architect Associate 
• 1Z0-997 | Oracle Cloud Infrastructure 2019 Certified Architect Professional
• 1Z0-1070 | Oracle Cloud Platform Identity & Security Management 2019 Associate

The post Oracle Cloud Infrastructure Developer 2020 Associate | 1Z0-1084-20 appeared first on Oracle Trainings.

In this post, I will be sharing the most important blog links for Oracle DBA’s which covers the basic concepts of Oracle database and topics which are important for the Exam eg. 1Z0-1085, 1Z0-931, 1Z0-998, and 1Z0-1044.

Difference Between Different Cloud Vendors

In this blog, we will be discussing the difference between the different cloud vendors what is that right choice for you.

• Right Choice for DBA Difference b/w Amazon AWS | Microsoft AZURE | Oracle http://k21academy.com/clouddba20

Certification Blogs for Oracle Cloud Database Service

In these posts, we will be covering important things about certification exams [1Z0931, 1Z0998, 1Z0-1044] E.g Exam topics, which activity guides you should perform to clear the exam & which exam is beneficial to you.

• [1Z0-1085-20] Oracle Cloud Infrastructure Foundations https://k21academy.com/1z0108511
• [1Z0-931] Oracle Autonomous Database Cloud Everything You Must Know About https://k21academy.com/1z093111
• [1Z0-998] Oracle Database Cloud Service Everything You Must Know About https://k21academy.com/1z099811
• [1Z0-1044] | Oracle Cloud Platform Data Management 2019 Associate https://k21academy.com/1z0104411
• DBA to Oracle Cloud DBA [1Z0-998] & [1Z0-931]: Step by Step Hands-On Guides to clear the exam http://k21academy.com/clouddba05

OCI & Cloud DBA’s Basic Concept Blog

In these blog posts, we covered the basic Roles & Responsibilities of DBA’s, Difference B/W OCI & OCI – C, Overview of Exadata Cloud Service (ExaCS) & Exadata Cloud @ Customer(ExaCC) and Exadata Deployment Options: ExaCS, ExaCC, and Exadata Machine.

• Difference Between OCI vs OCI -C: IaaS from Oracle https://k21academy.com/oci12
• Roles & Responsibilities of DBA http://k21academy.com/clouddba12
• What is Region, Availability Domain (AD), Fault Domain (FD) & Realm in Oracle Cloud Infrastructure (OCI) http://k21academy.com/oci27
• Basic Blog Oracle Cloud for DBAs: 9 Things Every Beginner Should Know http://k21academy.com/clouddba11
• Oracle Exadata Cloud Service (ExaCS): Overview for Beginners https://k21academy.com/clouddba62
• Oracle Cloud at Customers(C@C): Overview and Concept for Beginners http://k21academy.com/oci47
• Exadata Deployment Options: Cloud Service (ExaCS) vs Cloud at Customer (ExaCC) vs Exadata Machine
  https://k21academy.com/clouddba63

Register For FREE Cloud Account

• First, to work on oracle cloud you should have an Account at Oracle Cloud and if you don’t have one, then you can register FREE using my step-by-step video & guide. Click here to download the guide https://k21academy.com/cloud01

Networking for Cloud DBA

In these blog posts, we covered the basic networking components like VCN, Subnet, IGW, FastConnect, and Networking in Exadata Cloud Service.

• Oracle Cloud Infrastructure Networks: VCN, Subnet, IGW, FastConnect, DRG https://k21academy.com/oci18
• [Video] Oracle Exadata Cloud Service (ExaCS) Networking https://k21academy.com/exacs16

Provision and Connect to User-Managed Database

In these blog posts, we covered the Database Deployment options in OCI (VMDB, BMDB, ExaCS, ExaCS & Autonomous), How to provision & connect to VMDB Database and How to troubleshoot Database Instance Connectivity Issue.

• Database Deployment options in OCI (VMDB, BMDB, ExaCS, ExaCS & Autonomous (ADW, ATP) https://k21academy.com/clouddba58
• How To Create & Connect to Database on Oracle’s Gen2 Cloud (OCI) https://k21academy.com/clouddba41
• [Troubleshooting] Compute (Linux/Windows) & Database Instance Connectivity Issue in Oracle Cloud (OCI)
  https://k21academy.com/oci45
• Oracle Exadata Cloud Service(ExaCS) Architecture https://k21academy.com/clouddba63

Provision and Connect to Autonomous Database

In these blog posts, we covered the Autonomous Database Deployment options in OCI (ADW, ATP, Serverless & Dedicated Infrastructure), How to provision Autonomous Data Warehouse and How to connect to Autonomous database using SQL Developer web.

• Oracle Autonomous Database Overview: ADW, ATP, Serverless & Dedicated Infrastructure https://k21academy.com/1z093112
• Create Oracle Autonomous Data Warehouse http://k21academy.com/clouddba31
• How to connect to Autonomous database using SQL Developer web click here https://k21academy.com/clouddba49

Patching Database System in OCI

Patching a database is the change in the database system to update, fix, or improve it. The patching includes fixing security vulnerabilities and other bugs in database. When we apply the patch to our Oracle software installation, it updates the executable files, libraries, and object files in the software home directory. The patch application can also update configuration files and Oracle-supplied SQL schemas.

Note: To know more patching a database subscribe to get FREE Tips and Latest Information on Oracle Cloud https://k21academy.com/subscribe

Backup Database System in OCI

In this blog, we have covered everything you must know about database backup for different types of databases in Oracle Cloud Infrastructure.

• Backup Oracle Database on Cloud: Everything You Must Know http://k21academy.com/clouddba56

Migration Database to Oracle Cloud

In these blog posts, we covered the Methodology to Migration database to Cloud in OCI using  Transportable Tablespace Data Pump, Recovery Manager (RMAN), MV2ADB and Zero Downtime Migration Database To Oracle Cloud Using Hybrid Data Guard and Loading data to Autonomous database using Data Pump, SQL Loader, DBMS_CLOUD.

• Oracle Database Migration To Cloud (Lift & Shift): Overview & Methodology http://k21academy.com/clouddba26
• Zero Downtime Migration: Database To Oracle Cloud Using Hybrid Data Guard http://k21academy.com/clouddba54
• Data Loading in Autonomous Database [Migrate Database To Oracle Autonomous Database Cloud Options: Data Pump, SQL Loader, DBMS_CLOUD, GoldenGate] http://k21academy.com/1z093113
• Zero Downtime Migration In OCI: Overview & Capability http://k21academy.com/clouddba52
• Zero Downtime Migration (ZDM) Database To Oracle Cloud In 8 Steps http://k21academy.com/clouddba69

High Availability (HA) & Disaster Recovery Database (DR) Options in Database 

In these blog posts, we covered the Overview of Data Guard in Oracle Cloud Infrastructure (OCI) and High Availability (HA) and Disaster Recovery (DR) on Cloud.

• Data Guard In Oracle Cloud Infrastructure (OCI): Overview & Concepts https://k21academy.com/clouddba68
• Oracle Database: RAC for High Availability (HA) & DataGuard for Disaster Recovery (DR) https://k21academy.com/clouddba25

RAC Database On Oracle Cloud

In these blog posts, we covered what is RAC (Real Application Cluster) and how to create RAC database on Oracle Cloud database.

• What & How to Create RAC Database On Oracle Cloud (OCI) https://k21academy.com/clouddba45
• [Video] Is RAC possible on Oracle Cloud? If Yes How https://k21academy.com/clouddba13

How Can I Learn More

We cover all the above topics in detail in our DBA to Oracle Cloud DBA Training program. To know more about our DBA to Cloud DBA Training, How to upgrade From DBA To Cloud DBA and Which Cloud Certification Useful for DBAs & Earn More by registering for our FREE Masterclass.

Click on the below image to Register Our FREE Masterclass Now!

The post Top Oracle Cloud Blogs For Cloud DBA’s in 2020 appeared first on Oracle Trainings.

In this video-blog, we are about to cover Microsoft Azure’s most important concepts Region, Availability Zone, Availability Set, Fault Domain, and Update Domain, and how it plays a key role in Virtual Machines.

Note: If you haven’t read our previous blog on What is Resource Group and How to Create Resource Group click here

{youtube video link}

The basic Architecture of the Azure can easily be understood by the following diagram

Region

A region is a set of data centers deployed within a latency-defined perimeter and connected through a dedicated regional low-latency network.

With more global regions than any other cloud provider, Azure gives customers the flexibility to deploy applications where they need to. Azure is generally available in 52 regions around the world, with plans announced for 6 additional regions.

Region Pairs

• Each Azure region is paired with another region within the same geography, together making a regional pair.
• Azure serializes platform updates so only one region is updated at a time.
• Azure Regions in a Pair have direct connections that bring additional benefits to use them together.
• Each Azure Region in a pair is always located greater than 300 miles apart when possible.
• Examples of region pairs are West US paired with East US, South-East Asia paired with East Asia.

Geographies

Geography is a discrete market, typically containing two or more regions, that preserves data residency and compliance boundaries.

It allows customers with specific data-residency and compliance needs to keep their data and applications close. However, they are fault-tolerant to withstand complete region failure through their connection to our dedicated high-capacity networking infrastructure.

To know more about the Geography locations refer here

Availability Zone

• Availability Zones is a high-availability offering that protects your applications and data from datacenter failures.
• These are unique physical locations within an Azure region. Each zone is made up of one or more data centers equipped with independent power, cooling, and networking.
• The physical separation of Availability Zones within a region protects applications and data from datacenter failures.
• Zone-redundant services replicate your applications and data across Availability Zones to protect from single-points-of-failure.
• Not every region has support for Availability Zones. The examples of Availability Zones are Central US, East US 2, West US 2, West Europe, France Central, North Europe & Southeast Asia
• With Availability Zones, Azure offers industry best 99.99% VM uptime SLA(Service Level Agreement)

To achieve comprehensive business continuity on Azure, build your application architecture using the combination of Availability Zones with Azure region pairs.

Availability Set

• An Availability Set is a logical grouping capability for isolating VM resources from each other when they’re deployed.
• By deploying your VMs across multiple hardware nodes Azure ensures that if hardware or software failure happens within Azure, only a sub-set of your virtual machines is impacted and your overall solution is safe and in working condition.
• It provides redundancy for your virtual machines.
• An Availability set spreads your virtual machines across multiple fault domains and update domains.
• If you want to leverage Microsoft’s 99.95% SLA from Microsoft you must place your VMs inside availability set except your VMs are having premium storage.

An Update Domain and Fault Domain is assigned to each VM in Availability Set by Azure platform.

Fault Domain

• Fault domains define the group of virtual machines that share a common power source and network switch.
• Each and every fault domain contains some racks and each rack contains a virtual machine.
• Each of these Fault domain shares a power supply and a network switch.
• All the resources in the fault domain become unavailable when there is a failure in the fault domain.
• You should place your VMs in such a way that each fault domain gets one web server, one database server, and like that.

Update Domain

• Virtual machines get update domains automatically once they are put inside the availability set.
• All virtual machines within that update domain will reboot together.
• They are used for patching of the virtual machines.
• Only one update domain can be updated at the time.

How many Fault Domains and How many Update Domains we can have?

• In the Azure Service Management (ASM) portal, we have two Fault domains and 5 update domains.
• In the Azure Resource Manager(ARM) portal, we have three Fault domains and 5 update domains but we can upgrade our update domains from 5 to 20.
• VMs are assigned sequentially in the update domains and fault domains.

Key Points To Remember

• You need to create virtual machines in the same resource group as the availability set.
• Only one virtual machine can only be in one availability set.
• Virtual machines can be assigned availability set only during the creation of it.

SLA(Service Level Agreement) for VM:

• For all Virtual Machines that have two or more instances deployed in the same Availability Set, Azure guarantees you will have Virtual Machine Connectivity to at least one instance at least 99.95% of the time.
• For any Single Instance Virtual Machine using premium storage for all disks, Azure guarantees you will have Virtual Machine Connectivity of at least 99.9%.

Related/References

• Region, Availability Domain (AD), Fault Domain (FD) & Realm in Oracle Cloud Infrastructure (OCI)
• [AZ-104] Microsoft Azure Administrator Certification Exam: Everything You Need To Know
• Manage the availability of Windows virtual machines in Azure
• AZ-104 v/s AZ-103: Microsoft Azure Certification Exam

Next Task For You

We cover this concept in our Compute Module with more other topics like Virtual Machine Scale Sets in detail in our Azure Administration Certification AZ-104 training program. To know more about What to expect in the exam, Exam wise topics, Hands-On labs you must perform registering for our FREE Masterclass.

Begin your journey towards becoming a Microsoft [AZ-104] Certified Azure Administrator by joining our FREE Masterclass.

Click on the below image to register for the FREE Masterclass NOW!

The post [AZ-104] Region, Availability Zone, Availability Sets and Fault Domain,Update Domain In Microsoft Azure appeared first on Oracle Trainings.

This blog post gives a walkthrough of the Step-By-Step Activity Guides of [AZ-104/103] Microsoft Azure Administrator training program that you must perform to learn this course.

You can use these exact steps to bring you and your team for integration with On-Premise & Cloud application to implement, monitor, and maintain Microsoft Azure solutions. The walkthrough of the Step-By-Step Activity Guides of [AZ-104/103] Microsoft Azure Administrator training program will prepare you thoroughly for the AZ-104 certification. You could also check out my previous blog to know everything about the AZ-104 certification exam.

Activity Guide I: Register For Azure Free Trial Account

The first thing you must do is to get a Trial Account for Microsoft Azure. (You get 200 USD FREE Credit from Microsoft to practice)

Microsoft Azure is one of the top choices for any organization due to its freedom to build, manage, and deploy applications. Here, we will look at how to register for the Microsoft Azure FREE Trial Account.

Note: Get this first step by step activity guide absolutely FREE from here

After you register for Microsoft Cloud Trial Account, you should get an Email Like below from Microsoft:

II: VM Creation Walkthrough

The most basic task that can be performed on any cloud platform is the creation of a Virtual Machine

Azure Virtual Machines (VM) is one of several types of on-demand, scalable computing resources that Azure offers. Typically, you choose a VM when you need more control over the computing environment than the other choices offer.

This guide gives you information about what you should consider before you create a VM, how you create it, and how you manage it.

III. VM In Availability Set & Zones & Scale Set Creation

• Availability set is an Azure service that allows you to make you cloud virtual machines highly available and redundant.
• Virtual machine scale sets allow you to create and manage a group of identical, load-balanced VMs. where the number of VMs automatically increases and decreases based on demand.

This guide will provide you all the information you need to be able to keep your machines highly available, redundant, and scaled according to demand.

IV. Storage Account Creation

An Azure storage account contains all of your Azure Storage data objects: blobs, files, queues, tables, and disks. The storage account provides a unique namespace for your Azure Storage data that is accessible from anywhere in the world over HTTP or HTTPS. Data in your Azure storage account is durable and highly available, secure, and massively scalable.

In this Activity Guide, We will walk you through the steps to browse through the Azure Portal and create a storage account of your own.

V. Blob With Public Endpoints

blobs consist of blocks of data assembled to make a blob. Most scenarios using Blob storage employ block blobs. Block blobs are ideal for storing text and binary data in the cloud, like files, images, and videos.

In this Activity Guide, We will walk you through the steps to browse through the Azure Portal and create blob storage that can be accessed from anywhere on the internet.

VI. Blob With Restricted Endpoints Via VNet

This activity guide walks you through the process of creating a storage blob just like the previous one but with restricted endpoints that are not public with the help of virtual networks.

VII. Azure Files (With Port 445)

Azure Files offers fully managed file shares in the cloud that are accessible via the industry-standard Server Message Block (SMB) protocol. You can mount Azure file shares concurrently on cloud or on-premises deployments of Windows, Linux, and macOS.

In this Activity Guide, We will walk you through the steps to browse through the Azure Portal and how to work with Azure files, file sync, and configuring port 445.

VIII. Configuring Azure DNS And Virtual Networks Walkthrough

Azure Virtual Network is the fundamental building block for your private network in Azure. VNet enables many types of Azure resources to securely communicate with each other, the internet, and On-Premises networks. Also, you’ll learn to configure Azure DNS to resolve hostnames in your public domain.

IX. VNet + Multiple subnets + Network security Group + Route Table Creation

• Azure Virtual Network (VNet) is the basic building block for your private network in Azure. VNet enables many types of Azure resources, such as Azure Virtual Machines (VM), to securely communicate with each other, the internet, and on-premises networks.
•  Azure network security groups can be used to filter network traffic to and from Azure resources in an Azure virtual network.
• Automatic routing of traffic happens between Azure subnets, virtual networks, and on-premises networks. If you require any changes in Azure’s default routing, you can implement them by creating a route table.

In this Activity Guide, We will walk you through the steps to browse through the Azure Portal and how to configure the Azure virtual network and all its related services too.

X. Allow/Deny IP Address + Port Combination In NSG

A network security group contains security rules that allow or deny inbound network traffic to, or outbound network traffic from, several types of Azure resources. For each rule, you can specify source and destination, port, and protocol.

In this Activity Guide, We will walk you through the steps to browse through the Azure Portal and how to make your virtual network more secure with the help of network security groups.

XI. VNet Peering

You can connect virtual networks to each other with virtual network peering. These virtual networks can be in the same region or different regions (also known as Global VNet peering).
Once virtual networks have peered, resources in both virtual networks are able to communicate with each other.

In this Activity Guide, we will walk you through the steps to browse through the Azure Portal and how to do VNet peering and also communicate between the two virtual networks.

XII. VNet-to-VNet Via VPN Gateway

A VPN gateway is a specific type of virtual network gateway that is used to send encrypted traffic between an Azure virtual network and an on-premises location over the public Internet. You can also use a VPN gateway to send encrypted traffic between Azure virtual networks over the Microsoft network.

In this Activity Guide, we will walk you through the steps to browse through the Azure Portal and how to do VNet peering using VPN gateways.

XIII. Load Balancers (Public + Internal)

Load Balancer distributes inbound flows that arrive at the load balancer’s front end to backend pool instances. These flows are according to configured load balancing rules and health probes.

• A public load balancer can provide outbound connections for virtual machines (VMs) inside your virtual network.
•  Internal load balancers are used to load balance traffic inside a virtual network.

In this Activity Guide, we will walk you through the steps to browse through the Azure Portal and how to create load balancers for your virtual machines for both, internet connections and internal connections.

XIV. Network Watcher Walkthrough

Network Watcher provides you with the ability to diagnose your most common VPN Gateway and Connections issues. Allowing you, not only, to identify the problem but also to use the detailed logs created to help further investigate. Monitor and diagnose networking issues without logging in to your virtual machines (VMs) using Network Watcher.

XV. Backup (MARS)

Azure Backup uses the MARS agent to back up files, folders, and system state from on-premises machines and Azure VMs. Those backups are stored in a Recovery Services vault in Azure.

• Directly on on-premises Windows machines.
• On Azure VMs that run Windows side by side with the Azure VM backup extension.
• On a Microsoft Azure Backup Server (MABS) instance or a System Center Data Protection Manager (DPM) server.

In this Activity Guide, we will walk you through the steps to browse through the Azure Portal and how to use the MARS agent to backup your own cloud data.

XVI. Hybrid Identity (On-Prem AD + AAD)

businesses and corporations today are becoming more and more a mix of on-premises and cloud applications. Users who require access to applications that are both on-premises and in the cloud create a challenging scenario.

Microsoft’s identity solutions span on-premises and cloud-based capabilities. These solutions create a common user identity for authentication and authorization to all resources, regardless of location. We call this hybrid identity.

In this Activity Guide, we will walk you through the steps to browse through the Azure Portal and how to use Azure Hybrid Identity to overcome the security challenges of having hybrid applications.

XVII. Azure AD Identity Protection And Self-Service Password Reset Walkthrough

Identity Protection is a tool that allows organizations to accomplish three essential tasks:

• Automate the detection and correction of identity-based risks.
• Investigate risks using data in the portal.
• Export risk detection data to third-party utilities for further analysis.

You configure Azure Active Directory self-service password reset to enable users to reset their passwords or unlock their accounts. With SSPR, users can reset their credentials without helpdesk or administrator assistance. This ability lets users regain access to their account without waiting for additional support.

XVIII. VM Replication Via ASR

Azure Site Recovery (ASR) service helps in strengthening your business continuity and disaster recovery (BCDR) strategy that keeps your data safe, and your apps and workloads online, when planned and unplanned outages occur.

•  Site Recovery replicates workloads running on physical and virtual machines (VMs) from a primary site to a secondary location, hence creating automatic failovers.
• Backup service keeps your data safe and recoverable.

In this Activity Guide, we will walk you through the steps to browse through the Azure Portal and how to use the Azure Site Recovery service to create your own robust cloud solutions.

 XIX. WebApps Creation With 2 Deployment Slots

When you deploy your web app, web app on Linux, mobile back end, or API app to Azure App Service, you can use a separate deployment slot instead of the default production slot when you’re running in the Standard, Premium, or Isolated App Service plan tier.

Deploying your application to a secondary slot has the following benefits:

• You can validate app changes in a staging secondary deployment slot before swapping it with the production slot.
• Deploying an app to a secondary slot first and swapping it into production makes sure that all instances of the slot are running smoothly
• After a swap, if the changes swapped into the production slot aren’t as you expect, you can reverse the swap immediately to get your “last known good site” back.

In this Activity Guide, we will walk you through the steps to browse through the Azure Portal and how to set up a production slot as well as a secondary slot for your web app so that all updates and changes in production are done seamlessly.

XX. Azure Kubernetes cluster (AKS)

Modern applications are increasingly built using containers, which are microservices packaged with their dependencies and configurations. Kubernetes is open-source software for deploying and managing those containers at scale, Azure Kubernetes Cluster lets you do just that for the microservices you run on the Azure cloud.

In this Activity Guide, we will walk you through the steps to browse through the Azure Portal and how to setup AKS and manage your microservices without hassles on the cloud.

More information on Containers (Docker) & Kubernetes in Azure can be found here.

XXI. Governance & Compliance (Create Alerts + Log analytics workspace + Azure Policy)

Governing your own resources and how they are used is only part of the solution when using a cloud provider. You also have to understand how the provider manages the underlying resources you are building on. Azure Policy and Compliance Manager help you to do just that and keep your cloud environment compliant with the necessary norms.

In this Activity Guide, we will walk you through the steps to browse through the Azure Portal and do just that and also cover log analytics among other things.

Related/References

• [AZ-103] Microsoft Azure Administrator Certification Exam: Everything You Need To Know
• [AZ-104] Microsoft Azure Administrator Certification Exam: Everything You Need To Know
• AZ-104 v/s AZ-103: Microsoft Azure Certification Exam
• Azure Cloud Administrator [AZ-104] Certification Q/A (Free Masterclass)
• Official Microsoft Azure Administration certification exam details can be found here for both AZ-103 and AZ-104.

Next Task For You

Begin your journey towards becoming a Microsoft [AZ-104] Certified Azure Administrator by joining our FREE Masterclass. We strongly recommend gaining knowledge from both AZ-103 and AZ-104 in order to be an effective Azure Administrator. Our course covers both AZ-103 and AZ-104 certification.

Click on the below image to register for the Free Masterclass NOW!

The post [AZ-104/103] Microsoft Azure Administrator Training: Step By Step Activity Guides/Hands-On Lab Exercise appeared first on Oracle Trainings.

This blog post covers everything you must know if you are appearing for the Certified Kubernetes Administrator (CKA) Certification.

What Is Certified Kubernetes Administrator (CKA) Exam?

Certified Kubernetes Administrator certification is to provide assurance that Kubernetes Administrators have the skills, knowledge, to perform the responsibilities of Kubernetes administrators.

Pre-requisite For Certified Kubernetes Administrator

There is no Pre-requisite for this certification, you can go for this exam directly. Up-to-date CKA learning and hands-on experience are recommended.

Why Certified Kubernetes Administrator (CKA) Certification?

• Advantage(Unfair): Two CVs with same experience but one with Certification
• Better Job Prospects & Higher Salary
• Stand Out by Displaying Digital Badge on LinkedIn
• It provides you with global recognition for your knowledge, skills, and experience.

General Information Certified Kubernetes Administrator (CKA):

• Certification Name: Certified Kubernetes Administrator (CKA)
• Target Audience: There are no pre-requisites for taking this course. It is targeted for anyone that wants to learn more about Kubernetes Administrator Tasks.
• Exam Duration: 3 hours
• Number of Questions: 24 questions
• Passing score: 74% or higher to earn the certification
• Exam Cost: $300

Exam Retake Policy:

For exams purchased directly from The Cloud Native Computing Foundation, one (1) free retake per exam purchase will be granted in the event that a passing score is not achieved and the candidate has not otherwise been deemed ineligible for certification or retake.

Learning Path For Certified Kubernetes Administrator (CKA)

What Topics You Should Learn?

This includes these general domains and their weights on the exam:

1) Application Lifecycle Management – 8%

• Understand deployments and how to perform rolling update and rollbacks
• Know various ways to configure applications
• Know how to scale applications
• Understand the primitives necessary to create a self-healing application

2) Installation, Configuration & Validation – 12%

• Design a Kubernetes Cluster
• Install Kubernetes Masters and Nodes
• Configure secure cluster communications
• Configure a highly-available Kubernetes cluster
• Know where to get the Kubernetes release binaries
• Provision underlying infrastructure to deploy a Kubernetes cluster
• Choose a network solution
• Choose your Kubernetes infrastructure configuration
• Run end-to-end tests on your cluster
• Analyze end-to-end test results
• Run Node end-to-end Tests
• Install and use kubeadm to install, configure, and manage Kubernetes clusters

3) Core Concepts – 19%

• Understand the Kubernetes API primitives
• Understand the Kubernetes cluster architecture
• Understand Services and other network primitives

4) Networking – 11%

• Understand the networking configuration on the cluster nodes
• Understand Pod networking concepts
• Understand Service Networking
• Deploy and configure network load balancer
• Know how to use Ingress rules
• Know how to configure and use the cluster DNS
• Understand CNI

5) Scheduling – 5%

• Use label selectors to schedule Pods
• Understand the role of DaemonSets
• Understand how resource limits can affect Pod scheduling
• Understand how to run multiple schedulers and how to configure Pods to use them
• Manually schedule a pod without a scheduler
• Display scheduler events

6) Security – 12%

• Know how to configure authentication and authorization
• Understand Kubernetes security primitives
• Know how to configure network policies
• Create and manage TLS certificates for cluster components
• Work with images securely
• Define security contexts
• Secure persistent key value store

7) Cluster Maintenance – 11%

• Understand Kubernetes cluster upgrade process
• Facilitate operating system upgrades
• Implement backup and restore methodologies

8) Logging / Monitoring – 5%

• Understand how to monitor all cluster components
• Understand how to monitor applications
• Manage cluster component logs
• Manage application logs

9) Storage – 7%

• Understand persistent volumes and know how to create them
• Understand access modes for volumes
• Understand persistent volume claims primitive
• Understand Kubernetes storage objects
• Know how to configure applications with persistent storage

10) Troubleshooting – 10%

• Troubleshoot application failure
• Troubleshoot control plane failure
• Troubleshoot worker node failure
• Troubleshoot networking

Related Post 

• [Video] Containers (Docker) & Kubernetes In Azure For Beginners

Next Task For You

Begin your journey towards becoming a Certified Kubernetes Administrator (CKA).

Click on the Join Waitlist now button below to join the waitlist of our much-awaited Certified Kubernetes Administrator (CKA).

The post Certified Kubernetes Administrator (CKA) Certification Exam: Everything You Must Know appeared first on Oracle Trainings.

This blog-post will cover everything you need to know about Azure Dashboard, which is sometimes overlooked but is a powerful tool.

Advantages Of Azure Dashboard

• Microsoft Azure gives you the ability to create custom dashboards.
• Imagine you have set up multiple services on the Azure portal and now want to be able to keep track of all of them, here Azure Dashboard comes into the picture.
• It is kind of a collection of shortcuts to resources in Azure, which makes it easy for you to access, organize, and visualize. Azure dashboard lets you have direct access to all your favorite resources in a way that works for you.
• Creating a custom dashboard can enable you to quickly consume relevant information, identify issues, and make navigation easier.

Supports Multiple Dashboards

Microsoft Azure supports multiple dashboards in the Azure portal that each include tiles showing data from different Azure resources across different resource groups and subscriptions, so you can create different dashboards for different teams or clone an existing one.

How To Create A Dashboard

• To create a new private dashboard, sign in to the Azure portal and from the menu select Dashboard, then click on the +New dashboard tab on top.
• Now you will be shown the Tile Gallery, where you can select tiles that you can arrange on an empty grid.
• To change the name of the dashboard click on My Dashboard and enter the name you like.
• After you are done click on Done customizing in the page header.
• The dashboard view will now show your newly created dashboard.

Azure provides multiple ways to create and customize dashboards within the portal:

• Dashboard editor
• Pinning Azure Resources to your dashboard
• Creating a dashboard in JSON
• Auto-generated dashboards

You can make use of the graphical user interface or create a dashboard in JSON where the dashboard is represented programmatically as JSON. It looks similar to the Azure Resource Manager (ARM) Template, and it lets you deploy new dashboards from within this template. To learn more about creating dashboards in the Azure portal click here.

Sharing Azure Dashboard

To share the dashboard amongst others who are working in your Azure environment, click the Share button at the top of the dashboard tab, and then choose a name, location, subscription. Dashboards by default will have a resource group created, but you can deploy it to different resource groups if you like. Shared dashboards give you the ability to control which user gets access to view the dashboard.

Sample Question

Here is a sample question from Microsoft Azure DevOps Certification Exam [AZ-400]

Q. You need to recommend project metrics for dashboards in Azure DevOps. Which chart widgets should you recommend for each metric? Each chart widget may be used once, more than once, or not at all.

Ans.

Explanation:

Box 1: Lead time measures the total time elapsed from the creation of work items to their completion.

Box 2: Cycle time measures the time it takes for your team to complete work items once they begin actively working on them.

Box 3: Burndown charts focus on remaining work within a specific time period.

Related/References

• [AZ-400] Azure DevOps Certification Path
• [AZ-400] Roles And Responsibilities As An Azure DevOps Engineer
• [AZ-400] Microsoft Azure DevOps Certification Exam: Everything You Need To Know
• [AZ-400] Microsoft Azure DevOps Training: Step By Step Activity Guides/Hands-On Lab Exercise
• [AZ-400] Azure DevOps Services for Beginners

Next Task For You

Begin your journey towards becoming a Microsoft [AZ-400] Certified Azure DevOps Engineer and earning a lot more in 2020 by joining our FREE Masterclass.

Click on the image below to Register for the Free Masterclass Now!

The post [AZ-400] Microsoft Azure Dashboard appeared first on Oracle Trainings.

Looking to become [DOFD] DevOps Foundations certified? If you’re one of those who have ever aspired to clear this certification then this blog post is for you! In this blog post, I am going to cover all the necessary exam details such as course content, exam duration, audience, and much more! So, read below to get all the latest information regarding DevOps Foundation certification.

This Certification requires professionals who are capable of combining processes, people, and technologies for continuously delivering services and products that meet business objectives and user needs and have completed at least 16 contact hours (instruction and labs) as part of a formal, approved training course delivered by an accredited Education Partner of DevOps Institute.

Exam Details (DOFD):

• Certification Name: [DOFD] DevOps Institute DevOps Foundation
• Prerequisites: It is recommended that candidates complete at least 16 contact hours (instruction and labs) training for the DevOps Foundation course from an accredited DevOps Institute Education Partner.
• Exam Type: 40 multiple choice questions
• Duration: 60 minutes
• Passing score: 65%
• Exam Cost: USD 245.00 (pricing may vary according to region)

DOFD Exam Topics:

The important domains covered in the [DOFD] DevOps Foundations certification exam are:

• DevOps objectives and vocabulary.
• Principles and practices including Continuous Integration, Continuous Delivery, testing, security and the Three Ways
• DevOps relationship to Agile, Lean, and ITSM.
• Improved workflows, communication, and feedback loops.
• Automation practices including deployment pipelines and DevOps toolchains.
• Scaling DevOps for the enterprise.

Who This Certification Is For?

The DevOps Foundation course is targeted towards an audience includes Management, Operations, Developers, QA and Testing professionals such as:

• Individuals involved in IT development, IT operations or IT service management
• Individuals who require an understanding of DevOps principles
• IT professionals working within, or about to enter, an Agile Service Design Environment

Related/References

• [AZ-400] Microsoft Azure DevOps Certification Exam: Everything You Need To Know
• Check out the official DevOps Institute page for [DOFD] DevOps Foundation here

Next Task For You

Begin your journey towards becoming DevOps Foundations certified and earning a lot more in 2020 by joining our FREE Masterclass.

Click on the below image to Register for the FREE MASTERCLASS Now!

The post [DOFD] DevOps Foundation Certification Exam: Everything You Need To Know appeared first on Oracle Trainings.

Planning to start your career in Azure Cloud? Wondering where to start?

If so, then you’re in the right place! This blog post contains all the information you need to know about the [AZ-900] Microsoft Azure Fundamentals Certification Exam.

Read below to know what AZ-900 Microsoft Azure Certification is all about and how earning this certification could boost your career.

What Is [AZ-900] Microsoft Azure Exam?

AZ-900 certification exam is designed for candidates looking to demonstrate foundational-level knowledge of cloud services and how those services are provided with Microsoft Azure. This exam can be taken as an optional first step in learning about cloud services and how those concepts are exemplified by Microsoft Azure. It can be taken as a precursor to Microsoft Azure or Microsoft cloud services exams.

Here’s a step-by-step blog to help you create a completely FREE Trial Cloud Account on Microsoft Azure.

Who Can Do This Certification?

Why You Should Learn About Azure?

• Azure is 5 times more Cheaper than AWS for Windows Server and SQL Server.
• The organization looks for those who have knowledge of Azure, Oracle Cloud, etc.
• Azure provides flexible purchasing and pricing options for all your cloud scenarios
• Better Job Prospects & Higher Salary after the certification.
• Azure is the only consistent hybrid cloud, has more regions than any cloud provider, delivers unparalleled developer productivity, and offers more comprehensive compliance coverage.
• If you are already working on Oracle Cloud Infrastructure (OCI),  Microsoft and Oracle customers will soon be able to migrate and run mission-critical enterprise workloads across Microsoft Azure and Oracle Cloud thanks to a new cloud interoperability partnership between the two companies. For more details on this Click here

General Information Microsoft Azure Certification (AZ-900):

• Certification Name: AZ-900: Microsoft Azure Fundamentals
• Target Audience: There are no pre-requisites for taking this course. It is targeted for anyone that wants to learn more about Microsoft Azure.
• Exam Duration: 90 minutes
• Number of Questions: 40-60
• Passing Score: 700
• Exam Cost: $99.00 USD

Azure Certification Path

Learning Path For Azure Fundamental 

What Topics You Should Learn?

If you planning to take this exam, you have to be well prepared with the topics:

1. Cloud Concepts
2. Azure Core Services
3. Security, Privacy, Compliance and Trust
4. Azure Pricing and Support

Here are Module-wise topics which you have to learn before appearing into AZ-900: Microsoft Azure Fundamentals Certification: 

1. Understand Cloud Concepts (15-20%)

• Topic 1.1 Microsoft Azure Fundamentals: Overview & Benefits
• Topic 1.2 Microsoft Azure Fundamentals: CapEx vs OpEx Model  
• Topic 1.3 [Video]Cloud Service Model: SaaS | PaaS | IaaS
• Topic 1.4 Cloud Deployment Models: Public, Private & Hybrid 

For self-learning about Cloud Concepts – Principles of cloud computing Click here

2. Understand core Azure services (30-35%)

• Topic 2.1 Azure Architecture: Region, Availability Zone & Geography
• Topic 2.2 Azure Resource Groups, ARM &  ARM Template
• Topic 2.3 Azure Core Services: Compute, Network, Storage & Database
• Topic 2.4 Microsoft Azure Solutions: IoT, Big Data Analysis, ML & Serverless
• Topic 2.5 Azure Management Tools: Powershell, Cloud Shell & Advisor

For self-learning about Core Cloud Services – Azure architecture and service guarantees to Click here 

3. Understand Security, Privacy, Compliance and Trust (25-30%)

• Topic 3.1 Microsoft Azure Secure Network Connectivity: Firewall, DDOS, & NSG
• Topic 3.2 Microsoft Azure Core Identity Services 
• Topic 3.3 Security tools
• Topic 3.4 Azure Governance
• Topic: 3.5 Monitoring & reporting
• Topic: 3.6 Privacy, compliance, data protection

For Self learning about Azure Security, Privacy, Compliance, and Trust Click here 

4. Understand Azure Pricing And Support (25-30%)

• Topic 4.1 Azure subscription
• Topic 4.2 Plan & Manage cost
• Topic 4.3 Azure support options
• Topic 4.4 Azure Service level agreements
• Topic 4.5 Service lifecycle in Azure

For Self learning about Azure pricing and support Click here.

Exam Retake Policy

• First of all, if a candidate fails in the first attempt, he/she has to wait 24 hours before exam retake.
• Secondly, if he/she fails in the 2nd attempt, then they should wait for 14 days to retake the exam.
• A candidate can take a maximum of 5 retakes in a year.

Related/References

• Learn how to create a Free Microsoft Azure Trial Account
• What are Resources and How to Create a Resource Group
• How to Register For [AZ-900] Microsoft Azure Fundamentals Certification Exam

Next Task For You

Begin your journey towards Azure, Getting [AZ-900] Microsoft Azure Fundamentals certified, and earning a lot more in 2020 by joining our FREE Masterclass.

Click on the below image to Register for the FREE MASTERCLASS Now!

The post [AZ-900] Microsoft Azure Fundamentals Certification Exam: Everything You Must Know appeared first on Oracle Trainings.

Microsoft has officially announced the public preview of custom role management in the Azure portal, making it easier for you to customize the permissions you grant your users or applications to access Azure resources.

I’m excited to share some details on a new experience to the Azure portal, which allows you to manage custom roles that can be used to grant permissions to Azure resources. This is an evolution of the current experience only available in the command-line, Azure PowerShell and Azure Resource Manager API.

What is Custom Roles?

If the Azure built-in roles don’t meet the specific needs of your organization, you can create your own Azure custom roles. Just like built-in roles, you can assign custom roles to users, groups, and service principals at subscription and resource group scopes.

They are stored in an Azure Active Directory (Azure AD) directory and can be shared across subscriptions. Each directory can have up to 5000 custom roles.

Prerequisites

To create custom roles, you need:

1. Permissions to create custom roles, such as Owner or User Access Administrator

How to Create Azure Custom Roles?

Step 1: Choose how to start

There are three ways that you can start to create a custom role. You can clone an existing role, start from scratch, or start with a JSON file. The easiest way is to find an existing role that has most of the permissions you need and then clone and modify it for your scenario.

• Start from scratch

If you prefer, you can follow these steps to start a custom role from scratch.

1. In the Azure portal, open a subscription or resource group where you want the custom role to be assignable and then open Access control (IAM).
2. Click Add and then click Add custom role.

This opens the custom roles editor with the Start from scratch option selected.

Step 2: Create Custom Roles (Basics)

On the Basics tab, you specify the name, description, and baseline permissions for your custom role.

1. In the Custom role name box, specify a name for the custom role. The name must be unique for the Azure AD directory. The name can include letters, numbers, spaces, and special characters.
2. In the Description box, specify an optional description for the custom role. This will become the tooltip for the custom role.

The Baseline permissions option should already be set based on the previous step, but you can change.

Step 3: Permissions

On the Permissions tab, you specify the permissions for your custom role.

Step 4: Assignable scopes

On the Assignable scopes tab, you specify where your custom role is available for assignment, such as subscription or resource group. Depending on how you chose to start, this tab might list the scope where you opened the Access control (IAM) page. Setting assignable scope to root scope (“/”) is not supported. Currently, you cannot add a management group as an assignable scope

1. Click Add assignable scopes to open the Add assignable scopes pane

2. Click one or more scopes that you want to use, typically your subscription.

3. Click the Add button to add your assignable scope.

Step 5: JSON

On the JSON tab, you see your custom role formatted in JSON. If you want, you can directly edit the JSON.

1. To edit the JSON, click Edit

2. Make changes to the JSON.

If the JSON is not formatted correctly, you will see a red jagged line and an indicator in the vertical gutter.

3. When finished editing, click Save

Step 6: Review + create

On the Review + create tab, you can review your custom role settings.

1. Review your custom role settings.

2. Click Create to create your custom role.

After a few moments, a message box appears indicating your custom role was successfully created.

3. View your new custom role in the Roles list. If you don’t see your custom role, click Refresh.

It can take a few minutes for your custom role to appear everywhere.

Once you have your custom role, you have to test it to verify that it works as you expect. If you need to make adjustments later, you can update the custom role

So, that’s how you can create your own custom roles according to your requirement and assign it to the users, groups, and service principals at the management group, subscription, and resource.

Related/Reference

• Azure Custom Roles using PowerShell
• Azure Custom Roles using CLI
• Azure Role-Based Access Control

Next Task For You

We have covered the above topic in detail in Module 1: Azure Identities And Governance of our AZ-104: Microsoft Azure Administrator  Training program. To know more about our AZ-104 Microsoft Azure Administrator Training, and which Microsoft Azure Cloud Certification Useful & Earn More by registering for our FREE Masterclass.

Click on the below image to Register Our FREE Masterclass Now!

The post Create Azure Custom Roles Using Azure Portal appeared first on Oracle Trainings.

Before deploying the application in Oracle Cloud, a customer may want to know what services will be provided by the Oracle Cloud and for this, there is an agreement between the provider(Oracle) and customer. A cloud SLA ensures that cloud providers meet some enterprise-level requirements and provide customers with a clearly defined set of deliverables.

In this blog post, we’ll cover :

• Overview of SLA in Oracle Cloud
• Oracle SLA Key Points
• Control Plane and Data Plane in OCI
• Oracle Support Service
• Severity Level in SR 

Overview Of SLA In Oracle Cloud

Financially-backed commitment to provide a minimum level of service to customers. SLAs are an essential part of an IT vendor contract.

• A cloud SLA (cloud service-level agreement) is an agreement between a cloud service provider and a customer that guarantees a minimum level of service is maintained.
• It promises levels of reliability, availability, and responsiveness to systems and applications, while also agreeing who will govern when there is a service disruption. Every service provided by OCI has SLA.
• In OCI availability is defined as any valid API call that performs a cryptographic operation and returns a response.
• Monthly uptime percentage is calculated by subtracting the number of minutes in a month during which the service was unavailable from a total number of minutes in a month.
• “Unavailable” or “Unavailability” means any time during which a problem with the Oracle PaaS and IaaS Public Cloud Service prevents external connectivity to any of Your instances of such Service.

Note: We can check Service Limit, Quotas & Usage report from the OCI console

To read more about Limits, Quotas, and Usage click here.

Oracle Cloud SLA Key Points

Oracle SLA covers end to end performance, Availability, and manageability offer SLAs in all three dimensions.

1. Performance: Keeps track of various services available are performing as expected.
2. Availability: Refers to how much time the service provider guarantees that your data and services are available.
3. Manageability: The ability to manage, monitor, and modify resources of OCI.

Comparison Of OCI SLA With Other Cloud Providers

Control Plane & Data Plane In OCI

In OCI control plane is in regard to the Administration of resources and the data plane is in regard to usage of resources.

For example: creating an API function in the OCI part of the control plane and invoking API is part of the data plane.

The picture shows different types of SLAs associated with a different type of services

Oracle Support Service

Support service is available for all paid accounts associated with oracle and it is part of SLA. Access to forum and support documentation is also provided to all OCI users.

To sign up for support services following steps are to be followed

1) Navigate to http://www.oracle.com/ and create a user if already not created.

2) Enter the following URL in a browser then sign in to My Oracle Support: http://support.oracle.com/

3) Enter your Support Identifier (SI) then add an optional note to the approver and click Next.

4) Enter the required fields then select Submit.

To know about how to register for free Oracle Cloud trial account click here

Paid accounts can request for following services to Oracle support

1. Resolving technical issues
2. Resetting password
3. Requesting the service limit
4. Changing admin

Free trial accounts can request for following services to Oracle support

1. Reset password or unlock the account for the tenancy administrator.
2. Add or change a tenancy administrator.
3. Request a service limit increase.

To know more about Contacting support click here

Severity Level in Service Requests (SR)

There are various level severity that defines the priority of Service Request

• Severity 1: The operation is mission-critical and an emergency situation (high priority) Like: Data corrupted, a critical documented function unavailable.
• Severity 2: Experiencing a Severe loss of service (low priority than Severity 1)
• Severity 3: Experiencing a minor loss of service (low priority than Severity 2)
• Severity 4: Request for clarification in documentation or enhancement in services. (least priority)

Related/References

• SLA Oracle Cloud
• 1Z0-1085-20 | Oracle Cloud Infrastructure Foundations
• 1Z0-1072 | Oracle Cloud Infrastructure Architect Associate
• 1Z0-932 V/S 1Z0-1072: Oracle Cloud Infra Architect Associate Certification
• 1Z0-997 | Oracle Cloud Infrastructure 2019 Architect Professional

Next Task For You

Begin your journey towards becoming an Oracle Cloud Infrastructure Foundations 2020 Certified Associate by joining our Training on [1Z0-1085] Oracle Cloud Infrastructure Foundations.

Click on the image below to join FREE Masterclass on [1Z0-1085] OCI Foundations:

The post Service Level Agreement (SLA) In Oracle Cloud (OCI) appeared first on Oracle Trainings.

This post covers issues while running Autoconfig on DB Tier after upgrading the database.

If you are new to EBS, please check our previous posts:

• Steps to Download Oracle EBS R12 Software from edelivery site
• Oracle E-Business Suite (EBS) 12.2.9 Now Available & Its Upgrade Steps
• [1Z0-238] Oracle EBS R12 Certified Specialist Everything You Must Know About

Issue:

1. Running Autoconfig on Database tier as

$ORACLE_HOME>/appsutil/bin/adconfig.sh contextfile=$ORACLE_HOME/appsutil/PROD1211_iamdemo01.xml

Error messages in AutoConfig logs: /u01/oracle/PROD1211_11204/db/tech_st/11.2.0/appsutil/log/

PROD1211_iamdemo01/12180900/adconfig.log

SQLPLUS Executable : /u01/oracle/PROD1211_11204/db/tech_st/11.2.0/bin/sqlplus

ERROR:
ORA-01804: failure to initialize timezone information

SP2-0152: ORACLE may not be functioning properly
adcrobj.sh exiting with status 1
ERRORCODE = 1 ERRORCODE_END

Fix:

Apply patch 7651166 (as per ReadMe instructions ) to fix the above issue and run AutoConfig again as

$ORACLE_HOME/ appsutil/ bin/ adconfig.sh contextfile=$ORACLE_HOME/ appsutil/PROD1211_iamdemo01.xml

You should see a message “AutoConfig Completed Successfully”

Related Further Readings

• [1Z0-238] Oracle EBS R12 Certified Specialist Everything You Must Know About
• 19c Database In Oracle EBS R12: Everything You Must Know
• Steps to Download Oracle EBS R12 Software from edelivery site
• Oracle E-Business Suite (EBS) 12.2.9 Now Available & Its Upgrade Steps
• EBS 12.1.1: Autoconfig Fails While Running Scripts “afdbprf.sh” and “adcrobj.sh” with 11GR2 Database (Doc ID 1336807.1)
• AutoConfig On Db Tier Fails With Error – SP2-1503: Unable to initialize Oracle call interface (Doc ID 1187616.1)

Next Task for You

Begin your journey towards becoming an Oracle EBS Upgrade R12.2 AppsDBA by joining our Training on Upgrade EBS R12/11i To R12.2

Click on the image below to join FREE Masterclass on Upgrade EBS R12/11i To R12.2:

The post [Solved]Upgrade Oracle Apps (EBS) to 12.2 ? ORA-01804: failure to initialize timezone information – issue while running AutoConfig appeared first on Oracle Trainings.

This post covers one of the encountered issues “ORA-29283: Invalid File Operation” while running an American English Upgrade patch driver, when upgrading to Oracle EBS R12.2.

If you are new to EBS, please check our previous posts:

• Steps to Download Oracle EBS R12 Software from edelivery site
• Oracle E-Business Suite (EBS) 12.2.9 Now Available & Its Upgrade Steps
• [1Z0-238] Oracle EBS R12 Certified Specialist Everything You Must Know About

Issue:

1. Running the merged driver on the administration server node on Release 12.2 APPL_TOP using the following commands:

cd $ORACLE_BASE/fs1/EBSapps/appl/au/12.0.0/patch/115/driver

adpatch options=nocopyportion,nogenerateportion

Note: Merged driver must be applied using adpatch options=nocopyportion,nogenerateportion on RUN File System.

2. But Patch got failed with below error messages.

As it was showing issue on worker1 so we looked into log file of worker 1 located at

$ORACLE_BASE/fs1/EBSapps/appl/admin/PRD122/log and it was showing below issue

Cause:

Issue with the write permissions in $APPLPTMP/UTL_FILE_DIR. wmsgrlspecn.sql creates a file under $APPLPTMP/ UTL_FILE_DIR with the name GenRulepkgs.log.

The error will occur if this file exists under a different user (If you have multiple environments owned by different O.S. user on server then you could run into issues like this).

Fix:

To resolve this issue follow the steps as given below:

1. Ensure that the user running the patch or the script has write permissions to $APPLPTMP/UTL_FILE_DIR location. To find the value for utl_file_dir

sqlplus apps/<apps password>

SELECT name, value FROM v$parameter WHERE name LIKE ‘utl_file_dir’;

2. If $APPLPTMP/GenRulepkgs.log exists under a different user, then change permissions to 755 on the file so that current user can write to it.

chmod 755 $APPLPTMP/GenRulepkgs.log

3. Restart adpatch again as

cd $ORACLE_BASE/fs1/EBSapps/appl/au/12.0.0/patch/115/driver

adpatch options=nocopyportion,nogenerateportion

And this time adpatch completed successfully.

Related Further Readings

• [1Z0-238] Oracle EBS R12 Certified Specialist Everything You Must Know About
• 19c Database In Oracle EBS R12: Everything You Must Know
• Steps to Download Oracle EBS R12 Software from edelivery site
• Oracle E-Business Suite (EBS) 12.2.9 Now Available & Its Upgrade Steps
• Script Wmsgrlspecn.sql Fails With ORA-29283: Invalid File Operation (Doc ID 314293.1)

Next Task for You

Begin your journey towards becoming an Oracle EBS Upgrade R12.2 AppsDBA by joining our Training on Upgrade EBS R12/11i To R12.2

Click on the image below to join FREE Masterclass on Upgrade EBS R12/11i To R12.2:

The post [Solved]Upgrading Oracle Apps (EBS) to 12.2 ? ORA-29283: Invalid File Operation appeared first on Oracle Trainings.

This blog post gives a walkthrough of the Step-By-Step Activity Guides of Certified Kubernetes Administrator (CKA) Certification training program that you must perform to learn this course.

This post covers Hands-On Activity Guides that you must perform in order to learn Docker & Kubernetes and clear Certified Kubernetes Administrator (CKA) certification exam.

Note: To know more about Certified Kubernetes Administrator (CKA) exam click on link https://k21academy.com/kubernetes11

Activity Guide I: Docker Installation & Launching Container From Docker Hub

The first thing you must do is to install Docker on the machine to perform commands and operation. then the second important task is to Launch a container with Ubuntu image from Docker hub public images.

Activity Guide II: Working With Docker Images

Docker image is a file, comprised of multiple layers, that is used to execute code in a Docker container. In this Activity guide, we cover how to Create/Push an Image, how to Tag images, Inspect Image details, Listing out Images.

Activity Guide III: Creating Containers With Bridge Type Network

The Docker bridge driver automatically installs rules in the host machine so that containers on different bridge networks cannot communicate directly with each other. In this Activity guide, we cover Start container on Bridge network, Test network connectivity from server, Connecting to Container and check network connectivity.

Activity Guide IV: Implementing Multi-Container Connectivity & Host Networking

In this Activity guide, we cover Create and start the container as a detached process on Host network, verify & Open web browser of docker, and how to stop the container.

Activity Guide V: Working With Container & Implementing Hostpath & Volume Mount

Volumes are the preferred mechanism for persisting data generated by and used by Docker containers. If you start a container with a volume that does not yet exist, Docker creates the volume for you. In this Activity guide, we cover Create docker volume, Inspect volume, Create file in mounted volume path, Create a directory on Docker Host.

Activity Guide VI: Configuring External DNS, Logging And Storage Driver

In this Activity guide, we cover Verify the resolv.conf file content, Restart Docker service, Start container with specific Logging driver, Verify present Storage driver configured.

Activity Guide VII: Building Dockerfile To Setup Ubuntu Container With WordPress Application

In this Activity guide, we cover creating a dockerfile, Add code to the dockerfile, Create sample index.html file, Execute the Dockerfile, Use “nginxbuilt” image to start an nginx container.

Activity Guide VIII: Deploying Multi Container Application With Docker Compose

Compose is a tool for defining and running multi-container Docker applications. With Compose, you use a YAML file to configure your application’s services. In this Activity guide, we cover Installing the docker-compose, Start the container application, Push the application image to the registry.

Activity Guide IX: Bootstrap a Kubernetes Cluster Using KubeAdm & On Cloud

Kubeadm is a tool built to provide kubeadm init and kubeadm join as best-practice for creating Kubernetes clusters. it is used to bootstrapping machines, not used to provisioning machines. In this Activity guide, we cover Installing kubeadm, kubelet and kubectl on a machine, Installing container runtime.

Activity Guide X: Scaling Application With Replication Controller

a ReplicationController makes sure that a pod is always up and available. If there are too many pods, the ReplicationController terminates the extra pods. If there are too few, the ReplicationController starts more pods. In this Activity guide, we cover Running ReplicationController, Deleting a ReplicationController, and its Pods.

Activity Guide XI: Upgrading And Rollback Application With Deployment And ReplicaSet

In this Activity guide, we cover Creating a Deployment Updating a Deployment, Rolling Back a Deployment, Scaling a Deployment, writing and working with ReplicaSet.

Activity Guide XII: Automated Scaling of Application With HPA And Metric Server

The Horizontal Pod Autoscaler automatically scales the number of pods in a replication controller, deployment, replica set or stateful set based on observed CPU utilization. The Horizontal Pod Autoscaler is implemented as a Kubernetes API resource and a controller. In this Activity guide, we cover configurable scaling behavior, Autoscaling during rolling update.

Activity Guide XIII: Creating Pods With ClusterIP And NodePort Type of Services

ClusterIP is default type exposes the service on a cluster-internal IP. In this Activity guide, we cover Defining a Service, IPVS proxy mode, Multi-Port Services.

Activity Guide XIV: Demonstrating Ingress Controller Load Balancing Techniques

An API object that manages external access to the services in a cluster, typically HTTP. Ingress provide load balancing, SSL termination and name-based virtual hosting. In this Activity guide, we are covering Ingress Resource, Ingress Controller Load Balancing Techniques.

Activity Guide XV: Creating Pod With HostPath Persistent Volume and Volume Claim

In this Activity guide, we are covering how to Create a PersistentVolume, Create an index.html file on your Node, Create a PersistentVolumeClaim, How to Create a Pod.

Activity Guide XVI: Deploying Stateful Application In Kubernetes Cluster

In this guide we cover how to run a replicated stateful application using a StatefulSet controller, stateful Pod initialization, Cloning existing data, Sending client traffic.

Activity Guide XVII: Understanding DaemonSets & Pod assignment with Node Selector

We can constrain a Pod to only be able to run on a particular Node, or to prefer to run on particular nodes. nodeSelector is the simplest recommended form of node selection constraint. In this guide we cover how to use nodeSelector, Node isolation/restriction, how to create a DaemonSet, How Daemon Pods Schedule, Updating a DaemonSet.

Activity Guide XIX: Advanced Pod Scheduling With Node Affinity, Anti-Affinity, Taint & Toleration

The affinity/anti-affinity feature, greatly expands the types of constraints you can express. In this we can indicate that the rule is “soft”/“preference” rather than a hard requirement. In this guide, we cover pod that uses node affinity, Inter-pod affinity and anti-affinity, add a taint to a node using kubectl taint.

Activity Guide XX: Assigning Resource Quota And Demonstrating limiting Resources Scenario

When several users or teams share a cluster with a fixed number of nodes, there is a concern that one team could use more than its fair share of resources. Resource quotas are a tool for administrators to address this concern. In this guide, we cover Enabling Resource Quota, Compute Resource Quota, Storage Resource Quota, and more.

Activity Guide XXI: Configuring Health Check & Performing Node Maintenance

The node problem detector is DaemonSet monitoring the node health. It collects node problems from various daemons and reports them to the apiserver as NodeCondition and Event. In this guide, we cover Enable/Disable in GCE cluster, Overwrite the Configuration, Kernel Monitor.

Activity Guide XXII: Troubleshooting Application & Network Level Failure

In this guide, we cover troubleshooting the different issues while working on Kubernetes like how to Monitoring cluster components, Managing cluster logs, Monitoring application and analyzing logs, Troubleshooting application-level failure.

Activity Guide XXIII: Investigating Worker Node Failure And Control Plane Issues

As with any program, you might run into an error installing or running kubeadm. In this guide, we cover some common failure scenarios and have provided steps that can help you understand and fix the problem.

Activity Guide XXIV: Demonstrating Application And Cluster Logging, Monitoring & Security

This guide will define a model for some general concepts surrounding Cloud Native Security. In this guide, we cover General Code Security Guidance Table, General Infrastructure Guidance Table, End to End test in Kubernetes Cluster.

Activity Guide XXV: Implementing Network Policies In Kubernetes Cluster

A network policy is a specification of how groups of pods are allowed to communicate with each other and other network endpoints. In this guide, we cover The NetworkPolicy resource, Behavior of to and from selectors, SCTP support.

Related Post

• [Video] Containers (Docker) & Kubernetes In Azure For Beginners
• Certified Kubernetes Administrator (CKA) Certification Exam: Everything You Must Know

Next Task For You

Begin your journey towards becoming a Certified Kubernetes Administrator (CKA).

Click on the Join Waitlist now button below to join the waitlist of our much-awaited Certified Kubernetes Administrator (CKA).

The post Certified Kubernetes Administrator (CKA) Certification Training: Step By Step Activity Guides/Hands-On Lab Exercise appeared first on Oracle Trainings.

Oracle has announced on October 18, 2019, they were moving to a Continuous Innovation support model for Oracle E-Business Suite 12.2 and that there will be no 12.3 release.

This post covers a high-level overview of :

• Why Upgrade to EBS R12.2
• Why Upgrade to Database 19c
• Thing You Must Learn Before the EBS Upgrade
• EBS Upgrade Paths
• Upgrade High-level Steps

Why Upgrade To EBS R12.2?

• Oracle Apps DBA is in great demand and with 12.2 experience
• Good Salary if you know 12.2 as 11i & 12.0 out of support
• Customers on R12.1 are also looking to upgrade to R12.2 to take advantage of Online Patching feature

Why Upgrade To Database 19c?

• Oracle Database 11.2.0.4/12.1.0.2 Extended Support Waived Only Till Dec 2020 (To know more about this, check Extended Support Fee Waived for Oracle Database 12.1 and 11.2 for Oracle E-Business Suite)
• All Customers Should Upgrade Their Database By Then To Avoid Extra Cost
• At The Moment Only EBS R12.1.3 & R12.2.3+ Is Supported
• Support For R12.0 And 11i Is Expected On A Later Date

To know more about the Database upgrade 19c, check our post Here

Thing You Must Learn Before The EBS Upgrade

EBS Architecture Concepts: 

It is a three-tier architecture:

1. Client Tier
2. Application Tier
3. Database Tier

To know more about the EBS Architecture, click HERE

Fusion Middleware: WLS & OHS:

• Software layer that lies between business application and database
• Infrastructure which facilitates the creation of business applications
• Includes Web Servers, Application Servers, Content Management, Identity Management, SOA, Business Intelligence
• Oracle EBS R12.2 uses WebLogic & OHS from FMW

R12.2 File System:

• R12.2 has a dual File system.
• Run File system and Patch File system and are identical.

To learn more about the EBS File System, check our post HERE

Patching In EBS R12.2:

• In 12.2 all patching operations are online
• EBS will remain available to users during patching operations

To know more about patching, check our post HERE

EBR (Edition Based Redefinition):

• Edition-based redefinition allows multiple versions of PL/SQL objects, views, and synonyms in a single schema, which makes it possible to perform upgrades of database applications with zero downtime.
• Edition-based redefinition is a single technology that provides high availability during upgrades.
• 12.2 Uses Edition Based Redefinition to Support Online Patching (ADOP)
• Check Customizations Support 12.2 Development
• During Online Patching conversion make existing code compatible for EBR

EBS Upgrade Paths

You can upgrade directly to EBS R12.2 from the following base versions:

• EBS 11i
• EBS 12.0
• EBS 12.1

Upgrade High-level Steps

1. Preparation (Lay Down 12c & R12.2) no downtime

• Plan & Prepare for Upgrade – We need to plan and also document all the issues reported so that during the Final-Production upgrade downtime can be minimal. We need to plan and check all the intermediate version are supported if not operational. That is the key point during planning.
• Prepare for Upgrade–  This phase starts after the planning phase and includes Database and Application preparation for upgrade activity. This is the main upgrade phase where we perform all the upgrade activities

2. Apply Latest CUP+other performance patches – no downtime

3. Online Clone Database + Upgrade to 12c

• Database Upgrade – Select the latest version for the database. If 11g database, consider for 11.2.0.4 version or you can plan for 12c versions too. Also, apply the latest Consolidate patches as per the database versions. On the application side, we need to be on the Minimum baseline patches as per the Oracle recommendations.
• File System Lay down-  As we know R12.2 comes with the latest technology and file-system, so we need to lay down the R12.2 file-system using the latest startCD. Currently, StartCD 51 is available.

4. Upgrade to 12.2.0- We need to first upgrade to 12.2.0 and need to apply AD and TXK patches on the 12.2 filesystems. As this is the intermediate stage we need to perform it as a pre-install activity. At this stage, the Application will not be operational.

5. Upgrade further to 12.2.X- We are at 12.2 with the latest database now. Now on the application side, we can come to the latest version (12.2.5 Currently). We need to apply the latest technology patches (Delta 7 till now) and EBS RUP patches after that.

• Middle Tier patches -> 1594274.
• AD-TXK RUP patches -> 1617461.1
• EBS R12.2.X Document -> 12.2.4 or 12.2.5
• All the post-upgrade patches and steps

6. Apply Post – Upgrade Patch – 

Enable Online Patching – As you know new feature of R12.2 is online patching so we need to enable our old instance for the same. (MOS ID: 1531121)

7. Deploy Customization & External Integration

• Translations – In the case of multiple languages are there then we need to take care of Translation patches as well.  12.2 and then 12.2.X translated patches and also we need to apply TSP (Translation Sync Patches).
• Customization – Once standard/seeded code is at R12.2.X level we need to take care of the customizations in our old versions. For R12.2 we have new development standards and need to follow the same to get the custom code compliant with our applications.

8. Configuration:

• Check the Sizing’s
• Add Nodes for Horizontal Scale-up
• Add Managed Servers for Vertical Scale-up

Post – Upgrade Tasks

After the successful upgrade of your base version R12.1 to the version R12.2 or R12.2.x, you need to perform post-upgrade tasks which ensures the stability of the system and it includes:

• Minimize Downtime: MOS ID 1581549.1 Best Practices for Minimizing Oracle E-Business Suite Release 12 Upgrade Downtime
• Best Practices & Performance: MOS ID 1581549.1 Best Practices for Minimizing Oracle E-Business Suite Release 12 Upgrade Downtime
• Troubleshooting & Logs

Related Further Readings

• [1Z0-238] Oracle EBS R12 Certified Specialist Everything You Must Know About
• 19c Database In Oracle EBS R12: Everything You Must Know
• Steps to Download Oracle EBS R12 Software from edelivery site
• Oracle E-Business Suite (EBS) 12.2.9 Now Available & Its Upgrade Steps
• MOS ID 1581549.1 Best Practices for Minimizing Oracle E-Business Suite Release 12 Upgrade Downtime

Next Task for You

Begin your journey towards becoming an Oracle EBS Upgrade R12.2 AppsDBA by joining our Training on Upgrade EBS R12/11i To R12.2

Click on the image below to join FREE Masterclass on Upgrade EBS R12/11i To R12.2:

FREE Community

The post EBS R12.2 Upgrade High Level Overview/Steps appeared first on Oracle Trainings.

[May 29th, 2020] Update 12: A new Oracle Cloud Region added in Chuncheon, South Korea
[April 30th, 2020] Update 11: A new Oracle Cloud Region added in Hyderabad, India
[March 1st, 2020] Update 10: A new Oracle Cloud Region added in Montreal, Canada
[Feb 1st, 2020] Update 9: 3 new Oracle Cloud Regions added in Melbourne(Australia Southeast), Jeddah(Saudi Arabia West), Amsterdam(Netherlands Northwest)
[Jan 24th, 2020] Update 8: A new Oracle Cloud Region added in Osaka, Japan
[Aug 30th, 2019] Update 7: A new Oracle Cloud Region added in Sydney, Australia
[Aug 23rd, 2019] Update 6: A new Oracle Cloud Region added in Sao Paulo, Brazil
[Aug 2nd, 2019] Update 5: A new Oracle Cloud Region added in Zurich, Switzerland
[July 26th, 2019] Update 4: A new Oracle Cloud Region added in Mumbai, India
[May 13th, 2019] Update 3:  A new Oracle Cloud Region added in Seoul, South Korea
[Apr 30th, 2019] Update 2: Oracle added new  OCI Region in Tokyo, Japan
[Jan 17th, 2019] Update 1: Oracle added new OIC Region in Toronto, Canada

New Region Added: Chuncheon, South Korea

[Updated on May 29th,2020]

Oracle has announced the availability of a new Region in which you have 1 Availability Domain (AD)

What is Region

1. Oracle Cloud Infrastructure (OCI) Servers & Data is hosted in a Region.
2. There is a total of 18 Region now (i.e. London, Sao Paulo, Frankfurt, Ashburn, Phoenix, Canada, Tokyo, Seoul, Mumbai, Zurich, Sydney, Osaka, Melbourne, Jeddah, Amsterdam, Montreal, Hyderabad, Chuncheon).
3. Every Region can have up to 3 Availability Domain. The first 4 regions (London, Ashburn, Pheonix and Frankfurt) have 3 ADs while all the new regions have 1 AD each.
4. OCI services are Global (IAM), Regional (VCN, Object Storage) and some are AD Specific (Compute, DB System, Boot/Block Volumes).
5. When you create a Cloud Account a Home Region is by default allocated to you, wherein you can subscribe to another region as well.

How to Subscribe To New Region

1. Log in to the Cloud Console, & from the taskbar drop down, click on Manage Region, from there you can subscribe to any Region you want.

Note: As of March 2020 if you are using a trial account then you can only subscribe to Home Region.

2. Another method is Log into the Console, & from the Navigation menu, under Administration, click Region Management, there you can Subscribe to other Regions

Availability Domain (AD) & Fault Domain (FD)

• Availability Domain (AD) is one or more data centers located within a region. A region is composed of three availability domains.
• A Fault domain is a logical grouping of hardware and infrastructure within an Availability Domain, which Provides a higher degree of protection from unexpected hardware failures or computer hardware maintenance.

How A Region, FD & AD Provides High Availability?

• The region is divided into datacentres which are Availability Domains. ADs are further divided into Fault Domain & FD provides protection against failure within AD. This Process is a an example of High Availability within a Datacentre.
• If you are designing your databases, or VM, or Load Balancer then you will be configuring them within AD but across Fault Domains for High Availability within a Datacenter.
• If a region supports multiple ADs then you are going to deploy them across multiple ADs or you can configure them across Region to avoid any region failures.

To know more about core services in Oracle Cloud Infrastructure check here.

How to Check the Availability Domain

Availability Domain is one or more data centers located within a Region. Every Region can have up to 3 Availability Domains. The first 4 regions (London, Ashburn, Pheonix and Frankfurt) have 3 ADs while all the new regions have 1 AD each.

Once you subscribe to the new region, you can go under Compute & try to create an Instance.

Here, you can see, in this new region you will have only 1 AD

Realm in OCI

A realm is a logical collection of regions. Realms are isolated from each other and do not share any data. Tenancy exists in a single realm and can access regions that belong to the realm. Currently, there are 3 realms in OCI:

• Commercial Realm
• Govt Cloud: FedRAMP (Federal Risk & Authorization Management Program)
• Govt Cloud: IL5 Authorized (Impact Level 5)

Note: Not all services are currently supported in Govt Cloud.

Commercial vs Government Region

There are two types of Regions:

• Commercial
• Government

a) Government Cloud: Is dedicated to Government Organizations only (Federal compliant). Only government companies can access them with proper approvals, and this will be assigned by Oracle.
b) Commercial Cloud: Is not limited to one Organization but it is publicly available.

Note: For the full list of Oracle Cloud Regions including PaaS & IaaS check here

Related/Further Readings

• Oracle Cloud Infrastructure (OCI): Region, AD, FD, Tenancy, Compartment, VCN, IAM, Storage Service
• [Video 3 of 5] Oracle Cloud: Create VCN, Subnet, Firewall (Security List), IGW, DRG: Step By Step
• Data Regions for Platform and Infrastructure Services

Next Task For You

There are 3 levels of OCI Certifications:

• If you are a complete beginner you can go for [1Z0-1085] OCI Foundation.
• If you are already certified then you can go for [1Z0-1072] OCI Architect Associate.
• If you want to take your career to a higher level within OCI then you can go for [1Z0-997] OCI Professional.

Begin your journey towards becoming an Oracle Cloud Infrastructure Foundations 2020 Certified Associate by joining our Training on [1Z0-1085]Oracle Cloud Infrastructure Foundations.

Click on the image below to join FREE Masterclass on [1Z0-1085] OCI Foundations:

FREE Community

The post What is Region, Availability Domain (AD), Fault Domain (FD) & Realm in Oracle Cloud Infrastructure (OCI) appeared first on Oracle Trainings.

In this blog post, we will cover the Step-By-Step Activity Guides of [AZ-300] Microsoft Azure Architect training program, which you must implement to master this course. On the other hand, the [AZ-301] Microsoft Azure Architect Design course is design-oriented and does not contain any activity guides.

These Activity Guides provide you the same steps to implement Logic Apps, ARM Templates, Azure to Azure Migration, Event Grid, etc. The walkthrough of the Step-By-Step Activity Guides of [AZ-300] Microsoft Azure Architect training program will prepare you thoroughly for the AZ-300 certification. Also, you can check out my previous blog to know everything about the AZ-300 certification exam.

Activity Guide I: Create a Virtual Machine with custom VM Images

You can create your custom VM images in this Activity Guide using a Packer Template. We will be configuring a Packer template & building our Packer-based image. Then we will be deploying a Virtual Machine based on that custom image and validate its deployment.

II: Create a Virtual Machine Scale Set

Azure virtual machine scale sets let you create and manage a group of identical, load-balanced VMs. The number of VM instances can automatically increase or decrease in response to demand or a defined schedule. Scale sets provide high availability to your applications and allow you to centrally manage, configure, and update a large number of VMs.

This guide will cover the deployment of the Azure VM Scale Set using the Azure QuickStart template.

III: Exploring Monitoring capabilities in Azure

In this Activity Guide, we will cover how to deploy Virtual Machine scale sets and then implement monitoring & alerting using the Azure Monitor. Moreover, you’ll learn how to set-up metric-based alerts, autoscaling-based notifications, and testing.

IV: Create and Deploy an ARM Template

Azure Resource Manager (ARM) Templates are the simplest way of deploying Infrastructure-as-a-code.

ARM lets you deploy several resources together in a single unit, and the deployments are idempotent in that the user declares the type of resource, what name to use, and which properties it should have.

V: Encrypt a Virtual Machine

In this section, we will learn how to safeguard our VM’s data. We will be using Azure Disk Encryption to do so. Azure Disk encryption can be applied to both Linux and Windows virtual machines, as well as to virtual machine scale sets.

VI: Implementing Azure to Azure Migration

There are various scenarios in which you’d want to move your existing Azure IaaS VMs from one region to another to improve availability, reliability, governance, or manageability of your VMs.

We will start off by deploying an Azure VM, which needs to be migrated, and then we will migrate an Azure VM between Azure regions by using the Azure Recovery Service Vault.

VII: Configuring VNET Peering and service chaining

Virtual network peering enables you to connect networks in Azure Virtual Network seamlessly.

Azure supports the following types of peering:

• Virtual network peering: Connect virtual networks within the same Azure region.
• Global virtual network peering: Connecting virtual networks across Azure regions.

Service chaining enables you to direct traffic from one virtual network to a virtual appliance or gateway in a peered system through user-defined routes.

VIII: Implementing Load Balancer Standard

With Standard Load Balancer, you can scale your applications and create highly available services. The load balancer supports both inbound and outbound scenarios.

In this segment, we will be implementing inbound load balancing and NAT by using the Azure Load Balancer Standard. Then we will configure outbound SNAT traffic and test it by using Azure Load Balancer Standard.

IX: Implementing Azure Storage Access Controls

Here, we will be creating a container on our storage account and will be uploading data on it by using the Azure Portal. Additionally, we will be accessing the content of our storage account by using a SAS Token. This guide will provide you step-by-step procedures on how you can do so.

X: Create Your Own Azure AD & MFA & Self Service Password Reset

You configure Azure Active Directory self-service password reset to enable users to reset their passwords or unlock their accounts. With SSPR, users can reset their credentials without helpdesk or administrator assistance. This ability lets users regain access to their account without waiting for additional support.

XI: Use ASR to Duplicate an Azure Solution

As an organization, you need to adopt a business continuity and disaster recovery (BCDR) strategy that keeps your data safe and your apps and workloads online when planned and unplanned outages occur.

Site Recovery helps ensure business continuity by keeping business apps and workloads running during outages. Site Recovery replicates workloads running on physical and virtual machines (VMs) from a primary site to a secondary location.

XII: Creating Function in Azure

You must have a function app to host the execution of your functions. A function app lets you group functions as a logical unit for easier management, deployment, scaling, and sharing of resources. To sum up, you’ll learn how to create and group functions inside the function app.

XIII: Implementing Custom Role-Based Access Control (RBAC)

Azure role-based access control (RBAC) is an identity and access management (IAM) system for Azure resources. Using Azure RBAC, you can segregate duties within your team and grant only the amount of access to users that they need to perform their jobs.

Therefore, here we will be defining and assigning a custom role-based access control to delegate permissions to start and stop Azure VMs.

XIV: Implement Autoscaling for Web Apps

Autoscaling is the process of dynamically allocating resources to match performance requirements. As the volume of work grows, an application may need additional support to maintain the desired performance levels and satisfy service-level agreements (SLAs).

In other words, you’ll learn how to perform vertical and horizontal scaling for your Web Apps.

XV: Configuring Key Vault

Azure Key Vault is a tool for securely storing and accessing secrets. A secret is anything that you want to tightly control access to, such as API keys, passwords, or certificates. In conclusion, a vault is a logical group of secrets. You’ll learn how you can configure this key vault.

XVI: Deploying Database Instances in Azure

In this section, we’ll see the different types of deployment options for our database and then you’ll learn how you can use it to deploy your database.

XVII: Develop Functions that Read From and Write To Queues

Functions are used to manage your application more efficiently. So, in this activity guide, you’ll learn how you can deploy a function that lets you read from queues and write to them.

XVIII: Implement Event Grid /Service Bus in an application

In this activity guide, you’ll learn how to create Event Grid & Service Bus, and how you can respond to Azure Service Bus events received via Azure Event Grid.

XIX: Create an Azure Kubernetes Service

Modern applications are increasingly built using containers, which are microservices packaged with their dependencies and configurations. Kubernetes is open-source software for deploying and managing those containers at scale. Furthermore, Azure Kubernetes Cluster lets you do just that for the microservices you run on the Azure cloud.

Therefore, in this Activity Guide, we will walk you through the steps to browse through the Azure Portal and how to setup AKS and manage your microservices without hassles on the cloud.

XX: Implementing Azure Logic Apps

Azure Logic Apps is a cloud service that helps you in building, hosting, scaling, managing, maintaining, and monitoring your apps. Logic Apps handles these concerns for you. In this guide, you’ll learn how to implement an Azure Logic App.

Next Task For You

Once you have practiced all the listed hands-on for Microsoft Azure Architect, you should appear for the Microsoft Azure AZ300 certification. Click here to know all about the Microsoft Azure AZ300 examination.

Begin your journey towards becoming a Microsoft [AZ-300] Certified Azure Architect and earning a lot more in 2020 by joining our FREE Masterclass.

Click on the Join Waitlist now button below to join the waitlist of our much-awaited AZ-300 Certification Training, which will help you clear the exam with flying colors.

The post [AZ-300] Microsoft Azure Architect Training: Step By Step Activity Guides/Hands-On Lab Exercise appeared first on Oracle Trainings.