Virtual Network service endpoints allow you to secure some critical Azure services to only specific virtual networks. There is a limitation, though: you can’t use endpoints for traffic from your premises to Azure services. Right now, if you want to allow traffic from on-premises, you must also allow public IP addresses from your on-premises. In […]
Build Azure IoT Edge ARM modules using Azure DevOps Hosted Agents
When you use Microsoft-hosted Linux agents, you can create Linux container images for the x64 architecture only (no ARM, no x86). In order to create IoT Edge modules for other architectures (i.e. ARM), you can use a machine emulator such as QEMU. Here there is how.
Edge Module: authenticate calls to Azure Function
What if you just want to call an Azure Function from a Edge Module? How to authenticate this call and make sure that it is coming from a specific module/device?
IoT Edge: Retrieve DeviceTwin for TPM enrolled devices in a Edge Module
If you want to retrieve desired properties or report any change to a Device Twin and you have a Edge device auto-provisioned with TPM, you will need to properly instantiate a DeviceClient: this blog post is for you!
Programmatically export project, build and release definitions to new ones in VSTS / Azure DevOps via REST API
Let’s assume we have an existing project, with its own git repository and some very complex build and release definitions. Let’s assume that you want to create a service able to recreate the exact copy of this structure; it is not unlikely that you could have to deal with git repository conflict, custom extensions not […]
Azure Files Shares with Symlinks support on AKS
Mounting Azure File Shares on AKS using the Azure Files volume type doesn’t enable support for symlinks. You can fix this with a very simple tweak.
Key Vault, Functions, Kubernetes: Securely refresh storage keys and update them in a Kubernetes cluster
Any organization should plan to rotate keys. The bad news is that no one is doing that, the good news is that it is really simple to securely refresh storage keys and use temporary shared access signatures in a Kubernetes cluster using Key Vault and Azure Functions.
Securely access fathomless secrets with Kubernetes API using Azure AD and RBAC
The API Server is one of the fundamental component of a Kubernetes cluster. All operations and communications between components, and external user commands are REST API calls that the API Server handles. Let’s try to understand how to authenticate and authorize the Kubernetes API with Azure Active Directory and Kubernetes RBAC.
Create a IoT Edge Device and send a deployment using REST
Update: from preview to GA there are two main changes for this article: 1) new api version: 2018-06-30 2) the applyConfigurationContent is now requiring a modulesContent object (previously was moduleContent) In this article you will find some example code snippets to create a new Azure IoT Edge Device programmatically and send it a deployment.json (via REST […]
Use HTTPS within an ASP.NET container
If you are using IIS as a Web Server to host your ASP.NET Website, you are doing it inside a Windows Server Core based container and you are reading this article, maybe you want to use HTTPS to allow secure connections to it.