Search icon CANCEL
Subscription
0
Cart icon
Your Cart (0 item)
Close icon
You have no products in your basket yet
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Free Learning
Arrow right icon
Azure Stack Hub Demystified
Azure Stack Hub Demystified

Azure Stack Hub Demystified: Building hybrid cloud, IaaS, and PaaS solutions

eBook
€20.98 €29.99
Paperback
€36.99
Subscription
Free Trial
Renews at €18.99p/m

What do you get with a Packt Subscription?

Free for first 7 days. €18.99 p/m after that. Cancel any time!
Product feature icon Unlimited ad-free access to the largest independent learning library in tech. Access this title and thousands more!
Product feature icon 50+ new titles added per month, including many first-to-market concepts and exclusive early access to books as they are being written.
Product feature icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Product feature icon Thousands of reference materials covering every tech concept you need to stay up to date.
Subscribe now
View plans & pricing
Table of content icon View table of contents Preview book icon Preview Book

Azure Stack Hub Demystified

Chapter 1: What Is Azure Stack Hub?

This first chapter will introduce you to Microsoft Azure Stack Hub and how it is positioned within the Microsoft Azure ecosystem. You will gain a detailed understanding of the typical usage scenarios for Microsoft Azure Stack Hub and the Azure capabilities that are provided by the platform. We will cover the initial core fundamentals to prepare you for later chapters in this book. We will also cover the skills you will be tested on if you are looking to take the Microsoft AZ-600: Configuring and Operating a Hybrid Cloud with Microsoft Azure Stack Hub exam.

In this chapter, we're going to cover the following main topics:

  • Introducing Azure Stack
  • Understanding hybrid use cases
  • Introducing Azure Arc
  • Learning about Azure Stack integrated systems
  • Exploring the AZ-600 exam requirements

Let's dive into the first topic.

Introducing Azure Stack

To begin this book, I thought the best place to start would be with a basic understanding of Microsoft Azure Stack Hub. The idea of this is to look at a question I am asked by customers all the time. What is Microsoft Azure Stack Hub? In simple terms, then, Microsoft Azure Stack Hub is an extension of Microsoft Azure, but this is only part of the answer. Microsoft Azure Stack Hub is a hybrid cloud platform that allows you to use Azure services from your company or a service provider data center. When people think of Microsoft Azure, they think of the public cloud offered by Microsoft, but it is, in fact, a complete ecosystem that incorporates not just the public cloud but also the on-premises versions called Microsoft Azure Stack. This includes Microsoft Azure Stack HCI, which stands for Hyper-Converged Infrastructure. HCI will be explained in detail in Chapter 2, Azure Stack Architecture but for now, it is enough to say that with HCI, both compute and storage are supplied from the same server. This is different from a traditional infrastructure, where storage and compute are separate. Microsoft Azure Stack Edge along with Microsoft Azure Stack Hub and Microsoft Azure Stack HCI conform to this pattern. This book is only focused on Microsoft Azure Stack Hub, but it is worth understanding the complete ecosystem as this will help highlight the differences between the different versions of solutions under the Microsoft Azure Stack banner. This becomes important especially when it comes to running solutions in a hybrid cloud scenario, which we will cover later in this chapter. The advantage of Microsoft Azure Stack is that it provides a consistent environment that those who already use Microsoft Azure will be more than familiar with. In fact, the promise of Microsoft Azure Stack Hub when you talk it through can be thought about in terms of the following concepts:

  • Consistent application development
  • Azure services available on-premises
  • Integrated delivery experience

For a developer who builds cloud applications for Microsoft Azure, they can take all the skills and tools they already use onto this platform. The deployment process that's used for Microsoft Azure is the same one that's used for Microsoft Azure Stack Hub. Development tools such as Visual Studio can also be used within this environment. Microsoft markets the fact that applications that run in Microsoft Azure can be run on Microsoft Azure Stack Hub with no changes other than deployment location, which is not strictly the case as some changes are nearly always required.

Microsoft Azure capabilities are also available within Microsoft Azure Stack Hub, which, again, breeds familiarity both from a developer standpoint but also from an operator and administrator standpoint. The following Microsoft Azure capabilities can be found in Microsoft Azure Stack Hub:

  • Virtual machines: Rapid deployment with scaling on demand.
  • Containers: Linux and Windows Servers containers, Azure Kubernetes Services.
  • Networking: Virtual Network, Load Balancer, VPN Gateway, network security groups, public IPs, route tables.
  • Storage: Blobs, tables, and queues.
  • Key Vault: Securely protect application keys and secrets.
  • Azure App Service: Web and API applications, Azure Functions, serverless computing.
  • Azure Marketplace: Ready to go applications from the Azure Marketplace.
  • Event Hubs: Scalable event processing for ingesting and processing large amounts of event data.
  • Azure IoT Hub: Centralized message hub for communications between IoT applications and devices.

We will be covering each of these capabilities and services in detail later in this book, along with their limitations, as they are integral to creating offers and services from Microsoft Azure Stack Hub.

Supporting the Azure Stack Hub infrastructure

In addition to Microsoft Azure's capabilities and the support offered by Microsoft, Microsoft Azure Stack Hub is also supported by a myriad of both hardware and software vendors. I myself work for Lenovo, who provide certified hardware solutions that can be used to run Microsoft Azure Stack Hub on-premises, and I also work closely with Microsoft to ensure they adhere to the best practices when it comes to deploying Microsoft Azure Stack Hub. Lenovo are by no means the only hardware vendor to offer certified hardware for Microsoft Azure Stack Hub, and it is also supported on offerings from Dell, HPE, and Cisco, among others.

As well as the various hardware solutions that are available in the market, Microsoft Azure Stack Hub is also supported by software vendors extensively. Some industry standard solutions that are available to run in Microsoft Azure are also supported in Microsoft Azure Stack Hub through the Azure Marketplace. This allows customers to run the same software applications, such as Red Hat, F5, Docker, Kubernetes, Chef, and so on, in the same way in both their on-premises environment and the public cloud via Microsoft Azure.

Given the support of Microsoft and their hardware partners, this allows Microsoft Azure Stack Hub to offer a fully integrated delivery experience. Microsoft Azure Stack Hub is fast to deploy, allowing customers to get up and running quickly. The billing model within Microsoft Azure Stack Hub can be extended from Microsoft Azure to allow you to pay for use within the same Microsoft Azure subscription bill.

The key takeaway for Microsoft Azure Stack Hub from this quick overview is that this is an on-premises version of Microsoft Azure that is fully owned and operated by the customer within their own data center. Customers completely control the access, applications, and data that's stored in their Microsoft Azure Stack Hub. They are also responsible for ensuring that any applications or data being provided by Microsoft Azure Stack Hub are available at all times to their customers, regardless of whether they're internal or external. Therefore, I always describe Microsoft Azure Stack Hub as your own private Microsoft Azure region and you as the operator performing the role of Microsoft.

The real power of Microsoft Azure Stack Hub is when it is combined with the public Microsoft Azure Cloud in a truly hybrid manner. Throughout this chapter, I will introduce you some common hybrid use cases that I come across when I am working with customers during their cloud journeys.

Microsoft Azure Stack Hub is really the only consistent hybrid cloud where the tools and processes are consistent. Not only are the tools and processes consistent but so is the underlying infrastructure. As an example, let's take a look at some of these and why they work so well when it comes to running a hybrid cloud environment.

The following diagram tries to illustrate that Azure and Azure Stack Hub are consistent in the way they present their tools and processes:

Figure 1.1 – Consistency of tools and processes

Figure 1.1 – Consistency of tools and processes

We now have a clearer picture of what Microsoft Azure Stack Hub is and how it is closely related to Azure. To prepare you for the next chapter, we will now dive into how Microsoft Azure Stack Hub is used in disconnected scenarios for private cloud.

Understanding private cloud

Azure Stack Hub can be deployed in two different scenarios, depending on whether connectivity to Azure is required or not. One of the attractions of Azure Stack Hub is that it can be run completely standalone, with no connectivity to the internet. This is particularly useful for organizations that want the capabilities that are offered by the cloud but are unable to make use of public cloud offerings. This may be due to regulatory restrictions on data storage, latency issues with connectivity to public Azure, secure environments with no internet connectivity, environments with limited or unreliable network connectivity, and more.

The other use case is where you have a disconnected instance of Azure Stack Hub running in your data center. This is for organizations that are looking to modernize their applications on-premises and have legacy applications that cannot be moved into the public cloud.

Edge and disconnected solutions

Microsoft Azure Stack Hub can be used for applications where there may be connectivity issues in edge locations with limited network bandwidth. This allows logic and data processing to be performed closer to the users. This also applies to locations where real-time latency may be a consideration. An example of this I have seen was with a customer I have worked with who was capturing telemetry from trains. This can also equally be applied to locations such as oil rigs, cruise ships, or secure government sites.

Azure Stack Hub is not just beneficial as a private cloud but is also a key part of a hybrid cloud. We will look at some of these use cases next.

Understanding hybrid use cases

Microsoft provides a unified development and DevOps environment between their Microsoft Azure cloud offering and Microsoft Azure Stack Hub. Using tools such as Visual Studio Team Foundation, GitHub, and Azure DevOps, developers can work with the same processes, regardless of where their code is ultimately published to.

Microsoft Azure and Microsoft Azure Stack Hub share a common identity model. The on-premises Microsoft Azure Stack Hub utilizes Azure Active Directory but can also use Active Directory Federation Services.

Microsoft Azure and Microsoft Azure Stack Hub also share an integrated management and security control platform as both use the same Azure portal. This allows operators and administrators to ensure that access controls are consistent through the use of role-based access control.

They both share a common and consistent data platform, which is based on a storage account that is used to provision Blobs/Tables/Queues that are available in both Azure and Azure Stack Hub.

The following diagram shows the common set of functionalities that are shared between both the Microsoft Azure Stack on-premises and the public Azure cloud:

Figure 1.2 – Common functionality

Figure 1.2 – Common functionality

Now that we've looked at the functionality that is shared between on-premises Azure Stack Hub and the Azure public cloud, we can delve into some common use cases for this hybrid adoption, starting with development.

Development

When I work with customers who build applications or services that are designed to run in the cloud, be that Microsoft Azure, Google Cloud, or Amazon Web Services, they tend to find that their development teams can rack up large costs by using the same cloud environment for their development environment, as well as production. The biggest attraction of using the public cloud for development is the fact that it is so easy to spin up an environment. Unfortunately, from a development standpoint, this is also where most of the costs start to come into play, as environments are spun up for a particular project or development team but are not always torn back down when they are finished with. By moving these development environments into an on-premises environment in Microsoft Azure Stack Hub, the customers can begin to make real savings as they have complete control over these environments. They can ensure that machines are removed once projects are completed.

The beauty of this for the developers is that they see no change in the tools or the process for building or deploying their code other than the endpoint. A developer can create their code in Visual Studio and deploy it directly from the Integrated Development Environment (IDE) to Microsoft Azure Stack Hub to test and Quality Assure (QA) it. Once tested and they are comfortable it works as designed, with no changes needing to be made, they can deploy the same release to Microsoft Azure public cloud.

For some organizations, the reverse of this is true and development is, in fact, done in the public cloud rather than on-premises. This is due to the flexibility offered by the public cloud and the speed with which environments can be spun up and down.

Testing

In a similar vein to the development environment, the same logic can also be applied to test and QA environments. Whether this is to test new services that are going to be deployed to the Microsoft Azure public cloud or changes to existing services that have already been deployed to the Microsoft Azure public cloud, then being able to test these in an environment that behaves in the same manner, but with no additional cost, is a great reason for running Microsoft Azure Stack Hub. Again, as with the development hybrid use case, these environments can be torn down once the release has passed testing and been released into production.

Regulatory

There are times where regulatory restrictions prevent data from being stored or manipulated in the public cloud. Theis can be dictated by government, industry, or regions. This may be because data cannot be stored in the public cloud or because data must be stored within the same country as the organization, and Azure is not available in that country. This is particularly true for multi-national companies who may have different regulations to contend with from different countries and governments, but they want to provide a consistent experience to all their employees. The idea of being able to develop and deploy global applications in Microsoft Azure for most locations, while still using the same deployment in local on-premises Azure Stack Hub where local restrictions dictate, is key. Application examples include global audits, financial reporting, foreign exchange trading, inline gaming, health data, and expense reporting.

Cloud application model

For customers running legacy applications, Microsoft Azure Stack Hub gives them the opportunity to apply modern architectures to their on-premises applications, which are not yet ready for the cloud. This brings into focus things such as containers and microservices, which can be tested on-premises in Microsoft Azure Stack Hub, safe in the knowledge that once they work in Microsoft Azure Stack Hub, they can then be deployed to Microsoft Azure with no code changes. Again, this is providing a consistent programming model, skills, and processes. You can use consistent processes across Azure in the cloud and Azure Stack Hub on-premises to speed up app modernization for core mission-critical applications. Azure Stack Hub is not simply just a virtualization platform such as Hyper-V or VMware; it is a fully fledged modern cloud platform.

Why is it compelling?

Organizations can now modernize their applications across hybrid cloud environments, balancing the right amount of flexibility and control. Developers can build applications using a consistent set of Azure services and DevOps practices, then collaborate with operations to deploy to the location that best meets their business, technical, and regulatory requirements. Developers can speed up new cloud application development by using pre-built solutions from the Azure Marketplace, including open source tools and technologies.

Note that this is all about applications. That is where the real value of a new hybrid cloud platform is. This will allow applications that are not yet ready to be run in a cloud environment to start moving in this direction. Cloud computing is likely to become the dominant design style for new applications and for updating many applications over the next 10+ years.

We have now covered the general hybrid use cases that can be undertaken on the Microsoft Azure Stack Hub platform. From here, we will take a look at one other use case that is not directly related to hybrid or private cloud scenarios, and that is Azure Arc.

Introducing Azure Arc

For true versatility, we need to look further than just the standard hybrid use cases we discussed in the previous section. This is where Microsoft have introduced Azure Arc:

Figure 1.3 – Azure Arc

Figure 1.3 – Azure Arc

When taken with the Microsoft Azure ecosystem, Microsoft Azure Stack Hub starts to bring real mobility to the hybrid cloud. With the adoption of Microsoft Azure Arc, it is possible to run the same applications virtually anywhere, be that on-premises, at the edge, or on any public cloud. Azure Arc is a software solution that enables you to manage all your resources, including your on-premises resources, multi-cloud resources, virtual servers, and Kubernetes clusters from a single pane of glass as if they were all running within Azure.

Now, we will look at the integrated systems that are offered by the OEM vendors.

Learning about Azure Stack integrated systems

In this section, I will cover the Microsoft Azure Stack Hub integrated systems, which are only available from the hardware vendors who partner with Microsoft to certify their solutions can run Microsoft Azure Stack Hub. This includes the likes of Lenovo, Dell, HPE, and Cisco, among others. Azure Stack Hub cannot be built using normal servers from the vendors, and it is not possible to build an integrated system that's not supplied by one of the OEM vendors.

An Azure Stack Hub integrated system provides the software, hardware, support, and services needed in one fully supported platform.

To start, let's look at the standard infrastructure that is consistent across all the hardware vendors.

Why Hyper-Converged Infrastructure (HCI)?

In this section, we'll look at why infrastructure has evolved into the HCI in the modern data center, as it has with Microsoft Azure Stack Hub. To do this, we will start with a little bit of history of the evolution of the data center infrastructure. The following diagram represents the traditional three tier infrastructure:

Figure 1.4 – Traditional infrastructure

Figure 1.4 – Traditional infrastructure

The traditional data center infrastructure relied on specialized, discrete hardware components from compute, network, and storage or bare metal. These components were typically configured into silos of infrastructure to support specific workloads or applications. With traditional infrastructure, customers face challenges with integrating disparate infrastructure components, complex technical configuration, interoperability constraints, understanding the implications of the technology's architecture, and specialized administrative skills for compute, network, and storage technologies. IT teams must then coordinate across all these disciplines and operational domains to scale capacity, collectively provision resources and connectivity for applications, and manage updates and upgrades across this infrastructure.

The following diagram represents the change from the traditional infrastructure to the newer hyper-converged infrastructure that underpins Microsoft Azure Stack Hub:

Figure 1.5 – HCI

Figure 1.5 – HCI

Software-defined compute introduced consolidation technologies such as server virtualization and containers to reduce server sprawl where data centers suffered from overpopulation and complexity, by poorly utilized server hardware dedicated to application silos.

This compute consolidation helped optimize server utilization but led to additional stress and complexity in networking and storage administration. While this was an evolutionary step in managing compute resources, the balance of operational complexity materially shifted from compute to networking and storage domains, which remained highly specialized and independently managed.

Converged infrastructure brought more standardization to how software-defined compute was integrated with networking and storage technologies. While these technology domains continued to be operated separately, they could be delivered together as a standardized, integrated infrastructure that eliminated the traditional burdens of managing component interoperability, best practice architecture, and baseline configuration. Standardizing the infrastructure's design and integration provided incremental improvements to cross-functional operations and life cycle management.

HCI combines two or more software-defined components that are tightly integrated to be operated on as one common platform. The most popular form of HCI is to combine software-defined compute with software-defined storage (SDS), data management, and storage services implemented in software rather than dedicated hardware, which further reduces the operational overhead involved in managing and updating those technologies individually. This further simplifies infrastructure deployment due to the consolidation of multiple technologies in single appliances that can be clustered together. The addition of software-defined networking adds even more to this simplification by allowing all the components from a traditional architecture be managed from a single pane of glass. This truly brings Azure Stack Hub into the heart of data centers.

On-premise privates cloud delivers a service-oriented delivery, consumption, and operating model across a fully integrated, end-to-end automated infrastructure platform within a customer's data center. Cloud capabilities also typically include self-service controls, built-in facilities to offload application functions or services, and standardizing offerings in the form of a marketplace or catalog. Implementing private cloud capabilities is increasingly simplified with the use of software-defined infrastructure (SDI), and customers can leverage any degree of SDI in their data center to suit the level of operational agility they wish to achieve.

With Microsoft Azure Stack Hub as an integrated system, all updates can be applied across hardware, and both server and storage virtualization software at the same time. Microsoft Azure Stack Hub is easy to grow by simply adding extra nodes to the cluster, which expands both storage and compute capacity together. This removes the need to manage a separate storage system and SAN. A HCI such as Microsoft Azure Stack Hub embeds SDS and software-defined compute into an integrated single management experience.

An example of an OEM vendor integrated system is shown here:

Figure 1.6 – Lenovo ThinkAgile SXM for Azure Stack Hub

Figure 1.6 – Lenovo ThinkAgile SXM for Azure Stack Hub

Azure Stack Hub is part of a family of products under the Azure Stack banner, as shown in the following diagram:

Figure 1.7 – Azure family of products

Figure 1.7 – Azure family of products

In addition to Azure Stack Hub, Microsoft also offers Azure Stack HCI, which is another member of the Azure Stack family. Azure Stack HCI is built upon Windows 2019 failover clustering, Hyper-V, and Storage Spaces Direct. Unlike Azure Stack Hub, the goal here is to provide simple virtual machine and container hosting while leveraging a public Azure cloud service for cloud backup or remote management. You will not have your local Azure region on-premises with the full breadth of services and user experience. Azure Stack HCI was originally based on Windows 2019 but is now available as an Azure service with subscription-based billing. It is based on the same core operating system components as Windows 2019 but is a new product line entirely, specifically focused on virtualization. Typical use cases for the Azure Stack HCI version are as follows:

  • Remote or branch office
  • Data center consolidation
  • Virtual desktop infrastructure
  • Lower-cost storage
  • High availability and disaster recovery in the cloud

We will not be covering Azure Stack HCI in any more detail in this book as it is a different platform to Azure Stack Hub.

Now that we have an understanding of the history of hyper-converged infrastructure and the integrated systems, let's look at appliances.

Appliances

Appliances, like integrated systems, deliver Microsoft Azure consistent innovation with tightly controlled and thoroughly tested hardware/firmware/software combinations for the best reliability and availability.

The following diagram shows a standard Microsoft Azure Stack cluster running on certified appliances:

Figure 1.8 – Azure Stack clustered appliances

Figure 1.8 – Azure Stack clustered appliances

The Microsoft Azure Stack Hub certified appliances include everything needed to run Microsoft Azure Stack Hub, including servers, BMC switches, and TOR switches. All the hardware vendors offer full solutions as an appliance, which includes everything you would need to be able to run Microsoft Azure Stack Hub, once integrated into your data center. The whole solution must be purchased based on set configurations from the OEM vendors and must be purchased as a complete unit from only one OEM vendor.

Support

The integrated systems also deliver a consistent support experience, no matter who the customer contacts for support. There are coordinated escalation and resolution processes in place, with the same ticket being passed between the hardware OEM vendor and Microsoft. The appliance is supported by the hardware OEM vendor, while the associated cloud services are supported by Microsoft, who have back-to-back agreements with each of the hardware vendors who offer Microsoft Azure Stack Hub certified solutions. All updates, policies, and tests are coordinated between Microsoft and the OEM vendor.

Minimum hardware requirements

Each Microsoft Azure Stack Hub appliance needs to adhere to these minimum hardware requirements to be certified by Microsoft. Each vendor ensures that their firmware and software stacks are compatible with these requirements.

For compute, you need the following:

  • CPU: 20 cores minimum (2 sockets at 10 cores each)
  • Memory: 256 GB
  • NIC: 2-port 10 GbE or better
  • Boot device: 400 GB or larger

For storage, you need the following:

  • Cache: 2+ flash drives (NVMe, SATA SDD, SAS SDD)
  • Capacity: 4+ capacity devices (HDD or SDD)

The allocated ratio of cache to capacity is generally set to 10%.

The top of rack (TOR) switches consist of two switches per scale unit, configured for resiliency with 10 GbE or better for server connectivity. The switches must be capable of supporting BGP, DCB, PFC, ETS, and multi-chassis link aggregation. A scale unit is the minimum configuration of four servers or nodes that are clustered together to form the base scale unit.

The BMC or management switch should be a 1 GbE switch capable of L3 routing and simultaneous connectivity to the TOR switches.

These switch devices are then clustered together with between 4-16 nodes to form the full Microsoft Azure Stack Hub solution. These will be dependent on the workload it will be running for the customers.

The following diagram shows an Azure Stack Hub integrated system with the minimum configuration of four nodes:

Figure 1.9 – Azure Stack Hub integrated system scale unit

Figure 1.9 – Azure Stack Hub integrated system scale unit

Before we move on from this section, there are another couple of items to cover, starting with how to procure an Azure Stack Hub solution.

If you are an organization that is looking at implementing Azure Stack Hub, then the hardware must be purchased from an OEM vendor as an integrated system. You can choose the vendor you are most comfortable with, such as Lenovo, HP, Dell, Cisco, and so on, and they will have different configurations for you to choose from, depending on the workload you are planning to run. I know from my experience working for a vendor that a lot of the procurement of Azure Stack Hub is done through the RFP process. This allows the organization to define their requirements from a technology-agnostic standpoint and allows the vendor to define the correct configuration based on these requirements.

If you are unsure whether Azure Stack Hub is right for you, then Microsoft have a development version you can use for free to evaluate it, which is the Azure Stack Hub Development Kit. This development kit works against a single server, and any application that is built on here will work when it's deployed to a full Azure Stack Hub integrated system. The free Azure Stack Hub Development Kit is available to be downloaded from the Microsoft website. There are minimum hardware requirements for the Azure Stack Hub Development Kit, all of which are detailed here:

  • 1 operating system disk with a minimum of 200 GB available
  • 4 data disks each providing at least 240 GB capacity
  • Dual-socket 16-physical-core processor
  • 192 GB RAM
  • Hyper-V enabled
  • Windows Server 2019

This is a great option to try before you buy. Alternatively, most of the OEM vendors will also have either a demo kit or rental kit, which can be used for a proof of concept.

We now have a grounding in the Microsoft Azure Stack Hub infrastructure and how this is supported by OEM hardware vendors who build certified integrated systems. We understand the history of hyper-converged infrastructure, along with the benefits this brings. This gives us a good start in the fundamentals of the architecture, which we will build on throughout the rest of this book. I also want to take a moment to look at the AZ-600 exam, which we will run through in the next section.

Exploring the AZ-600 exam requirements

Along with our introduction to Microsoft Azure Stack Hub, I want to also run through the requirements for the AZ-600 exam from Microsoft. The Microsoft Exam AZ-600: Configuring and Operating a Hybrid Cloud with Microsoft Azure Stack Hub, is aimed at Microsoft Azure administrators or Microsoft Azure Stack Hub operators who are looking to provide cloud services to their end customers from their own data center. If you wish to pass the AZ-600 exam, it is worth noting the skills that are to be measured. The remainder of this book will work as an aid in preparation for this exam and will cover all the relevant skills that are to be measured.

The following skill measurements have been taken from the Microsoft exam website and are intended to illustrate how the skill is assessed. This is by no means an exhaustive list and will be subject to change by Microsoft over time.

Provide services (30 - 35%)

The first area to look at for the exam is the provision of services, which includes Azure Marketplace and its service offerings. This will account for 30 – 35% of the exam:

  • Manage Azure Stack Hub Marketplace:

    Populate Azure Stack Hub Marketplace in a disconnected environment

    Create a custom Azure Stack Hub Marketplace item

    Manage the life cycle for Azure Stack Hub Marketplace items

  • Offer an App Services resource provider:

    Plan an App Services resource provider deployment

    Deploy an App Service resource provider

    Update an App Services resource provider

    Scale roles based on capacity requirements

    Rotate App Services secrets and certificates

    Manage worker tiers

    Back up App Services

  • Offer an Event Hub resource provider:

    Plan an Event Hub resource provider deployment

    Deploy an Event Hub resource provider

    Update an Event Hub resource provider

    Rotate Event Hub secrets and certificates

  • Offer services:

    Create and manage quotas

    Create and manage plans

    Create and manage offers

    Create and manage usage subscriptions

    Change user subscription owner

  • Manage usage and billing:

    Set up usage data reporting

    View and retrieve usage data by using the Usage API

    Manage usage and billing in multi-tenant and CSP scenarios

Implement data center integration (15 – 20%)

For the exam, you also need to have an appreciation of the deployment process, especially when it comes to networking and certificates. This part of the exam is going to account for 15 – 20% of the questions:

  • Prepare for Azure Stack Hub deployment:

    Recommend a name resolution strategy

    Recommend a public and internal IP strategy

    Recommend a data center firewall integration strategy

    Recommend an identity provider

    Validate identity provider integration

    Configure the time server (NTP)

  • Manage infrastructure certificates for Azure Stack Hub:

    Recommend a certificates strategy

    Validate the certificates

    Run a secret rotation PowerShell cmdlet for external certificates

  • Manage Azure Stack Hub registration:

    Recommend a registration model

    Register in a connected environment

    Register in a disconnected environment

    Re-register

Manage identity and access (10 – 15%)

As part of the AZ-600 exam, you will also need understand how to manage and configure access, which includes service principals. This will equate to 10 – 15% of the questions you are likely to see when you take the exam:

  • Manage multi-tenancy:

    Configure the Azure Stack Hub home directory

    Register the guest tenant directory with Azure Stack Hub

    Disable multi-tenancy

    Update the guest tenant directory

  • Manage access:

    Identify an appropriate method for access (service principal, users, and groups)

    Provision a service principal for Azure Stack Hub

    Recommend a permission model

    Configure access in Azure Stack Hub

    Create a custom role

Manage infrastructure (30 – 35%)

The final portion of the exam will focus on managing the Azure Stack Hub infrastructure, including capacity planning and monitoring health. It is likely to include questions around the update process and privileged endpoints. This portion of the exam will account for 30 – 35% of the questions you will see in the exam:

  • Manage system health:

    Recommend a monitoring strategy

    Monitor system health by using the REST API

    Include resource providers such as Event Hubs

    Monitor system health by using the Syslog server

    Manage field replacement or repair

    Configure automatic diagnostic log collection

    Collect diagnostic logs on demand by using PowerShell

    Configure Syslog forwarding for Azure Stack Hub infrastructure

  • Plan and configure Business Continuity and Disaster Recovery (BCDR):

    Recommend a BCDR strategy

    Recommend a strategy for infrastructure backups

    Configure a storage target for infrastructure backups

    Configure certificates for infrastructure backups

    Configure a frequency and retention policy for infrastructure backups

  • Manage capacity:

    Plan for system capacity

    Manage partitioned GPUs

    Add nodes

    Manage storage capacity

    Add IP pools

  • Update infrastructure:

    Update Azure Stack Hub

    Download and import update packages manually

    Update Azure AD home directory

  • Manage Azure Stack Hub by using Privileged Endpoints:

    Connect to a privileged endpoint

    Configure the Cloud Admin user role

    Unlock a support session

    Close the session on the privileged endpoint

    Stop and start Azure Stack Hub

    Perform system diagnostics by using Test-AzureStack

Summary

This first chapter has given us a brief introduction to Microsoft Azure Stack Hub. It has allowed us to understand that Microsoft Azure Stack Hub is an extension of Microsoft Azure that is run on-premises within a customers' data center. We have learned that it is considered an HCI platform that is supported by both hardware and software vendors. We now know it is a consistent hybrid cloud platform that offers Azure services that are integrated with both infrastructure as a service and platform as a service. We have also learned about the capabilities that can be exposed by the platform, which means we should be able to explain the hybrid use case scenarios for which Microsoft Azure Stack Hub can be utilized.

We should also be able to describe the minimum hardware requirements of the integrated systems provided by the hardware vendors. Finally, we looked at the AZ-600: Configuring and Operating a Hybrid Cloud Platform with Microsoft Azure Stack Hub exam and now understand what skills are measured as part of this exam.

In the remainder of this book, we will build on this foundation and cover each of the capabilities of Microsoft Azure Stack Hub in greater detail.

In the next chapter, you will dive into the underlying architecture that underpins Microsoft Azure Stack Hub and the building blocks of the platform.

Left arrow icon Right arrow icon

Key benefits

  • Understand the topics required for the Microsoft Azure AZ-600 exam
  • Configure and provide services from Microsoft Azure Stack Hub
  • Implement data center integration with Microsoft Azure Stack Hub

Description

Azure Stack Hub is the on-premise offering from Microsoft, which provides Azure Cloud services within a customer's own data center. It provides consistent processes between on-site and the cloud, allowing developers to test locally and deploy to the cloud in exactly the same manner. Azure Stack Hub Demystified provides complete coverage of deploying, configuring, administrating, and running Microsoft Azure Stack Hub efficiently. Firstly, you will learn how to deploy Azure Stack Hub within an organization. As you progress, you'll understand configuration and the different services provided by the platform. The book also focuses on the underlying architecture and connectivity options for the modern data center. Later, you will understand various approaches to DevOps and their implementation, and learn key topics for the AZ-600 exam. By the end of this Azure book, you will have a thorough understanding of Azure Stack Hub and the services that are provided by the platform, along with the confidence and information you need to be able to pass the AZ-600 exam.

Who is this book for?

If you are an Azure Administrator and Azure Stack Hub Operator who provides or is looking to provide cloud services to end users or customers within their own data center, then this book is for you. This book will also be beneficial to those who are preparing for Exam AZ-600: Configuring and Operating a Hybrid Cloud with Microsoft Azure Stack Hub.

What you will learn

  • Understand the architecture of Azure Stack Hub
  • Get up to speed with the management and administration of Azure Stack Hub
  • Explore how to administer virtual networking within your Azure Stack
  • Become well versed in using the Azure Stack Hub support model and updating Azure Stack Hub
  • Understand how licensing and billing is done with Azure Stack Hub
  • Discover the tools that can be used to implement security within Azure Stack Hub
  • Focus on how DevOps practices can be incorporated with Azure Stack Hub

Product Details

Country selected
Publication date, Length, Edition, Language, ISBN-13
Publication date : Oct 07, 2021
Length: 414 pages
Edition : 1st
Language : English
ISBN-13 : 9781801078603
Vendor :
Microsoft
Tools :

What do you get with a Packt Subscription?

Free for first 7 days. €18.99 p/m after that. Cancel any time!
Product feature icon Unlimited ad-free access to the largest independent learning library in tech. Access this title and thousands more!
Product feature icon 50+ new titles added per month, including many first-to-market concepts and exclusive early access to books as they are being written.
Product feature icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Product feature icon Thousands of reference materials covering every tech concept you need to stay up to date.
Subscribe now
View plans & pricing

Product Details

Publication date : Oct 07, 2021
Length: 414 pages
Edition : 1st
Language : English
ISBN-13 : 9781801078603
Vendor :
Microsoft
Tools :

Packt Subscriptions

See our plans and pricing
Modal Close icon
€18.99 billed monthly
Feature tick icon Unlimited access to Packt's library of 7,000+ practical books and videos
Feature tick icon Constantly refreshed with 50+ new titles a month
Feature tick icon Exclusive Early access to books as they're written
Feature tick icon Solve problems while you work with advanced search and reference features
Feature tick icon Offline reading on the mobile app
Feature tick icon Simple pricing, no contract
€189.99 billed annually
Feature tick icon Unlimited access to Packt's library of 7,000+ practical books and videos
Feature tick icon Constantly refreshed with 50+ new titles a month
Feature tick icon Exclusive Early access to books as they're written
Feature tick icon Solve problems while you work with advanced search and reference features
Feature tick icon Offline reading on the mobile app
Feature tick icon Choose a DRM-free eBook or Video every month to keep
Feature tick icon PLUS own as many other DRM-free eBooks or Videos as you like for just €5 each
Feature tick icon Exclusive print discounts
€264.99 billed in 18 months
Feature tick icon Unlimited access to Packt's library of 7,000+ practical books and videos
Feature tick icon Constantly refreshed with 50+ new titles a month
Feature tick icon Exclusive Early access to books as they're written
Feature tick icon Solve problems while you work with advanced search and reference features
Feature tick icon Offline reading on the mobile app
Feature tick icon Choose a DRM-free eBook or Video every month to keep
Feature tick icon PLUS own as many other DRM-free eBooks or Videos as you like for just €5 each
Feature tick icon Exclusive print discounts

Frequently bought together


Stars icon
Total 115.97
Microsoft Azure Security Technologies Certification and Beyond
€36.99
Azure Stack Hub Demystified
€36.99
Data Modeling for Azure Data Services
€41.99
Total 115.97 Stars icon
Banner background image

Table of Contents

20 Chapters
Section 1: Architecture and Deployment Chevron down icon Chevron up icon
Chapter 1: What Is Azure Stack Hub? Chevron down icon Chevron up icon
Chapter 2: Azure Stack Architecture Chevron down icon Chevron up icon
Chapter 3: Azure Stack Hub Deployment Chevron down icon Chevron up icon
Section 2: Identity and Security Chevron down icon Chevron up icon
Chapter 4: Exploring Azure Stack Hub Identity Chevron down icon Chevron up icon
Chapter 5: Securing Your Azure Stack Hub Instance Chevron down icon Chevron up icon
Chapter 6: Considering DevOps in Azure Stack Hub Chevron down icon Chevron up icon
Section 3: Features Chevron down icon Chevron up icon
Chapter 7: Working with Resource Manager Templates Chevron down icon Chevron up icon
Chapter 8: Working with Offers, Plans, and Quotas Chevron down icon Chevron up icon
Chapter 9: Realizing Azure Marketplace Chevron down icon Chevron up icon
Chapter 10: Interpreting Virtual Networking Chevron down icon Chevron up icon
Chapter 11: Grasping Storage and Compute Fundamentals Chevron down icon Chevron up icon
Section 4: Monitoring, Licensing, and Billing Chevron down icon Chevron up icon
Chapter 12: Monitoring and Managing Azure Stack Hub Chevron down icon Chevron up icon
Chapter 13: Licensing Models in Azure Stack Hub Chevron down icon Chevron up icon
Chapter 14: Incorporating Billing Models Chevron down icon Chevron up icon
Chapter 15: Troubleshooting and Support Chevron down icon Chevron up icon
Other Books You May Enjoy Chevron down icon Chevron up icon

Customer reviews

Rating distribution
Full star icon Full star icon Full star icon Full star icon Full star icon 5
(5 Ratings)
5 star 100%
4 star 0%
3 star 0%
2 star 0%
1 star 0%
IaaS Professional Feb 10, 2022
Full star icon Full star icon Full star icon Full star icon Full star icon 5
Demystified is a perfect title for this book. As the industry has begun to dramatically pivot to XaaS offerings, the need for "play books" have become critical. Many have been released to date but very few provide such a simple and clear explanation / guidance as this one. As industry professionals are constantly working to stay educated on the latest technology, it is important the resources chosen are efficient in their methodology and teachings. That is one thing I cannot stress enough, and is why I have recommended this book to everyone on my team as well and anyone else in the industry looking for a helpful resource. I hope the author continues producing material, as they clearly "plugged in" to the industry and understand what we really need!
Amazon Verified review Amazon
Amazon Customer Feb 09, 2022
Full star icon Full star icon Full star icon Full star icon Full star icon 5
I recommend this book to all my team. It gives us a solid understand of the possibilities and best practices.
Amazon Verified review Amazon
Subhasish Ghosh Jan 20, 2022
Full star icon Full star icon Full star icon Full star icon Full star icon 5
I recently finished reading Microsoft Azure Stack Hub Demystified by Richard Young by Packt publications. Aimed at Azure Administrators & Azure Stack Hub Operators, this is an excellent book that provides a deep coverage of all relevant topics that Azure Stack Hub operators / admins need to know in-depth, and master those skills to successfully deploy, configure & maintain a Hybrid Cloud.5 things I liked:1) The material is also relevant to anyone preparing for Microsoft Certification Exam: AZ-600 (Configuring and Operating a Hybrid Cloud with Microsoft Azure Stack Hub). Has an entire section exploring AZ-600 Exam requirements.2) Azure Stack portfolio includes: Azure, Azure Stack Hub & Azure Stack HCI. Though this book deep-dives and only covers Azure Stack Hub, but also sets the context nicely of the entire portfolio and a brief of HCI.3) Lots of high-quality diagrams explaining the intricacies of the Azure Stack Hub internal components (e.g. HLH, Scale Unit, Switch management Subnet, Storage cache architecture and more).4) Detailed explanations of an Enterprise-wide Deployment model with sample PowerShell scripts. Key concepts of IAM (including RBAC covered). Security is covered in-depth. Loved the section on 'rotating secrets in Azure Stack Hub'.5) Other essential components, e.g. DevOps, working with ARMs, Quotas, Azure Marketplace, Monitoring, Licensing & Billing are covered in great depth as well. There's a final chapter on Troubleshooting included as well.Overall, if you're working on Azure Stack Ops, this is a good book to have in your Library. Thank you to Packt for inviting me to provide a Review of the same.
Amazon Verified review Amazon
Kindle Customer Jan 29, 2022
Full star icon Full star icon Full star icon Full star icon Full star icon 5
I just finished reading the Azure Stack Hub Demystified: Building hybrid cloud, IaaS, and PaaS solutions by Richard Young. I highly recommend this book for Azure Stack architects, operators, and those preparing for the Microsoft Certification Exam: AZ-600 (Configuring and Operating a Hybrid Cloud with Microsoft Azure Stack Hub).Azure Stack is a complex solution that requires a thorough understanding of Microsoft Azure infrastructure services as deployed by partners like Lenovo within a data center. Richard Young has done an impressive job breaking down a complex solution and methodically walking the reader through detailed yet relevant information of deploying, securing, operating, and managing an Azure Stack solution. It becomes pretty apparent from the first section, Section1: Architecture and Deployment, that the author has a deep real-world understanding of Azure Stack as the architecture section is a literal step-by-step walkthrough of what is Azure Stack, how it fits within the Microsoft Azure ecosystem, and the enterprise SDDC (Software-Defined Data Center). The book builds from Chapter1: What is Azure Stack Hub? and systematically tackles what it takes to build, deploy, operate and manage an Azure Stack solution.I have a few favorite chapters in this book:1. Chapter 3: Azure Stack Hub Deployment: The diagrams, PS (Power Shell) scripts, pre-requisites, sizer guidelines, deployment checks, and post-deployment metrics that Richard walks you through in detail are operators’ delight. I could take an Azure Stack deployment from scratch and work my way through an Azure Stack deployment based on the information within this chapter.2. Chapter 5: Securing Your Azure Stack Hub Instance: The Working with TLS Policy section and Rotating Secrets in Azure Stack Hubs are examples of complex security constructs that are broken down into relevant bits of absorbable information. The theory is substantiated with scripts, templates, and metrics to make it easier to understand how the security requirements would be configured when working with Azure Stack.3. Chapter 8: Working with Offers, Plans, and Quotas, Chapter 10: Interpreting Virtual Networking: The way these chapters are laid out represents the fundamental shift in how you approach SDDC or cloud computing. Contrary to the bottoms-up approach most traditional infrastructure specialists tackle technical solutions, this book comes Azure Stack as top-down cloud computing should be attacked. I also like the software-defined networking (SDN) explanation related to Azure Stack in Chapter 10: Interpreting Virtual Networking. SDN is complex, especially when you think about it as an overlay on top of physical routing and switching. It behaves utterly differently at a policy level than the underlying physical infrastructure.4. Section 4: Monitoring, Licensing, and Billing: Monitoring Azure Stack is akin to monitoring an entire data center. Monitoring a data center is a complex undertaking, and the health of the Azure Stack solution has to be accounted for at all layers: compute, storage, networking. Azure Monitor provides a means for monitoring the stack (no pun intended). Still, it is essential to understand which knobs are necessary and which metrics are relevant, so you don’t end up with data overload or miss anything critical. Chapter 12, Monitoring and Managing an Azure Stack Hub, walks you systematically through the different service providers that interface with Azure Monitor and bubble up alerts information, and update the relevant metrics for visibility into the health of the Azure Stack solution.Equally complex is Microsoft licensing. Chapter 13: Licensing Models in Azure Stack Hub breaks down the licensing avenues, Enterprise Agreements, Azure CSP, and the different options available for purchasing Azure Stack.All in all, the Azure Stack Hub Demystified: Building hybrid cloud, IaaS, and PaaS solutions by Richard Young is a real-world operations and reference guide written for those who are planning to build, deploy, and manage Azure Stack or prepare for the Microsoft Certification Exam: AZ-600 (Configuring and Operating a Hybrid Cloud with Microsoft Azure Stack Hub).
Amazon Verified review Amazon
An IT Consultant Jan 24, 2022
Full star icon Full star icon Full star icon Full star icon Full star icon 5
Have recently completed this newly released 'Azure Stack Hub Demystified' authored by Richard Young. Targeted towards professionals looking to step into a role as an Azure Stack Hub administrator, though also towards professionals already managing an existing Azure Cloud infrastructure, the material within provides a complete deep-dive and operational How-To of the Azure Stack Hybrid Cloud environment.I would recommend this learning material to any individuals preparing for the Az-600 and to an extent Az-104, to supplement their training with a copy of this Azure Stack Hub deep-dive. Professionals that have been working with Azure Stack should also find the material beneficial as well.10/10 would recommend.
Amazon Verified review Amazon
Get free access to Packt library with over 7500+ books and video courses for 7 days!
Start Free Trial

FAQs

What is included in a Packt subscription? Chevron down icon Chevron up icon

A subscription provides you with full access to view all Packt and licnesed content online, this includes exclusive access to Early Access titles. Depending on the tier chosen you can also earn credits and discounts to use for owning content

How can I cancel my subscription? Chevron down icon Chevron up icon

To cancel your subscription with us simply go to the account page - found in the top right of the page or at https://subscription.packtpub.com/my-account/subscription - From here you will see the ‘cancel subscription’ button in the grey box with your subscription information in.

What are credits? Chevron down icon Chevron up icon

Credits can be earned from reading 40 section of any title within the payment cycle - a month starting from the day of subscription payment. You also earn a Credit every month if you subscribe to our annual or 18 month plans. Credits can be used to buy books DRM free, the same way that you would pay for a book. Your credits can be found in the subscription homepage - subscription.packtpub.com - clicking on ‘the my’ library dropdown and selecting ‘credits’.

What happens if an Early Access Course is cancelled? Chevron down icon Chevron up icon

Projects are rarely cancelled, but sometimes it's unavoidable. If an Early Access course is cancelled or excessively delayed, you can exchange your purchase for another course. For further details, please contact us here.

Where can I send feedback about an Early Access title? Chevron down icon Chevron up icon

If you have any feedback about the product you're reading, or Early Access in general, then please fill out a contact form here and we'll make sure the feedback gets to the right team. 

Can I download the code files for Early Access titles? Chevron down icon Chevron up icon

We try to ensure that all books in Early Access have code available to use, download, and fork on GitHub. This helps us be more agile in the development of the book, and helps keep the often changing code base of new versions and new technologies as up to date as possible. Unfortunately, however, there will be rare cases when it is not possible for us to have downloadable code samples available until publication.

When we publish the book, the code files will also be available to download from the Packt website.

How accurate is the publication date? Chevron down icon Chevron up icon

The publication date is as accurate as we can be at any point in the project. Unfortunately, delays can happen. Often those delays are out of our control, such as changes to the technology code base or delays in the tech release. We do our best to give you an accurate estimate of the publication date at any given time, and as more chapters are delivered, the more accurate the delivery date will become.

How will I know when new chapters are ready? Chevron down icon Chevron up icon

We'll let you know every time there has been an update to a course that you've bought in Early Access. You'll get an email to let you know there has been a new chapter, or a change to a previous chapter. The new chapters are automatically added to your account, so you can also check back there any time you're ready and download or read them online.

I am a Packt subscriber, do I get Early Access? Chevron down icon Chevron up icon

Yes, all Early Access content is fully available through your subscription. You will need to have a paid for or active trial subscription in order to access all titles.

How is Early Access delivered? Chevron down icon Chevron up icon

Early Access is currently only available as a PDF or through our online reader. As we make changes or add new chapters, the files in your Packt account will be updated so you can download them again or view them online immediately.

How do I buy Early Access content? Chevron down icon Chevron up icon

Early Access is a way of us getting our content to you quicker, but the method of buying the Early Access course is still the same. Just find the course you want to buy, go through the check-out steps, and you’ll get a confirmation email from us with information and a link to the relevant Early Access courses.

What is Early Access? Chevron down icon Chevron up icon

Keeping up to date with the latest technology is difficult; new versions, new frameworks, new techniques. This feature gives you a head-start to our content, as it's being created. With Early Access you'll receive each chapter as it's written, and get regular updates throughout the product's development, as well as the final course as soon as it's ready.We created Early Access as a means of giving you the information you need, as soon as it's available. As we go through the process of developing a course, 99% of it can be ready but we can't publish until that last 1% falls in to place. Early Access helps to unlock the potential of our content early, to help you start your learning when you need it most. You not only get access to every chapter as it's delivered, edited, and updated, but you'll also get the finalized, DRM-free product to download in any format you want when it's published. As a member of Packt, you'll also be eligible for our exclusive offers, including a free course every day, and discounts on new and popular titles.