Flexing your Security Governance with Azure Policy as Code
I recently had the pleasure of presenting a livestream session via Microsoft Reactor Sydney on a subject close to my heart.
Recent posts
Talking Azure Policy as Code on CtrlAltAzure podcast
Appearing as a guest on the Ctrl+Alt+Azure podcast to talk Azure Policy as Code with hosts Tobias Zimmergren and Jussi Roine
How to Win vs Azure Policy Non-Compliance
Fixing a design flaw with the existenceCondition for builtin policies
HashiTalks ANZ: DRY Coding with Terraform, CSVs, ForEach
How combining Terraform with CSVs and ForEach we can deploy at scale from large datasets
Global Azure: Policy as Code with Bicep for Enterprise Scale
Recently I’ve been diving into Microsoft’s new DSL Bicep and as I’m passionate about Azure Policy I thought why not combine both aspects into a session?
Azure Spring Clean: DINE to Automate your Monitoring Governance with Azure Monitor Metric Alerts
Discover patterns for leveraging DeployIfNotExists (DINE) policies to automate your Azure Monitoring Governance with Azure Monitor Metric Alerts
Passed AZ-400 Designing and Implementing Microsoft DevOps Solutions
Discover the ‘Just Enough Study’ concept and learn how to hunt key phrases using Azure Text Analytics
What The Heck Happened In 2020
After such a 2020 memorable year (for both good & bad reasons) I’ve been itching to publish my retrospective
Ansible on Azure Part 3
Discover Ansible role development patterns on Azure using the Molecule-Azure driver
Ansible on Azure Part 2
Discover how Terraform IaC can automate your Ansible control host deployment into Azure
Ansible on Azure Part 1
Discover the Ansible on Azure development ecosystem, key advantages/disadvantages, and how to get started
Automate Microsoft Teams desktop settings with PowerShell
How to manage Teams desktop client settings automatically with PowerShell
Using GitHub Actions and Terraform for IaC Automation
Combine GitHub Actions and Terraform to achieve an automated Infrastructure as Code workflow
Azure Policy as Code with Terraform Part 2
Look under the hood of an example repository I created to deploy a set of custom Azure policies, initiatives, and assignments
Migrating your Azure Tags with PowerShell
How to migrate existing Azure tag values to new tag key/value pairs programmatically using PowerShell
Azure Policy as Code with Terraform Part 1
Discover patterns for usage of Azure Policy as Code with Terraform and examine deployment methodologies, module structures, Azure policy best-practices, and ...
Removing Unknown Azure RBAC Role Assignments with PowerShell
How to programmatically find and remove ‘Unknown’ type Azure RBAC role assignments with PowerShell
Cloud Governance with Azure Policy Part 2
Intro to the Azure Policy extension for VSCode and authoring custom policy definitions by finding property aliases
Cloud Governance with Azure Policy Part 1
Introduction to the audit vs deny debate, native tooling, and governance at scale
Azure Building Blocks - The Forgotten IaC Tool
Putting Azure Building Blocks to the test with a simple Hub & Spoke VNET deployment
My experience at Microsoft Containers OpenHack featuring Kubernetes challenges
The underlying theme of OpenHack is that there’s no clear path forward through the challenges and the ‘unknown’ factor is ever present
OpenSource Blogging with Jekyll GitHub VSCode Part2
Detailed walkthrough of everything you need to get started with your own blog site using Jekyll GitHub VSCode
OpenSource Blogging with Jekyll GitHub VSCode Part1
Introduction to getting setup with your own blog site using Jekyll GitHub VSCode
Quick Intro to Azure Backup Explorer
All you need to know about Azure Backup Explorer released in preview Feb 2020
Your 2020 Study Guide to Azure DevOps Solutions (AZ-400)
With Microsoft announcing sweeping changes to a few Azure exams later in March 2020 the time is ripe to blog about an exam I’ve had my eye on for a while: Az...
0.09ms using Azure Proximity Placement Groups
Intro to Proximity Placement Groups demonstrating how to deploy a test environment
Zero-Touch BitLocker with PowerShell
The heart and soul of all this is a single PowerShell script
AD FS 2016 and InvalidNameIDPolicy using SAML Authentication to SailPoint IdentityNow
The resolution to this problem for me was to ensure that an SPNameQualifier value was sent as a claim property from AD FS to IdentityNow