Azure Storage Accounts – Open to the Internet?

Let’s get straight to the point. From official documentation it states that “To secure your storage account, you should first configure a rule to deny access to traffic from all networks (including internet traffic) by default. Then, you should configure rules that grant access to traffic from specific vnets. This configuration enables you to build a secure network boundary for your applications”.

Navigate to your storage account, what is the default setting? It is shown below.

Continue reading

Hot Patching sqlservr.exe in Azure SQL Database

An amazing blog post by Microsoft describing the idea of hot patching the database engine in Azure SQL Database to allow for minimal downtime when applying patches to SQL Server. We know that it is one of the benefits of Azure SQL Database but now we get some insight into how it’s done.

Continue reading

SQL Server 2019 – Compatibility Level in Azure

I am not sure when this became available but for Azure SQL Database 150 compatibility level is now available. Last time I created a database few weeks ago, only level 140 ( SQL Server 2017) was available so I think it is a recent thing.

Upon some testing, if you create a new Azure SQL Database by default it is 150 as per the screen shot below (from the script action command)

defaule150

Continue reading

Training – Learning Data Science

You should never stop learning, especially within the IT industry. There are many fields to move into nowadays within the data space, you still have your classic / cloud DBA roles (crossing over to roles such as data engineer) and development roles too. Looking at the industry I see things like Big Data and Data Science becoming more popular. This led me to the Microsoft Professional Program where I spent my time completing the Big Data track – unfortunately it will be retired by Microsoft.

Continue reading

Azure – What is a Shared Access Signature?

Using a Shared Access Signature (SAS) is usually the best way to control access rights to Azure storage resources (like a container for backups) without exposing the primary / secondary storage keys. It is based on a URI and this is what I want to look at today.

I always use the Azure Storage Explorer to build a SAS token. Let’s dig into what the different parts mean.

Continue reading