Azure SQL Database for SQL Server DBA and Developers | Eshant Garg | Skillshare

Azure SQL Database for SQL Server DBA and Developers

Eshant Garg

Azure SQL Database for SQL Server DBA and Developers

Eshant Garg

Play Speed
  • 0.5x
  • 1x (Normal)
  • 1.25x
  • 1.5x
  • 2x
25 Lessons (2h 9m)
    • 1. Class Introduction

      4:56
    • 2. Section 1 Introduction

      1:08
    • 3. Why choosing SQL Server in Azure

      2:58
    • 4. Azure Laas vs Pass Database Offerings

      9:22
    • 5. SQL Server PaaS Deployment Options

      3:50
    • 6. Section 2 Introduction

      0:31
    • 7. SQL Server in Azure VM

      1:57
    • 8. Demo - SQL Server in Azure VM

      12:05
    • 9. Section 3 Introduction

      1:08
    • 10. Demo - Single Database

      15:37
    • 11. Purchasing models and service tiers

      13:23
    • 12. Azure Database vs Azure Data warehouse

      2:33
    • 13. Section 4 Introduction

      0:39
    • 14. Azure Elastic Database

      4:16
    • 15. Demo Azure Elastic Database

      14:01
    • 16. Section 5 Introduction

      1:00
    • 17. Azure Managed Database

      4:17
    • 18. Differences between On-premises Database and Managed Instance Database

      1:53
    • 19. Migration options for Managed Instance

      1:17
    • 20. Service tiers for Managed Instance

      1:44
    • 21. Management operations for Managed Instance

      1:45
    • 22. Demo - Azure Managed Instance

      17:42
    • 23. Section 6 Introduction

      1:01
    • 24. Azure SQL Database Security

      8:11
    • 25. Azure Managed Instance advance security options

      1:25
  • --
  • Beginner level
  • Intermediate level
  • Advanced level
  • All levels
  • Beg/Int level
  • Int/Adv level

Community Generated

The level is determined by a majority opinion of students who have reviewed this class. The teacher's recommendation is shown until at least 5 student responses are collected.

33

Students

--

Projects

About This Class

Azure SQL Database is Microsoft's main relational database offering in the cloud. Getting the most out of this sophisticated service can be a challenge. In this course, Implementing a Relational Database in Microsoft Azure SQL Database, you will gain the ability to quickly provision and configure your relational database in the cloud. You will learn which deployment option best suits your project.

When you are finished with this course, you will have the skills and knowledge of Azure SQL Database needed to deploy and run your relational databases in the cloud.

Meet Your Teacher

Teacher Profile Image

Eshant Garg

Teacher

Class Ratings

Expectations Met?
  • Exceeded!
    0%
  • Yes
    0%
  • Somewhat
    0%
  • Not really
    0%
Reviews Archive

In October 2018, we updated our review system to improve the way we collect feedback. Below are the reviews written before that update.

Your creative journey starts here.

  • Unlimited access to every class
  • Supportive online creative community
  • Learn offline with Skillshare’s app

Why Join Skillshare?

Take award-winning Skillshare Original Classes

Each class has short lessons, hands-on projects

Your membership supports Skillshare teachers

Learn From Anywhere

Take classes on the go with the Skillshare app. Stream or download to watch on the plane, the subway, or wherever you learn best.

phone

Transcripts

1. Class Introduction: Hello. Welcome, everyone. My name is Ishaan Kirk, and I am very happy toe. Add this new more duel on Microsoft Azure sickle database. In my course, a Jurcic all database is Microsoft Main Relational database offering in the cloud. I'm going to start the model by explaining why you should consider at your database offerings. And then I will be comparing a few database offerings available in Microsoft Azure like infrastructure. As a service, I us our platform as a service pass. A Jurcic all database Is that BB? As a service offering, you need to be aware off a few concepts when provisioning a new instance off a jure sequel databases. The first important concept is a deployment option. We are going to talk about single database, elastic pool and managed instance deployment options. We will talk about the strengths and the limitations off each deployment option so you can see which one might be the right deployment option for you. And then we will go into detail about a Jurcic all database IAS deployment option that is a sequel server in virtual machine. We will discuss how this option is convenient toe easy lift and shift for on premises Data base. We will also go through demo to provision database in virtual Machine. Then we will talk about in detail for a juicy called database single database deployment option. We will talk about properties off this deployment option and its use cases. We will also cover some important concepts, like purchasing, model and service to you. There are two purchasing models that can be used when deploying a new instance off a Joe sequel Databases. Virtual core and Did you? We're going to take a look at each of these purchasing models, and we're going to talk about multiple service tears available for these purchasing models . We have, ah, general purpose, business critical and hyper skill from user perspective. A George database and data warehouse both looks sane, but that they are very different behind the scene. So we really discussed the difference. Then we are going to talk about at your sequel database. Elastic Full deployment option. This is an interesting deployment option, which can help you save a lot of money. We will see when it makes sense to choose elastic pools as your preferred department option . Then I will be explaining a George sequel database managed instance, We will see what are the use cases for this deployment option. And also we will talk about differences between Sequels over on premises and this deployment option. We will also cover the management operations concerning managed. Instance. These operations include Create update and delete. We will see how long these operations will take and in the models demo we're going to provision in and add your sequel server managed instance, and we will create a virtual machine in a private network to connect this instance, and we will create a virtual machine in a private network toe connect toe. This instance. We will also see how to secure these deployment options. Microsoft Azure provides us with a few technologies which can be used to secure your and your sequel database. Instances. We're going to talk about the firewalls at your active directory interrogation, menaced identities, always encrypted and transparent debt encryption. And we will also look at the security options dedicated for managed instances like advance security options for managed instance. As you see, we have a lot to cover. So let's get into it, and I'm expecting you to have a basic familiarity with the azure portal and a basic understanding off database. Thank you 2. Section 1 Introduction: Hello, everyone. Welcome to this section on a George Sequel database offering. I'm going to start the section by explaining why you should consider that your database offerings and comparing a few database offerings available in Microsoft Azure like infrastructure as a service or I us and that from a service or us. We will take a look at bras and guns off each off these offerings. A George sequel database is a database. As a service offering, you need to be aware off a few concepts when provisioning a new instance off your sequel database. The first important concept is a deployment option. We're going to talk about single database, elastic pool and managed instance deployment options. We will talk about strengths and limitations off each deployment option so you can see which one might be the right deployment option for you. Let's get into it 3. Why choosing SQL Server in Azure: So what is a Jurcic all database? A Joe Sequel database is a relational database as a service in the cloud with mission critical capabilities. Think of it as an enterprise really sequel server engine that can handle your most critical workload. A Jurcic all database is a fully managed service, and this saves a lot of valuable time, which we can use to unlock new opportunities. We can focus on developing new features and then innovations instead of managing database and worry about the maintenance and administrative stuff. A Joe Sequel database provides predictable performance and pricing. You pay for the performance tear that your workload needs, and you're guaranteed a reliable and study compute environment. A Joe Sequel databases includes a feature called Elastic Pools. This enable you to have a pool off resources known as E diffuse that a group of databases can use. This feature allows you to purchase a large level of compute that multiple databases can use, rather than having to provision in a tipper date of this level. And your sickle database also includes four nines off up time. That means 99.99% building to the product. Would you be able to achieve that in your own data center. Very difficult. 99.99 up time allows for only 52 minutes off downtime bird here or 4.28 minutes per month, and there is protected by financially Backed s away. Another interesting feature is a zero replication do Replication is now available in all pricing tiers off a Jurcic will database to keep your database redundant. In another reason, these secondaries can be used for high availability or disaster recovery. Connecting your existing applications toe a Josi call database is very easy. It's opposed existing sequel server pools, libraries and AP eyes. To me, one of the biggest advantages off a just equal database is the ability to scale with no downtime. If you need more detail for performance, you can easily select a larger DiDio unit, and it seamlessly migrate. Security was a primary focus when creating a George sequel database. There are several features to help ensure your data is protected. Features like row level security, John Spill in data encryption, always encrypted, dynamic data masking and so on. 4. Azure Laas vs Pass Database Offerings: and you're gives you two options to run sickles ever based workloads. The first option is the infrastructure. As a service that means to provision its sequel server installation on an ad. Your virtual Machine. This is a sequel server inside a fully managed virtual machine in a jur. You don't need to worry about the physical machine. Many aspects of this virtual machine, like the desk, are fully managed by azure, so it is much easier than completely managing your own virtual machine or your own computer box. However, after all, it is a still a virtual machine, and you need to manage the instance off sequel server mentally. The other option is platform. As a service or database. As a service offering, you simply create a resource off type A just equal database and create your database and tables. In this instance, you don't need to worry about getting a computer installing operating system or installing the database engine patching the operating system or is killing your database. All of these taken care off by the Microsoft Azure. So how would you choose between these two options? There is one important question that you need to answer. Do you want to manually manage your database engine, apply patches, take backups and so on, or you prefer to delegate these oppressions to endure. Let's take a look at these two different kinds off offerings in more detail. Sequel server on a job Virtual machine is an infrastructure as a service or I A s offering . This allows you to run sequel server and side fully managed Virtual machine in a juror. You might want to choose this option for migrating own permissive secret server databases and applications without any database change. This is lift and shift scenario. The sequel server, installed on a virtual machine, is identical to the sequel server you have installed on premises. Also, this option gives you full control over the database engine. You can control the timing's off maintenance or patching off your database engine. You can also pause or stop the virtual machine, the number you don't need. The sequel server to save some cost and this option is fully customizable means you can easily go with the pay as you go model. Or you can also bring your existing licence to save some money. The other hand, a Joe Sequel database is a relational database as a service hosted in a jur database as a service false input platform As a service or past offering using a Joe Sequel database, you can benefit from some features that are not available even in own premises. Sequel server such as Ah, burden, high availability intelligence and database management tools. Using a jury sequel database, you go with the pay as you go model. It also gives you the option to scale up or skill out for greater power when needed. In most cases, scale up or scaling out cause no interruption in the service, which is good option for highly available applications. A Jurcic all database has multiple deployment options, purchasing models and service. Two years in the upcoming lectures, we will see all this into more details. Let's go over. What is your responsibility when you deploy sickle server in a virtual machine, as opposed to when you deploy a database in a jury sequel databases in virtual machine, you have to maintain the operating system. Now as a db A. You may not be doing it by yourself, but someone else may be a system engineers in your company will be doing it, and there's a definitely a cost for it. You also have to maintain Sequels ever. That means that you have to make sure that the database engine is properly patched. For example, you have to be able to set up backups, and you have to be able to make sure that they actually work when you can restore from them . High availability is also your responsibility, and there are many technologies that you can choose from disaster recovery as well is your responsibility. And many companies don't even implement disaster recovery just because of the cost in management and in infrastructure who have a disaster recovery site available. Performance off course is your responsibility As a debut. Jane's control is your responsibility. Every time that you make configuration change, you're responsible for that change, and you have to make sure that you test it. And finally, security a very hot topic nowadays is your responsibility to You have to manage the users the rules and general access to your sequel server and the database inside. Now let's see how that can crushed with the Azure sequel database. Well, the main responsibility for you is to choose the right service tear to begin with, as that will define the features, performance and recovery corrected sticks off the database. After that, a Joe Sickle database will provide high availability and disaster recovery capabilities. Your responsibility is to test your application with those capabilities and make sure that everything will work correctly in the case off a Disaster for Performance Ajo Sequels Database has many inbuilt tools, which provide you with the report and the other indicators and the data, but ultimately is it still will be your responsibility as sequel server database can't anticipate every single Kredi that is going on to against your database. So you have to make sure that performance is acceptable for your applications and your users and you still might have to do index tuning and sequel tuning and all. Change control, of course, is still your responsibility. If you do any changes in the schema in confrontation off the sequel database, you have to be the one responsible for testing them. And again, Atyour sequel database provide many tools to handle the security, but ultimately it is still your responsibility. Whether is to create a new Loggins or rules or database users that will still be under your control. Now let's look at the benefits off both database offerings for the secrets ever on a virtual machine, Microsoft guarantees 99.95% availability. As you saw, we have full control over the sequel server engine. There's a full parity with the matching version off on Premises Sequel server. This means easy migration from sequel server, toe own premises to Azure. You can place the sequel server Virtual Machine inside a virtual network sub net and assign a private I p address toe this virtual machine. This makes your sequel server installation more secure for the edge or sequel database or the past model. Microsoft guarantees in 99.99% availability. The most commonly used sequitur of features are available in Azure sequel database. Also, Microsoft Azure takes care of the backup patching and recovery. You don't need to worry about creating a backups or do the patching or perform recovery mentally. If you need toe, you have the ability to assign necessarily sources, for example, CPU and storage to individual databases. There is building advance intelligence and security, and finally, you can scale down, up, in or out without any downtime. 5. SQL Server PaaS Deployment Options: as we discussed in previous lecture that last has deployment option in virtual machine black former, The service or past has further three different deployment options single database, elastic pull database and managed instance. So in this lecture we will be discussing these three pass deployment options so Single database is the first deployment option offered by Azure Sequel Database. And this is exactly what the name suggests. This is a single, isolated database that is perfect for applications that need a single data source. We create this against a database server, and it has his own set off assigned resources. This could be in terms off a database transaction unit at BTU are it could be V course with an amount off this space. We discussed all this in great detail in the upcoming lectures. There's still a concept off sequel server, but this is very much a logical concept. We don't do much at the sequel several level other than, for example, the fiber rules. In the single database scenario, each database receives his own guaranteed compute memory and storage. Elastic pool is the other department option for a Jurcic will database, and Elastic Pool is a collection off single databases with a shared set off resources such a CPU or memory. We create an elastic pool against that logical database server. The elastic pool has a set off. Resource is assigned to it, and then we can create multiple databases within that elastic pool that can then share that bucket off resources assigned to the elastic pool. The benefit here is that each database could have really level off the source requirement at different times was its trading that pool in the elastic bull scenario that a fixed amount of resources, which would be shared by all the databases in the pool. And finally, the most recent deployment option offered by a Joe Sickle database, is that managed insurance ah, manage instance, is a set off databases that can be used together. This is the closest deployment option off the last scenario offered by a jury sequel database. This means easy migration from own premises databases. This is a dedicated instance off sequel server running in your virtual network. I have the managed instance server, which is different from the logical servers used for single database and elastic pool and then, on that managed instance, did of a server. There are instance, databases. Now the resources are provisions at the managed incense database server level, and then all of the instance databases of running on that managed instance database server share whatever resources are available. So I had this collection off database running on a dedicated instance off sequel server for my environment. And finally, as I said, each manage instance has is guaranteed resources. 6. Section 2 Introduction: Hello, everyone. Welcome to this section on a George Sequel database in Virtual Machine. In the section I will talk about a jure sequel database I OSCE deployment option that is Sequel server in virtual machine. We will discuss how this option is convenient to easy lift and shift for on premises data base. We will also go through demo to provision database in virtual machine. 7. SQL Server in Azure VM: In this lesson, we will discuss last database offering off a juror, which is sequel server on a jury Virtual Machine Sequel Server on your Virtual machines enables you to use full versions off sequel server in the cloud without having to manage any on premises hardware. You can create virtual machines in many different geographic reasons around the world. They also offer every I p off machine sizes. The Virtual Machine Image Gallery allows you to create a sequence of a virtual machine with the right virgin addition and operating system. This makes virtual machine a very good option for many different sequel server workloads. Sequels over a juror Virtual machine can use automated patching to should do a maintenance window for installing important windows and secrets. Ever A beards automatically sickles over a diversion machine can take advantage off automatic backup, which regularly creates backups off your database to blob storage. You can also mentally use this technique. If you require high availability, consider configuring Sequels. Ever availability groups. This involves multiple sequel server at your virtual machines. In a virtual network, you can configure your high availability solution Mentally. All you can use templates in the azure portal for automatic configuration. Ajo Virtual machines offer different machine sizes to meet various workload demands. Sickle virtual machines also provide automatic storage configuration, which is optimized for your performance requirements. 8. Demo - SQL Server in Azure VM: all right, Denver time In this demo, I'm going to provision a sequel server instance in a managed virtual machine. As we discussed, This is the last scenario, which is one of the edge your offerings. Toe run sequel server workloads. So click on Create Resources and Search for Sequel Server. As you can see, I have Ah, several sequel server were Klores, which I can choose from, but I'm looking for images published by Microsoft. So Leslie Kong publisher and choose Microsoft. I get all the sequel, several images published by Microsoft. Let's go ahead and choose a sequel Server 2016 Service Pack one on Windows Server 2016. Let's click on that and let's choose a software plan I can choose from free licenses, dedicated toe developers or from enterprise lessons is please know that you will still be charged for a virtual machine, and when those start on it, the sequel, several license will be free less to the free developer license and you can create. And here we need to go through a bridge are toe provisions in our managed virtual machine. So let's choose my resource group bitch decorated earlier. So I'm going to add my virtual machine to this resource group and I am going to give name to my election machine, and I will be I will put this virtual machine closer to my location Here. I have option to put my virtual machine in an availability, Joan or availability set. However, for this purpose off this demo, I don't need to provisioned my any availability. So let's choose no infrastructure redundancy. And in this next year, we need to choose our image. So click on that. I'm going to choose the free license sequel Server doesn't 16 developer and you're spot instance I just part off first, unused at your capacity at that. This country great was says pay as you go places. So we're going to delete this resources after demo anyway, so let use know for this demo. Now, we also have option to change the size off over virtual machine. So Leslie congee in size. And as you can see here, I can choose from many sizes available to me. I'm going to choose a B two and s general purpose and click on select in the next step, we need to choose our administrator account This is the account we will be using for Window A complication. In the next step, we need to specify picture inbound ports you won't open. For example, we need to remote backstroke to this machine. We need to make sure the RTP port is open, so let's click on that and selected in bone port, we won't open. And as you can see, the rdp is already selected by the fourth. Please know that for a sequencer production watching machine, you might not want to allow Rdp on public. Be address. However, for the purpose of this demo, we should be fine and moving forward. We don't need to specify if venue to specify if we already have a window license, which my answer is no. So let's click on next toe Best. You can choose what kind of disk you want to assign to your virtual machine. You can choose from female SSB standard as this be Oh, uh, standard. That's D D. I'm going to choose their Stender assess D for this tunnel and click on next to working so you're a virtual machine will be added to the virtual network. You can choose your pre existing virtual network or let at your create a new Watcher network and subject for you. I'm going to leave all the defaults as they are and next to the management. And here again, I will not touch anything, and we'll leave all the before. Settings. Please know that here we need to choose the diagnostic storage account. So diagnostic stories account is a mandatory settings, less create one storage what, your machine one of it. And, ah, let's move next to the advanced settings. And once again, I will not change anything, and we live, believe everything to default and move messed with the sequel server settings. So in the Secret Service setting page, you can choose the type off sequel connectivity you can choose Ah, local, private or public. For the purpose of this demo, I'm going to choose public. However, this might not be the very best option for your production system. I could leave Ah, this extender Sequels of Report, which is 1433 and you can choose a different port to be used for your database. Let's move down and ah, in this next step, let's enable a sequel authentication, and as you can see that by enabling this option, you automatically get the same log in name and password you choose for your Windows operating system. I'm going to leave all the options as they are, score down and goto next, which is tag. I don't need to assign tax to my machine. So let's review and create. Looks like the validation has parched and we can see all options with you choosed during this voyage. ARD here and ah So finally I can click on, create and provisioned my virtual machine. It will take some time. Let's bake for the provision toe finish. I will come back, maybe in 10 minutes. Meanwhile, hopefully this will be completed. All right, My deployment is done, so let's go ahead and take a look at work with your machine. Let's click on Go to Resource is and ah, as you can see, I am in the dashboard off my sequel server Virtual Machine. So let's click on Connect, and it will give us the option to down Lord I. D. P file. Yes, we can use to connect to the virtual machine, so download the rdp file. Remember to machine and click on that connect So let's see if we can log in using over admin Kalin show, which we created during the vigil. Tired. So let's try to connect. And ah, it looks like we're able to connect. Here we go, we are in. So let's select the Let's Search the management studio and selling the Microsoft Sequel Server management studio. It is taking some time because, ah have chosen a small Russian machine size. Let me flash forward this bill. You here. All right, So let's see if I can connect to the local sequel server engine, which is we will know it using my been looking in shield. Here we go. So now we have connected our database in what? Your machine And if you can see, um, unless either which version we are in right now, if you remember while creating which is the version 2016. So let's create a new ready here and ah, see which was in BR in. So as you can see, we are in Microsoft's equals, the work doesn't sixteen's a respect one, and as if not, this is the blank database, we do not have ah databases. So as we already prevision and last night. A farcical Zuckerberg Lord, we're provisional virtual machine and a few related resources, such as a virtual network public I P addresses and network security groups. This gives you ah, great flexibility because you have control over all aspects off your virtual machine and the network your virtual machine lives in. It also increased your responsibility and the time you need to spend on administrative tasks. And this is why you might want to choose the azure secret database. This is the passing that you runts equals a river lords in a juror. We're going to take a look at this option in the national Buell. So let's go ahead and ah, close this management studio and ah, log off from this virtual machine before doing so. Let's go ahead and perform that Lena. I'm going to marry source group And ah, I won't delete this this source girl, cause I don't want to get charged for the virtual machine. I'm not going to use anymore. So let's ah, delete this resource girl and I created my virtual machine and related resource within this source. Go. This is going to clean up all the resources I created for my last scenario. So I assume the national you'll where we will be discussing at your sequel server or the past offering off a juror in database. Thank you. 9. Section 3 Introduction: Hello, everyone. Welcome to this section on single database on a your sequel database service. I will start the section by talking about a George sequel database single database deployment option. We will talk about properties off this deployment option and its use cases. We will also cover some important concept, like purchasing model and serviced year. There are two purchasing models that we can choose when deploying a new instance off a Jurcic all database virtual core. And did you? We are going to take a look at each of these purchasing models, and we're going to talk about multiple service two years available for these purchasing models. We have general purpose, business critical and hyper scale from a user perspective, as your database and data warehouse. Both look sane, but they're very different behind the scene, so we will discuss their differences. All right, let's get into it. 10. Demo - Single Database: as we learned earlier that at your past sequel databases off 1st 3 department options. The 1st 1 is Single Databases, which is an isolated database that is perfect for applications that need a single data source. As the names the judge, the single database deployment option radiates a single isolated sequel database in a jur. The second department auction is an elastic pool and elastic pool is a collection off. Single databases within shared set off resources suggest Cebu what memory The turn option is managed. Instance, this is a strict off databases that can be used together. This deployment option is the closest aide your sequel databases. Department option that on Premises Sequel server. This makes migration from on premises data bases to a Jewell very easily. In this demo, we're going to provision a past scenario for running a sequel, several workload in a jure single database. So here I am in the portal now and, ah, let's create on all services and within their databases. Skeptically, I can choose sequel databases and I can click on add to create new database, and here I am going to create a new resource group or select from the existing one. So I will create the new resource group Arjun, the Score DB. And here we can give the need to over database I would give d. B will know it here. The that your sequel databases that work should not be confused with Microsoft Sequel Server. This is just a logical databases work, which is created in a job and will be used to manage a group of databases. It is like a central administrative point for all databases inside it. We can change, Common said things like log in fireball rules or getting whose threat protection policies and feel over groups like that for all the databases inside the server. And if it believed a server, it was believed all the contained databases. So we have to add a create were used existing server. Before we created that Joe sequel databases, Leslie could create new and quickly create a new database. Every given name the baseball right. And here, let's choose a using him in Hustler. So this ever and I'm going to put my logical server into central US location, and I'm not going to check. Allow a Joe Services to access. There were here this check boats. Allow application from a juror to connect with this server. Examples off, like anyone who enabled this. Maybe like using the azure Grady a deter in the portal are connecting your and your virtual machine to your and your secret database. We don't need the any of those scenarios at this moment, so I'm not going toe check this check box. However, this is something you can always change later, Firstly, going. Okay, Next option is the sequel. Elastic Pool. So this review Britain is very important. We need to ask ourselves We only use the sequel Elastic pool. No. What does that mean? We can put one or more data basis inside a plastic pool, and all of them will share the same set off resources. This is to optimize the price performance for the group off databases. We'll discuss this more in upcoming lessons. So as of now, let's choose no, which is there before option and move forward to the configure database. The function is to chew the compute and storage. The before is general purpose with the vehicle purchasing mortal and turned into a gebe auf storage Leslie Gone configured database and take a look at the options we have here. We can choose over purchasing mortal. As you can see, I have general purpose hyper spear and business critical. All of these years belonged to the vehicle purchasing model. If you want, you have the option to choose the older. Did you model by clicking on looking for basic standard and Premium? And here, as you can see, I can choose between the basic standard and premium service beer. Let's click on Stander. I can assign a fixed amount off. Did you use and data size to my database? Same goes with a premium. Single database has its own set of guaranteed resources. These associates will not be shared with other databases in a juror, so you can be sure the resources you are assigning to your single database are only used for your database and available. Then that needed again. We'll be discussing all this in great detail in the upcoming lessons. So as of now, let's choose the standard plan and click apply. So let's go next to the networking and choose the connectivity matter, and here I will be choosing the public and point and give five will access by the way we can change the settings, little also so less like on additional settings. Here I have the option to create an empty database, or I can create a database from an existing back up are put and simple database. Inside. My new is your sequel instances. I'm going to put a simple inside this instance and, ah, lead the other settings of the before and go to the next as attacks. And I'm not going to assign any tax toe This sequel instance. However, it is a good idea to assign a pokey attacks to your sequel resources so it can get reports for the purpose off building and cost. I'm not going to add any tax toe. This instance begin to this later also if required. So let's click on review and create here. You can see the monthly cost off over sequel databases and all of the settings we just selected Click on yet and, ah, let's wait for the provision to finish. I will pause this video here and we'll come back once it is completed. Okay, so after about two or three minutes, my deployment is completed. Let's go to the sources and here I'm landed in my new sequel server Dashboard. As you can see, I have a new server creative for me as well. Let's click on that, and I am in the logical sequel Server Dashboard Now. So under settings, I have control over different aspects off my logical server. I can manage the backups I can assign and your active directory administrators. I can see all the databases in that server. I also have option to take a look at the deleted data basis clicking on sequel server database. We can see all the databases inside this sequel server, and, as you can see is off knob. You only have one database, but if you go to the overview, we can create other databases inside this server also, and each database is isolated from each other and our portable. For example, if you could get to add your sequel databases Instances under the same sequel databases that were. These two databases are totally isolated from each other and cannot communicate. This could be preferred a security feature. So let's click on this sequel Databases. Let's look on, baby, one of it our database and of your back to the order off over databases. Now I want to show you that how they can created this brand new database we just created. So go to the creditor and provides the repute in shells. Remember, I have mentioned that several account and password have had mystery rites all the database inside. So I am able to log in here now because if you remember while creating this database, I give the fireball access. But if you're getting the fireable excess error, let's quickly go to this server once again and search for fireball in security. Now, by default. Server fireable prevents all the gland applications from connecting to the server or any database inside the server. Unless you create an I V fiber rule to open the fireball for a connection from an idea just outside rigeur, we need to create a fireable rule for a specific I P address or range of adverse states that you won't be able to connect. Now, here at your shows, our I P address and you can see my I P addresses already edit because I ended it while creating the database. But if you're right here, this is not here. You can just click on air climbed I peak and it will add this I p address into the final rule and just click on seal. And that's it. So I will disregard because my appeared this is already here. And let's go back to the our database hair and try to connect once again using our several credential. All right, so we are in. So if you remember, v selected toe have a simple database while creating this database and so we can see the simple tables here, and you can select any table here, and you can select some data from these tables and then you can see the freezer. Now, let's go ahead and connect to this database from a local Sequels over management studio. So here in my management studio, as you can connect, and here I will put my several name, which I can get from here. This is my silver name. And ah, of course, I'm going to use my at mystery to log and I d and password to connect to this server. And here you see that it looks like I'm able to connect. Does this ever. But if your local id'ing is not added or not the white listed in five. Will I be addresses list. You're going to get the ever here. So let me tell you where you can go and fix that. Enter. So once again, it's the same place. Go to the server, go to the security and go to the fire Will in virtual equals. And if you remember the editor of our local I be address here. I wanted a little bit more about this. So if you get the fireball ever, you have two options. Either you can log in into your head your account from within the Microsoft Sequel Server management studio. So it will go ahead and automatically add your local I P address. And other option is you come here in the fireball in virtual network setting off somewhere , and you can see here the first option is this toggle button. This is the same check box we had when we provisioning our logical server. You'll want to turn this option on if you have ah, your services which want to connect with this and your secret database. For example, applications running inside of virtual machine or AB services. I'm going to lead this auction on for this demo. So by default, all the idea. This is our blacklisted from a jure sequel databases. So we need toe initiated request toe add idea addresses to our ed, your sequel databases. So as a short earlier, we can simply collect on at climbed I D. And it will add your local i p address into the fireball and let's scroll down a little bit below and take a look at another security option in the fireball. So here I have optioned toe allow access from resources deployed to existing or new virtual neck words. This is extremely useful because it allows me to control which private service can connect to my sequel databases. So I'm going to click on Create New Virtual Network and, ah, here I had the option to create a new virtual network and have it weren't listed in my five or second. Then I can go ahead and deploy a few resources, and all those sources can in turn use my age or sickle database. So I'm not going to do that for this demo. Here. Let's go back to my management studio, and, as you can see while creating this database we choose the simple database and ah, we have all those tables, simple tables here, and we can select data from any of these peoples here. 11. Purchasing models and service tiers: now in this lesson, really discuss spurs chasing mortals and service year in more detail. So let's try to add one more database on the server recreated in last lesson. So let's go to the overview and go to the server. So now they're in the several portal and, ah, here we have option to add new date of this, and here we can choose the date of his name and the source. Let's use a blank database. There were elastic will setting. And finally we have to choose here. The pricing deal. This is what we're going toe discuss in this lecture. So if I click comprising to your we have to purchasing mortal did you and we call based model within the D, do you? There are three tiers basic standard and premium. And if the search of the vehicle based purchasing options, we also have three service years options, general purpose, hyper scale and business critical. As you can see in this diagram, we have to purchasing models. Did you and we call and three sufficient years in each. Microsoft describes it do to you as a blended measure off CPU memory, and I hope this guarantees a certain level off compute storage and I only sources. You assign a bundle of free sources to your a jure sequel database. You cannot adjust individually. Sources such as Compute or Memory 100 did you? Is twice as much as 50 did you? And 200 debut is twice as much as 100 did you? Calculating the detail use is a relatively simple you parameter really need to compare them and evaluate what each computer size offers. These compute sizes are available within the service two years like basic standard and Premium. Each tier consists off multiple sizes, and each size provides varying skill off. Not just did you, but maximum database sizing, storage capacity and storage performance. The other purchasing model is the V Corps based purchasing model, which is nearer offering comparing two Did you based? This purchasing model gives you the option to choose between generations off hardware number off CPU cores, memory and storage size. In this purchasing model, you have more flexibility in adjusting individual resources such as CPU, memory or storage. It is designed to address the fine tuning off CPU power and stories performance separately and in a more transparent way Microsoft recommends record based purchasing model, So let's compare these two purchasing models in more detail. The vicar based purchasing model is supported by all three deployment options, including single database elastic pools and managed instance. On the other hand, did you based purchasing model is only supported by single database and elastic pull. The vehicle based model is best for customers who need flexibility, control and transparency. As you saw in this model, you have the flexibility Toe had just individually sources such as CPU, memory and storage. The detail you base model is best for customers who want simple and pre configured resource options. The vicar based model give the state forward way to translate on premises workloads to the cloud. You know how much resources you use on your own premises server. You can easily translate those resources to the corresponding value off the vehicle based model. However, you might need to calculate the needed amount off deep use before migration from your on premises data base. There are tools such as due to calculator, which you can use for this purpose. Microsoft recommends the virtual core based model. However, if the detail based purchasing model meets your performance and business requirement, you should continue using it. You're not obliged to change to the virtual core purchasing model. There are scenarios that you might want to consider converting BTU based model to the vicar based. If you're single database or elastic, pull consumes more than 300 diffuse. Converting to the vicar based model might reduce your cost. You can convert toe the vicar base model by using your a payoff choice, meaning at your CLI rest ful, FBI or Power shell or by using the Azure portal. And there is no downtime. And as we mentioned before, as your sequel database managed instance only supports vehicle based purchasing model. So if you're going with this deployment option, you have to choose vehicle based purchasing model. So far, we talked about the Azure sequel databases, deployment options and purchasing models. The last concept er cover is at your sequel databases serviced years. There are three service two years for a Jurcic will database. The 1st 1 is the general purpose or standard. This service, Dear, is designed for most general workloads. Microsoft guarantees 49 S L A. Regarding the story Dispirit, there's a two millisecond read Militancy and 10 millisecond right latency. This performance is good enough for most workloads. The other service here is the business critical or premium. This service year is designed for applications requiring Lalit and see, same as the general purpose tear. Microsoft guarantees four nines off SLE. However, the stories is much faster in this service to year, there is one millisecond reluctancy and to milliseconds off writing literacy. Both these service tears are available for all the deployment options. The last service to year is hyper scale. This is primarily intended for customers who have large database up 200 terabyte in size. The other two service two years, general purpose and business critical. Our host databases. Ah proof four Terabyte in size. Keep in mind that the hyper scale serviced year is only available for the vic or purchasing Mortal and basic service model is only available in depew purchasing model. So let's recap. In this model we talked about three important at your sequel database concepts. The 1st 1 is the deployment option. You can choose from single database, elastic pool or managed instance. After choosing the deployment option, you need to choose a purchasing model you can choose from deep you based or record based. The D to you based purchasing model is only available for single database and elastic pool . The vicar based purchasing model is available for all the deployment options. After decided the purchasing model, you need to decide the service. Two years. You can choose among general purpose or standard business critical or premium and hyper scale. The high Paschal serviced year is only available for the vicar based purchasing model. Now let's go back to the portal. Microsoft recommends using the vehicle purchasing model, and that's why I'm getting the vehicle purchasing model general purpose as as my before, I could easily go ahead between different services tiers, including the hyper scale, our business critical. But for this demo, I'm going to use the general purpose. So let's click on that and scroll down. So here I can beside how maney virtual course. I'm going to assign to my database that before it is too virtual course, I can just use that's lighter and to go with the higher number of which, of course, if I need to. So I'm going to leave that vic or value toe to and 32 g b off storage is more than enough for me. The other options you can control is to choose between compute generations you can use from generation four generation five. Generation four gives you up to 24 virtual course and once experience gigabyte off memory tradition. Five gives you upto 80 number of which accord and approved 408 gigabyte off memory. I'm going to choose Generation five like cocaine. Now. One of the new concept offered ah by a juror for a just equal database is the compute. Here. I can choose between the more traditional A vision beer or the new server last year. So the provision is the model views so far. You know how much resources your database needs, including CPU memory and storage, so just go ahead and provision them. But the silver last year is more interesting in the silver last year at your decides how much resources it needs to assign to your database. So if your database needs more resources, it automatically gets them so Leslie conserve unless and see. However, options change first, if all by choosing several less. I only have Computer Generation five available for me. So if you look here, there's no generation for here and here I can get up to 16 virtual course and for beer gebe auf memory. And here I can also assign the minimum recourse and maximum because I'm willing to assigned to my database. So let's, ah, slide the two virtual core as my maximum, and I'm going to assign one to my minimum virtual core. So this means a jury is going to decide how many virtual core is assigned to my database based on that database, Lord, the amount of virtual course will not be less than one virtual core and won't be more than two. Which, of course, so this is a nice picture because you can assign how big your database can become, and this is a very to control your cost. So now you also have the option to choose their Did you based purchasing mortal. To do so, simply click on looking for basic standard and bring a link. Let's click on that, and here you can choose between the basic standard and premium service. Two years Standard is equivalent to the general purpose off Week over, and premium is a similar to the business vertical off the vehicle model. So let's look on standard. You can set the exact number of did you use and ah, storage you like toe assigned your database. The same goes with a premium you won't have. Ah, the access to the serverless option in this purchasing model. So let's click own vehicle based purchasing options once again and make sure you're going with the V Corps purchasing model. And here we are once again in the vehicle or purchasing model. Here we have the general purpose. I can choose a vision and ah, week or two and mix datum accessory. And we also notice here the how much it is going to cost us. So this setting is going to cost us $426.29. What month? Click on a play. 12. Azure Database vs Azure Data warehouse: I just want to make sure you know that even though a Joe sequel server and at your sequel Data Warehouse looks same but behind the scene, they're different. The biggest difference between a juicy call database and a Jor sequel Data Warehouse is the fact that a Jurcic all database build with Oil PP our only and transaction processing and optimized for create, read, update, delete are basically crude operations, more off a role level oppression or Grenell queries like Roux. Update. New Row at Spectra Sequel Data Warehouse is for online analytical processing O L. A p. It is optimized for robust Grady's to process and produce reports. The idea with your sequel Data Warehouse is that it's more often analytics place where you have got the data that may be less frequently updated, but you are going to run detail and potentially complex queries and reports based on it. A George sequel database is symmetric multi processing, where you have got a single virtual server that you can scale up or down at your secret of her house is for massively parallel processing. A juicy call data warehouse has 60 compute notes that you spread your data across through her gentle partitioning. Very break in numerous tables into sections and put them on separate hosts. It is lot easier to do that in the cloud when you're not provisioning all the hardware by yourself. So therefore, with your sequel database, you have got vertical skill with your sequel Data Warehouse. You have got her gentle scale. Another neat thing about Joe sequel Data Warehouse is that you can pause the cluster nor to save some cost. This is nice. It's night that Microsoft gives you the ability because sequel get a warehouse can be really pricey, a Supreme Ear hosted platform for data warehousing, and finally, we have poorly base for data warehousing. 13. Section 4 Introduction: Hello, everyone. Welcome to this section on elastic database pool on a George sequel database service We're going to talk about at your sequel databases. Elastic pool Deployment option. This is an interesting deployment option, which can help you save lot off money people see when it makes sense to choose elastic pools as your preferred deployment option. And we will go through demo toe provision Elastic pool, where we will be creating more people databases and we'll configure them in elastic pool. All right, so let's get into it. 14. Azure Elastic Database: in previous lecture with discussed the most common way off deployment that this single database option when you select a single database at your deploys one database that runs in its own reserved resources, let's talk about at your sequel database, elastic pools and at your sequel. Elastic pool allows you to allocate a share, set off compute resources to a collection off a jure sequel databases, meaning that your databases are running in a shared resource. Bull. A large organization might have a number off databases that are hard to size because they're new and their resource utilization is also unpredictable. Sometimes needing a lot of details and sometimes needing only a few, the following figures shows an example off a database that spends much time idol but also politically spikes with activity. This is utilization Burton that is more suited for a pool for the five minute period. Illustrated DB one big student, 90 d to you, but its overall everyday usage is less than five D to use if you let it run as a single database. This leaves most of the resources unused during periods off flu activity. In this case, Microsoft or first and or committed to a single database. The elastic pool is a collection off databases that share Edie to use and elastic due to use. This is a similar kind off measure, but not instead off being applied to a single database. And it do to you applies to a pool off databases that share resources in an elastic pool, measuring the performance potential off the entire pool in studio for single database. Each database in the pool is capable off using a few or lots off entire pools. Performance capacity. If a single database needs to have a Bush in performance, it can do so within the constraints off the pool. This would impact other databases in the same pool, but has no impact on any database outside the pool. If you look at this figure, the aggregate DEPEW utilization across all 20 databases is illustrated by the black line. This shows that the aggregate detail you to logician never exceeds 100. Did you use and indicates that the 20 databases can share 180 to use over this time period ? This results in a 20 times reduction in D to use and 13 times price reduction compared toa placing each off the databases in as a single databases. This example is ideal for the following reasons. There are large differences between peacoat, logician and every digitalization per database. The picket logician for each database occurs at different points off time. This is a huge save in my cost so that your sequel, Elastic Pool, is a cost effective solution for managing and scaling multiple databases that have wearing an unpredictable usage demands. The databases in an elastic pool are on a single endure sequel database server and share a set number of resources. It s set applies elastic pool enables developers toe optimize the price performance for a group off databases within a prescribed budget. Elastic pools we went over provisioning are under provisioning off resources. 15. Demo Azure Elastic Database: welcome everyone in this demo. We're going to provision in another ad your sickle database deployment option, and this is going to be elastic pool. So to do so, I'm going to create multiple endure sequel database single data basis and then add them to a new elastic pool. So let's get started. Let's click on sequel databases. So I'm going to create three a jure sequel database. Single instances. So let me click on add and quickly provisioned them. So first, let me give the name off resource look, and I will be putting all off these three new databases and this resource group so that, as you know, it will be easy to clean up in the end. So let's get this first database name and create a new server. Give the good in shells and select the location. By now, you must be very familiar with these steps. I'll choose elastic pool as know at this time Later, we will create elastic pool separately and we'll add these databases into it, so I will like it as a no. And here I will choose my computer storage configuration, so I will choose in V Corps General Purpose I'll let everything is a deformed and click on a play. And in the networking, I believe it as a deformed all other settings as a default, no tax live you in create. And as you can see, it will cost me for $26 per month. But we are going to delete this after this demo. Other settings looks good, so I will create it here now. It will take a few minutes before it create this first database, and I will pause the video here and come back soon. All right, so our first database deployment has completed. Let's go to the go to resource is and we can see this is the portal off our first database . Let's go to the server and we can see we have Debbie's 1001 into this database server, and we also have option to add new database here. So now I will clear the second database here. I will give name the B 1002 I will leave it as a blank database and here I have option to choose a server, and I'm going to create the second database into the same server and again the elastic pool . Now I have the option to add this databases into an elastic pool by choosing yes for this value, Burton choosing yes will cause a new elastic pool to get created this single database to be placed inside it. However, I don't want to do that at this step, so I'm choosing No, we will later Creator Elastic pull separately. So let's click on configuring the database, and I'm going to choose the detail based purchasing model, and I will go with the standard pricing tier apply. And I'm not going to touch any of the defaults. So let's just look on, okay? And it will create another database. My second database into the same first server. Okay, so meanwhile, uh, this second database is getting provisions in, we can go ahead and create our third database, so I will go to home, go to data basis, click on add to create new database, and I'm going to use my same resource repair and give name to my new database. Here. This is my turd it of this. And I'm not going to put this into an old server, which we created instead. I will be creating the new civil here, and I will be giving my administrative passwords here and choose location as a central U S . Click on OK, so I have created a new logical server for this new database. I'm not going to put this inside and elastic pool and let's configure this and I'm going to choose Vic or based general purpose model, click on apply, review and create. I'll choose all of the settings, says it before. I'm not going to change anything and create this. All right, My third databases, Really? So let's go ahead and see what we have so far by clicking on sequel databases so I can see that we have three Edge your sequel databases. Single database instances created DB 1001 maybe 1002 and maybe 1003 and maybe 1001 and 1002 are placed inside a server 1001 and maybe 1003 displaced inside the server 100 to also be be 1001 And once it was about three are using ah v Corps based purchasing model and ah, database 1002 is using the detail based purchasing model. So now let's go ahead and placed 1001 and 1002 inside an elastic pool. So let's click on my services all services and search for, Ah, elastic Pool sequel Elastic pools and let's click on add to create a new elastic pool. And I will be putting this elastic pull into the same resource group Let's given name. And here I can see both the servers, which I have created, but I I want toe put this elastic pool into a 1001 server. If you remember 1001 server, we have two databases and both of these databases. We want to put into that this elastic pool so elastic pool has to be a part of the same database server. So now let's go to the Compute and Storage to configure that by clicking on configuring elastic pool, I can see a very similar screen comparing to the screen I saw for single databases, I can sit between recode and Ah, did you based purchasing model. The first difference, if you have noted between elastic pool and single database, is that you don't have, Ah, hyper scale as a pricing tier available to you. You also don't have the serverless compute options here. So here, I'm gonna make sure that vehicle general Purpose Gen five is selected. And if you can see here, I have option. It is asking me if I already have a secret. Several license I want to use. The answer is no. And here I can choose how many vehicles I want to assign to my elastic pool. These virtual course and storage will be assigned elastic pool. I'm going to leave the number off week or two to and also the storage Tow it G b less click on database tab. And at the moment, I don't have any databases added to this pool. We will do that shortly. So let's go back to the pool setting and click on, apply and click on tags. I don't want to put any tag at this point. Libyan create. You can review all the settings and just click on create and let's wait for our elastic pulled to get provisions. All right. My elastic bull is ready. Let's click on go to resources. So now I'm really toe. Add my existing databases, toe this pool. I also have option to click on, create a database and add a new database, which will be added to this pool. Let's cancel that to add existing databases. Let's click on configure. So in this tab, you can change the amount of resources you assigned to your elastic pool. Let's click on data basis and click on Add Databases. And here I can see all single databases in the same logical server. Let's choose both and click on apply. So I have to add your sequel. Single databases added to my elastic pool. If you remember, we created a turd database 1003 which we couldn't see that in this list. Why is that? The reason is that once it was over, three was created in a separate logical database server so it can be used for an elastic pool on a different logical server. You can simply migrate that data base to a logical 1001 server and then added toe this elastic pool. So now I have selected the database says I want to add to this elastic pool. Let's click on sale and wait for the provisioning to complete. Looks like our databases are moved to the elastic pool. So let's go ahead and take a look click on sequel server sequel databases. And here we can see all over three databases so you can see databases. 1001 and 1002 are inside an elastic pool now, and the pricing tier for both of them is elastic. General purpose. And maybe 1003 is a still and a Jurcic all database single database, and it is using the vehicle based purchasing model, So I want to talk a little bit more about scaling. Now let's say you have a single database or elastic pool, and you realize that you need more resources assigned to this database. You could do that easily within at your portal or using powershell. So let's go ahead and cry. The Azure portal option, baby 1003 We are going to go ahead and scale this database. The current purchasing model is Vic or bitched, and the pricing tier is general purpose. So let's click on that and go to configure. And so here I can see the familiar screen. I saw before. When provisioning this database, I can easily go ahead and the chain the placing two year to hyper scale. Or I can change the compute here to the several less for amount off virtual core. I can change by just letting this ball or storage. I can change. I can even go back and choose the detail. Purchase immortal if I want, so let's go back to the very core. The thing I'm going to do here is increase the recourse I'm giving to my database from two toe eight records. And as you can see, changing this later is going to change the place automatically. And now I will have to pay $1687 for eight virtual course. So let's go ahead and click on Apply. All right. Scaling is complicated, so let's go ahead and see all over data basis. And if you can see database, 1003 is now having eight virtue, Of course, here you can also confirm that by going to the database, click on configure and you can see Now we have eight virtual course assigned to this database. So in this demo, with discouraged how we can create different databases and assign them toe one elastic pool . And then how we can scale the performance, the pricing two year for one database or the elastic pool in itself. So I want to conclude this demo by deleting all we have created doing this. Ah, demo. So if you remember, we have collected all over the sources into this resource group. So I will just click on that. And if you can see, we hear we have database. 123 All the servers elastic. Pull everything here in this resource groups. I will believe this resource will confirmed the name and click on delete. And within few minutes this will delete all the resources which we created during this demo . Thank you very much. 16. Section 5 Introduction: Hello, everyone. Welcome to the section on managed instance on a George sequel database service. In this section, we will see what other use cases for this deployment option. We will discuss migration options and serviced years for managed instance, And also we will talk about differences between sequel server on premises and this deployment option. We will also cover the management operations concerning management instances. These oppressions include create a bit and believed We will see how long these oppressions will take and in the model demo we're going to provision in and a Jor sequel database managed instance, and we will create a virtual machine in apply with network to connect with this instance. All right, so let's get into it. 17. Azure Managed Database: in the previous module, we learned about the 1st 2 deployment options for a Joe Sickle database. The single database deployment option is an isolated database that is perfect for applications that need a single data source. The elastic poor department option hosts a collection off single databases with a shared set off resources such a CPU or memory. You can use this deployment option to control your cost for the group off databases with a specific usage pattern, the focus off this model is a turd deployment option, which is managed. Instance. Managed instances are is set off databases that can be used together and allows easy migration off on premises and last databases toe endure Sequel database. So the managed instance is a deployment option off a Jor sequel databases providing near 100% compatibility with the latest sequel Server on Premises. So what do you think would be the main use case off this deployment option? So as you saw a Joe sequel, database managed instance has nearly 100% compatibility with the latest sequel server on premises. This allows the existing sequel server customers to lift and shift their own premises applications with minimal changes on migrate them to a Joe Sequel databases. This deployment option provides a native virtual network implementation when you are provisioning and adjust sequel database managed instance. You have to specify AH virtual network, which will be used for the sequel database. Onley Resource is within that virtual machine are allowed to communicate with this database . Instance So far, we could get all these features by deploying and add your virtual machine and installing sequel server on it. This is the last scenario, which is one of the database offering by Microsoft Azure. So what is the biggest benefit off? Using managed instance, manage instance preserves all the past capabilities that reviews management overhead. So by using this deployment option, you're having the best off. Both words. You get the flexible P off last scenario, which enables you to migrate your own premises applications who at your sequel databases easily and being a pass offering. You don't need to spend tons off your time managing this edge or sequel database. Instance. So let's recap what we have learned so far and see what is the main use case off this deployment option. The managed instance. Deployment option targets user scenarios with mass database migrations from on premises or last databases. I would go with other Endure sequel database deployment options, for example, single database or elastic pool when I'm creating a brand new application with an empty database, or if the existing on premises data base I have is small and easy to migrate, and I will use the managed instance deployment option. If I have several on premises data bases and I would like to easily lift and shift them from on premises. Data centers toe endure sequel database. 18. Differences between On-premises Database and Managed Instance Database: so at your sequel. Database managed instance is near 100% compatible with on premises Sequels over, However, there are a few differences that you need to be aware off. Let's take a look. The first difference is high availability in your own premises, sequel, server or even in the eyes scenarios You are responsible for taker off high availability, for example, provisioning multiple database servers and put them in an availability set or behind Lord balancers. This is not the case for the managed instance. Being a pass scenario, the high availability is Burton and pre configured using Sequels Ever. You can specify full physical parts, toe files, back of files or other entries in your commands. These full physical parts are not supported in a George sequel databases, because the underlying server hosting the sequel database is abstracted out from the end user. In Microsoft Sequel Server, you could use Windows authentication. However, this is not the case for a Joe sequel. Database managed instance. Instead, you can use at your active military authentication also that extra P file groups and in memory online transaction processing objects are automatically managed and finally, you cannot use a society s with a Jurcic all database in straight. You should use at your data factory which can run a society s packages. 19. Migration options for Managed Instance: in this lesson, Beverly discuss how we can migrate our own premises. Databases group managed instance, managed instance, has built in features for high availability, which can take care off some off your regular DB activities. Therefore, some instance, level data does not need to be migrated, such as mental and jobs for regular backups or always own configuration. Now we have two main options. To migrate your data data migration service and back up and restore the ad. Your database migration surveys All D. M s is a fully managed service designed toe unable seamless migrations from multiple database sources. Toe Add your data platforms with minimal downtime. The other option is your familiar backup and restore feature. You create a back of files and place them in a drawer blob storage. Then these backups can be restored into managed instance. Using that piece equal restore Command 20. Service tiers for Managed Instance: managed instance, is also offering different service two years, general purpose and business critical. Let's have a quick comparision between the features off these two service two years. The general purpose service tier can be used for business applications with typical performance requirements. On the other hand, business critical Service year should be used for business applications with highest performance requirements. Both general purpose and business critical offers four nines availability and enable you to independently select storage and compute the general purpose service. Tear uses high performance at your blob storage upto a terabyte. The business critical service year, on the other hand, uses superfast local SSD storage. You can get up to one terabyte for generation four and up to four terabyte. For generation five. You get building high availability for the General Purpose Service two year for business critical. You also get building high availability based on always on availability groups in business critical on top of high availability, you get an additional read only database replica, which you can use for reporting or other read only workloads. This can dramatically improve the performance off your database 21. Management operations for Managed Instance: Unlike other deployment options, provisioning managed instances can take a long time, and we're talking about us. There are three management operations you can perform on a managed instance. The 1st 1 is instance, deployment are creating a new instance based on Microsoft telemetry. Data, 90% off close to creations finish in less than four hours, but it can take up to six hours. The other option is instance a bit. This is to re sizing virtual cluster properties, like changing the instance properties such as vehicle or storage based on Microsoft telemetry. Information. 90% off cluster expansions finish in less than 2.5 hours and finally instance delish, in which, according Toa, Microsoft takes about 1.5 hours for 90% off the scenarios. So as you can see provisioning and add your sequel, database managed instance can take a long time for the first management instance you are creating in your sub net. Deployment time is typically much longer than the subsequent instances, so for the first time you are creating your managed instance. The deployment might take up to six hours. However, adding new databases in the same managed instance will take much less time to complete 22. Demo - Azure Managed Instance: Welcome back in this demo. We're going to provision in an a jurcic all database managed instance. And then we're going to use a virtual machine toe connect toe this database server. And if you see I have already created my management stands server because the provisioning could take ours, it takes generally 3 to 6 hours. However, I'm going to take you over all the steps necessary steps to provision a new one. So let's go ahead. So if you go to the database category, you won't find managed instance. Option here. So let me click on all services and search for managed instance, and I see here sequel managed instance. So let's click on that. And here I can see my already provisioning instance. We will get back to this instance shortly. First, let's go ahead and take a look at the steps to provision a new managed instance. So let's click on add First, we specified the subscription, and I only have one subscription and then resource group. So let me create a new resource group here. Imagine the score and my DB and again the same thing. Everything related to this demo. I want to create under this resource groups so that at the end of the demo, I will delete this ISOS girl, which will believe all the created resources. Now, let me give name to my manager instance db and choose the central us as my location. And now here we have option toe click on the pricing tier and just a pricing tier for your managed instance. So let's click on that. And here you can choose between general purpose, our business critical service. Two years I'm going to go with general purpose Generation five and I'm going to change the number off course from it, toe four and change the story. It's toe 32 GB, and you can see with this conflagration my monthly cost will be around $841. And again here we have option to choose if I already have an existing licence, which I don't so everyone doesn't know and click on. Apply now. If you go below, I have to choose here the admin account. All right, So now next goto the networking. So in this step, I need toe specify virtual network to be used with my managed instance. I can choose an before virtual network created, or I can create a new one here. The Microsoft has already created a new virtual network with a single sub net and has also applied all the requirement configurations, setting for managed instance for me. So basically, I don't have to do anything unless I have very specific setting requirement for my environment. And in the next step, as you can see, we have to choose the connection, type the option. You have our proxy and the redirect. The redirect option results in improved the militancy because you're directly talking to your sequel database. Instance, However, you need to open a range of ports. In addition to the default sequel database, sport 1433 the Proxim or enables Proxicom activity to manage instance, and it requires only port one for 33 Toby Open. I'm going to leave, Ah, this setting connection type to a proximal, and we can always change it later if required. Now, next we have is the public and point. You use this option to enable data access for clients outside the connected virtual networks. So if I check this check box, I can decide which services I would like to allow access from you can choose between edge or services Internet, and also you can choose to have no excess from outside. In my case, I'm going toe and check this option and enable private access to my sickle managed instance . Now go to the next additional settings and I don't want to change anything here and here. You also have ah geo replication setting. This gives you option toe automatically recover your database form a second reason in case off, you know, full or partial loss off your sequel database service in the primary reason. So we can also change this later if require less weekly review and create and became quickly review all the settings, all the options we have just chosen and you can see it will cost me $841.10 per month. And if you just click on create it will provision in your sequel database managed instance the similar instance I created for the morning and it took me almost a 3.5 are to complete . So now I will continue recording this demo using the managed instance which I have already created So Let's assume that we waited for about three hours and our deployment is completed. So now let's go ahead and connect to our already created, managed instance. I haven't got to my resource group, and I created my management stance. Under this resource group, you can see I have, ah, Menace instance with the name and my 10 it. And here I am, blended into my managed instance dashboard. So first, let's go ahead and click on virtual network options. And as you can see, I can go ahead and enable the public endpoint here. I also have option to change the connection type if I need to, but we're going to leave all the options as they are for now, and they discovered all the changes and go back to the overview. So the next thing we need to do is to create a new virtual machine inside the virtual network we used with our sequel managed instance. We can use the virtual machine as a jump box toe, connect to our managed instance, and if you take a look at the link on the top of the page, it reads, your managed instance is ready. Click here to get started By clicking on that, you will be redirected to this page, which takes you over the steps you need to do to use your management's tins. The first step is to create a virtual machine. The second step is toe connect to the virtual machine using the Rdp, and the first step is to run sickle several management studio from within the virtual machine and connect to the manager. Instance. It even gives you this Power Shell script you need to run to create this virtual machine, but we're going to use the porter to do so. So let's go ahead and create a virtual machine so I will click on, Create a Resource. I will search for Sequel server, and here I can see options for different virtual machines. I want to choose a sequel server Virtual Machine because it already comes with the secret several management studio s SMS fringe tall. I'm not going to use the install database engine on this virtual machine, so let's go with the publisher and choose the Microsoft here, and I want to choose Sequels over 2019 on Windows Server 2019. So every click on that, and I'm going to use the free developer license create. So let's put the virtual machine into the same resource group and get the name to this virtual machine. And I'm going to put the special machine into the same location where I have corrected the managed instance. And I'm not going to set my availability option here, and I'm going to leave this image as a flea license for developer. Unless you're the size of the machine and I'm going to change it toe, be for a mess version here. Click Select. Let's get the administrative account and we are planning to our tippy toe this machine. So we need to go ahead and make sure that the more Dextre Port is selected here. We already have a window license. No, let's go to the disk. And here I have a couple of options and I want to select Extender SSDI. Let's go to the networking, and here I need to make sure that this virtual machine is created inside our managed instance Virtual network. So let's select a V net and my 108 In the next step, we need to set the sub net for our virtual machine. So you really have ah one sub net in the managed instance Network, and it is already dedicated to the Jurcic all database. Instance. We cannot use it for our virtual machine, so we need to create a new one. So click on minutes, submit configuration and let's create a new one at some net. I'll give it a name. Sub net Virtual machine 10 it and we will leave the address range as a tous. And I'm also going to leave all of the defaults as they are and click on OK and let's wait for the submits to get created. And here we go. So let's choose this submit for a virtual machine and also we want to make sure that this was your machine has a public I P so that we can connect to it from the Internet, and I'm not going to assign any security grope toe this time. However, for the production system, you might want to make sure the appropriate security group is assigned to either the network interface off this washing machine or the submit, including this washing machine, and I will leave all of the settings as it before and we'll go to the management again. I will not change anything here. You can see that they have created by the Forge storage account also, and I will go to advance again. I don't want to change anything less for the Secret Service settings. I'm not going to use a sequel server on this machine, so I'm not going to change any of the defaults here. So let's go to the tax review and create and let's create this virtual machine here. It will take a few minutes, so less with for that time. All right, so my virtual machine is created. So let's click on, Go to Resource Is and take a look. So, So far I have created my a jure sequel database, managed instance and my virtual machine. And in my virtual machine Sequels of a management studio already installed, I optionally used a sickle cell, a virtual machine image, so that I don't have to install s SMS mentally. Alternatively, you can provision of window virtual machine and install sickle server management on it. So here I will click on connect and download my rdp file, and I will click on it toe connect and I will use Ah, my good and shells, which I have given well provisioning my Did Travis click on? Yes. And here you can see I'm able to connect. All right, so I'm in. Let's struck it. Ah, let's search for Sequel, Server Management studio And here we have sick Also Management studio. Let's open this. And now here we need to give the silver name off managed instance. So let's go back to the portal and ah, let me go back to my resource group and my managed instance. And here I have the server name so I can copy it here. Or alternatively, you can also go to the quick start, and you can also see the seven name here you can copy from here Also. Now, let's go back to have a virtual machine and fished this server name here and try to connect using your sequel server correction. And if you see if you go to the database, you don't have any database here. Now let's quickly go back to the azure portal, and if you go to the overview here, we have option to add new database. So let's add new database. It want and my 108108 and click on. OK, so let's surveyed for the data ways to get provisions. All right, It looks like my new database is created. So let's go back to the virtual machine and refreshment database here, and you can see the newly created database here. I can go ahead and start working with this database. Now. Now, if you want, you can add more data base into this server. So, for example, let's go back to the Azure portal and at another database here and my 1002 and click on. OK, all right. So it seems like my another database is also created. Now, let's go back to the virtual machine once again. And if you refresh the data base here, you can see my another newly created database and these database now are ready to start working on. So if you remember what we did in this demo, we created a managed instance in tow, a particular virtual network within same virtual network. We created the virtual machine and using that commercial machine as a jumper box and ah, the SMS within that virtual machine we're trying to connect with the management stance, so I will go ahead and they're disconnect from my virtual machine now. I don't need it here now. Before concluding this demo, I want to take a moment and show you all the resources which are being created while provisioning and at your sequel database managed. Instance. Now when I was creating the managed instance at your created a few of the resources for me like virtual network virtual cluster, loud table network security groups and all these sources work with the managed database to make sure the services accessible and working normally. So let's click on this network security group, which is assigned to my managed instance. So here you can see the inborn security rules and outward security rules. And if you're not familiar with this and if you don't know what you're doing, it's better to not touch them. Otherwise, you can make your managed instance unavailable. And if you go back to the source of this also about people here again, these rules define that how the date I will go outside the network so again you don't need to touch all these. But I just wanted to show you all this? So here I want to conclude my demo. But before doing that, please make sure that you delete this resource group, which is having all the resource is created during this demo because managing instance is very expensive. And you don't want to leave it without believing it. Thank you very much for being with me with this demo. We'll see you in the next section. Thank you. 23. Section 6 Introduction: Hello, everyone. Welcome to this section. In the section we will see how to secure these deployment options, which we created in previous sections. Microsoft Azure provides us with a few technologies which we can use to secure a juris equal database. Instances. Microsoft provides four layer off defense to secure your at your sequel database network security access management, third prediction and information protection. We will discuss different options in each of these layer provided by Microsoft like Fireball as your active directory integration managed instance. Always encryption and transparent great encryption. And we will also look at security options dedicated for managing instance like Advanced Security option for managed, for instance. All right, so let's get into it. 24. Azure SQL Database Security: Let's see how we can secure at your sequel database. Instances. Microsoft Azure Provide four layers of defense to secure your and your sequel database. The first aspect this network security so you can make sure only request which are coming from Walid I. P addresses can access your database. You can configure excess management to your a jure sequel database instance as well. This includes authentication and tradition. Microsoft Azure can constantly monitor the traffic to your edge or sickle database and look for suspicious patterns and provide threat protection. And finally, you can protect the data in your Ajo sickle database using information protection and encryption techniques. Let's take a look at each of these categories and little bit more. Details. Network security. To help protect customer data at your firewalls, prevent network access to the database server until access is explicitly granted. Based on either I P address or a your virtual network traffic origin, you can define firewall rules on this server. This way you can grant access to databases based on the originating I P address off each request. Also, a just equal database firewall enables you to only accept request. Orjan. It'd from sub nets inside a virtual network. This gives you the flexibility to make your a joyous, equal database instance private and only enable applications or resources within a specific sub net toe access. The database resources Access Management authentication is a process off. Authenticating the user who he's blaming Toby at your sequel database supports to type off authentication sequel authentication and add your active directory authentication in sequel authentication. While creating database server we provide server Edmund Logan did user name and password and then use them in our client application to connect to the database in a your active directory authentication we use at your active directory identities toe connect to your database at your active directory. Authentication allows administrators to centrally manage the identities and permissions off database users, along with other Microsoft services in one central location. This includes the minimization off password storage and enables centralized password of rotation policies. What tradition or tradition refers to the permissions assigned to a user? Vidin and a Jurcic will database and deter mines. What the user is allowed to do permissions are controlled by adding user accounts to a database roles and assigning database level permission to those rules are by granting the user certain object level permissions. For example, row level security at your sequel databases supports row level security as well, so you can control access to rows in a table based on the roll off the user. So this way, less privileged users won't be able to see some rose in a specific table. Third Detection Sequel databases secures customer data by providing threat detection capable Peace through auditing auditing allows users to monitor ongoing database activities as well as analyze and investigate historical activities. Toe. Identify potential thirds all suspected abuse and security violations. Sequel Auditing in at your Monitor Logs and event Herbs tracks database activities and helps maintaining compliance with security standards. You can also utilize advanced threat protection. This technology analyzes your sequel server logs to detect unusual behaviors and potentially harmful attempts, toe xs or exploit databases. You can create alerts for suspicious activities such as sequel injection or potential data infiltration or different attacks like brute force attacks or for different anomalies in excess patterns. To catch privilege, excavations and bleached credentials. Use and finally at your sequel database supports a few information protection and encryption technologies, so first off. All that data in motion is always encrypted using transport layer security or DLS. This ensures all data is encrypted in transit between the client and server, irrespective off the setting off encrypt or crushed server certificate in the connection string. Next, this TVE or transparent data encryption this technology in Crips the profiles such as database files and backup files on at your servers. This way, your data is protected from offline excess in case the database files are compromised in a George, all newly created sequel databases are encrypted by the fort using the A. E s encryption algorithms. And finally, all the encryption keys are stored in a your keyboard and are protected from unauthorized access. Dynamic data masking protects sensitive data by masking it from known privilege users. An example off this sensitive data would be like credit card numbers or celery numbers. Any non privileged user tryingto created. This data will see the mask version off the original data Security Management. There are two more services which are part off ideas or at once, data security one. Their ability assessment and better discovery and classifications. One. Their ability Assessment surveys helps to discover black and remediate potential database will need abilities, data Discovery and classifications Surveys helps toe identify and label sensitive data like financial or health care data, which can help in various security scenarios like monitoring and alerting in case off any anomalous access too sensitive data. 25. Azure Managed Instance advance security options: fold it of a security technologies we discussed earlier will apply toe all deployment options off a Jurcic all database, including diminished instance, managed instance at once. Security. The future you are seeing here are only available to the managed intense deployment option . So you're managed. Instance is deployed into a virtual network. You can connect your own premises environment. So this virtual network using VPN our access route and this gives your own premises application a quick and secure way to communicate with a jure sequel. Database managed instance. By default. The managed instance equal and point is only exposed through a private i. P address. This allows safe connectivity from private a jur and also hybrid networks. Also, your and your sequel database managed instance, is deployed to a single tenant environment. This means dedicated underlined infrastructure, including compute and storage. This is another level of security