Introducing the Surface API Management Service

by Contributed | Apr 12, 2024 | Technology

This article is contributed. See the original author and article here.

Our goal is to support our customers’ needs, wherever they might be. To this end, we’re introducing the Surface API Management Service, aimed at simplifying how you access information about your devices, coverage and insights.

Extend Surface Management Portal

This service builds on the familiar Surface Management Portal, enabling IT admins to directly access Microsoft coverage and entitlement information for their devices via API endpoints. It’s a practical enhancement for those already using the portal, designed to make device management more straightforward.

The service at a glance

The Surface API Management Service is an API management system that allows you to gain access to APIs that provide you with information about your devices. 

These APIs serve as a direct conduit for customers seeking to streamline their asset management processes. By seamlessly connecting to the API, IT admins gain immediate access to critical device and warranty information, essential for effective asset oversight. Tailored specifically for Surface customers, this integration offers a hassle-free solution, eliminating the need for convoluted data acquisition methods. Now, with the simple integration of this API, customers can quickly retrieve pertinent details, empowering organizations to make informed decisions and optimize their asset management strategies.

Our first launch experience will allow current Surface Management Portal users to get their Microsoft coverage and entitlement information for their devices directly through API endpoints. Through our portal you can also see more of the performance and usage of the APIs across the globe with Surface API Management Service Reports.

Get access to Surface API Management Services

To access, you need an active Surface Management Portal Account and a completed customer validation check. (If you have access to create service requests within Surface Management Portal you have been approved.)

Get started

To get started with using the APIs, see the Readme on GitHub.

Securing Azure AD B2C API Connector (Function App) without Error

by Contributed | Apr 12, 2024 | Technology

This article is contributed. See the original author and article here.

I was recently working with a customer who is using Azure AD B2C API Connector to enrich tokens with claims from external sources. They are using Azure Function App as the external source. As this setup demands, they exposed Azure Function App over public IP to work with B2C. But due to enterprise security restriction policy they must remove public endpoint from Function App and use private endpoints to VNET.

They thought of 2 options to expose the Function App securely over internet – using Azure API Management instance to a virtual network – external mode APIM in external mode or using Azure Application Gateway. But in both the cases B2C auth process errors out after adding the API Connector in the user flow:

Initially I investigated on the error messages collected at the B2C, and APIM or Azure Application Gateway end. But later realized the main source of problem lies somewhere else. It is the ASP.NET Core framework used in building the Function App.

We need to modify default FowardedHeaders middleware settings. Otherwise, it will ignore the X-Forwarded headers being sent by APIM or Application Gateway because it isn’t in the list of KnownProxies and KnownNetworks. Please see the following links to understand the concept better:

• Configure ASP.NET Core to work with proxy servers and load balancers | Microsoft Learn


• Using Azure Front Door with .NET Core • Jamie Phillips (phillipsj.net)

So, I did the following changes:

1. Added ASPNETCORE_FORWARDEDHEADERS_ENABLED application setting to my Function App Configuration:

2. Added a Startup.cs file in my function app code.

using System.Collections.Generic;

using Microsoft.AspNetCore.Builder;

using Microsoft.Azure.Functions.Extensions.DependencyInjection;

using Microsoft.Extensions.DependencyInjection;

[assembly: FunctionsStartup(typeof(TestAPIFunctionApp.Startup))]

namespace TestAPIFunctionApp

{

    public class Startup : FunctionsStartup

    {

        public override void Configure(IFunctionsHostBuilder builder)

        {

            builder.Services.Configure(options =>

            {

                options.ForwardedHeaders = Microsoft.AspNetCore.HttpOverrides.ForwardedHeaders.XForwardedFor | Microsoft.AspNetCore.HttpOverrides.ForwardedHeaders.XForwardedProto | Microsoft.AspNetCore.HttpOverrides.ForwardedHeaders.XForwardedHost;

                options.KnownNetworks.Clear();

                options.KnownProxies.Clear();

                // Put your front door, application gateway, APIM, b2clogin FQDN here and any other hosts that will send headers you want respected

                options.AllowedHosts = new List() { “.azurewebsites.net”, “.b2clogin.com”, “.azure-api.net”};

            });

        }

    }

}

That solves our problem. We can now see the “augmented claims”:

General availability: Elastic Jobs in Azure SQL Database

by Contributed | Apr 11, 2024 | Technology

This article is contributed. See the original author and article here.

We are excited to announce the general availability (GA) of Elastic Jobs for Azure SQL Databases.  

Elastic Jobs is a fully integrated Azure SQL database service that allows you to automate and manage administrative tasks across multiple SQL databases in a secure, scalable way. It can run one or more T-SQL job scripts in parallel using Azure portal, PowerShell, REST, or T-SQL APIs. Jobs can be run on a schedule or on-demand, targeting any tier of Azure SQL Database. Job target can include all databases in a server, in an elastic pool, across multiple servers and even databases across different subscriptions and geo regions on Azure. Servers and pools are dynamically enumerated at runtime, so jobs run against all databases that exist in the target group at the time of execution.

Where can you use Elastic Jobs?

Any database administration or management job that can be scripted with a T-SQL script is a good candidate for elastic jobs. Some of these example scenarios include:

• Automate management tasks like deploy schema changes, index rebuilding, performance/telemetry data collection etc.  


• Configure jobs like query execution, collecting results across a collection of databases on a recurring basis.


• Aggregate and collect data for processing and reporting.


• Data movement, ETL processing to extract/process/insert data between tables in a database.


• .. to name a few.

What are some significant capabilities of Elastic Jobs?

Elastic Jobs makes it easy and secure to manage large number of SQL databases across Aure. Some significant security and management capabilities of Elastic Jobs include:

• Microsoft Entra ID (formerly Azure Active Directory) support for central administration of authentication and permissions


• Service-managed Private Link support to securely connect to target databases.


• Integration with Azure Alerts for job execution status notification. 


• Easily scale Job Agent’s tier to connect to hundreds of target databases concurrently across Azure. 


• Dynamic enumeration target databases in target servers and elastic pools


• Jobs can be composed of multiple steps to customize the execution sequence.


• All functionalities can be accessed through portal, PowerShell, T-SQL and REST APIs

How do you setup and use Elastic Jobs?

Setting up and using elastic jobs is simple as described here.

• Job Agent and Job database creation

Job Agent and associated Job database creation experience in portal is similar to a SQL database creation. As part of job agent creation, its service tier can be chosen, and a user assigned managed identity can be added for Entra authentication. Once the job agent is created, its portal page allows easy access to all its capabilities.

• Defining Jobs, their target groups and monitoring them through job agent’s portal page.

Jobs and job steps can be defined, edited and executed through portal page. These jobs can also be scheduled to run at regular intervals and their execution can be monitored.

• Advanced security functionalities, alert notification and scaling are also easily accessed through Job Agent’s portal page.

Job agents Entra ID can be changed and private links to target databases established easily through portal page. Azure Alerts can be defined for getting alert notification on job executions status. Scaling the job agent’s compute tier to enable it to connect to hundreds of target databases concurrently is also easy through portal page links.

Steps described above for creating, configuring, and managing elastic jobs also be accomplished through using PowerShell, REST and T-SQL APIs.

Pricing

Billing for Job agents will start at GA time, April 11th, 2024. Billing cards in the Azure portal page will show estimated cost based on the provisioned job agent tier.

  *Billing for the job agents in national clouds are expected to start a little later, depending on the billing pipeline deployment in those regions.

Regional availability 

The Elastic Jobs is available in all the regions that Azure SQL Database is available. 

Resources 

To get started, access the Elastic Database Jobs in our documentation and follow through with the tutorials. 

SharePoint at the Microsoft 365 Community Conference

by Contributed | Apr 10, 2024 | Technology

This article is contributed. See the original author and article here.

If you don’t Share, what’s the Point! The community motto, “Sharing is caring” is in full swing – and there’s a ton of sharing in preparation, and we, the SharePoint Team, want to invite you.

Join us in Orlando, Florida for the biggest Microsoft 365 Community Conference to date | April 30 – May 2, 2024. Microsoft is sending over 175 Microsoft product makers — to share and discuss innovation and real-world solutions across keynotes, sessions, and pre/post event deep-dive workshops to build your expertise.

Register today | Note: Use the MSCMTY discount code to save $100 USD.

Below is a subset of the event content, so you know what to expect to hear and see from the SharePoint team. Expect clarity on what SharePoint is today AND directions content management and communications for the future. To see all that Microsoft is planning for the event, please review our Microsoft 365 Community Conference event guide. 

Join in: The Microsoft 365 Community Conference in Orlando, FL | April 30 – May 2, 2024 | aka.ms/M365Conf24 – Sponsored by Microsoft.

SharePoint content at the Microsoft 365 Community Conference

Join us to learn how AI-powered content management in Microsoft 365 enables content intelligence, optimizes critical business processes, improves governance, and prepares your content for Copilot. Below is a subset of content related to SharePoint:  

• Opening keynote | “The Age of Copilots” with Jeff Teper (President of Collaboration Apps and Platforms) | Tuesday, April 30^th, 8:00am – 9:30am EDT

• AMA | “Microsoft AMA” with Jeff Teper and numerous product leaders| Wednesday, May 3rd, 4:15pm – 5:15pm EDT


• Closing keynote | “Delivering Business Value and User Satisfaction in the Era of AI” with Karuana Gatimu | Thursday, May 2nd, 2:45pm – 3:45pm EDT

• The general SharePoint session
  
  
  
  • “Content Management and Collaboration for the AI Era” with Zach Rosenfield, Lincoln DeMaris, Melissa Torres, Sesha Mani, and Ashu Rawat | Tuesday, April 30^th, 2:00pm – 3:00pm EDT
  
  
  • Review all the M365Con general sessions planned for the event.
  
  
  
  


• Breakout sessions
  
  
  
  • “Introducing SharePoint Premium: AI-powered content management for Microsoft 365” with Adam Harmetz, Chris McNulty, and Sesha Mani | Tuesday, April 30, 3:15pm – 4:15pm
  
  
  • “Transform your content experiences with AI-powered SharePoint Premium” With Chris Bortlik, Kristen Kamath, and Vijay Sharma | Wednesday, May 1, 8:00am – 9:00am
  
  
  • “Prepare your content for Microsoft Copilot with SharePoint Premium content governance” with Chris Bortlik | Thursday, May 2, 9:15am – 10:15am
  
  
  • “Branding SharePoint sites, Clipchamp videos, Teams meetings, and more” with Cathy Dew | Thursday, May 2, 11:00am – 12:00pm
  
  
  • “The Ins and Outs of Microsoft 365 Backup and Archive” with Jaclynn Hiranaka and Trent Green | Thursday, May 2, 8:00am – 9:00am
  
  
  • “The Intranet of tomorrow: beautiful, flexible and AI ready” with Dave Cohen and Denise Trabona | Wednesday, May 1, 10:00am – 11:00am
  
  
  • “Microsoft Power Automate – the AI-first way to automate Microsoft 365” with Harysh Menon and Ravon Lingard | Wednesday, May 1, 2:00pm – 3:00pm
  
  
  • “Supercharge Microsoft Copilot with Your Enterprise Data” with Mankirat Kaur Bajwa and Sameer Chabungbam | Tuesday, April 30, 3:15pm – 4:15pm
  
  
  
  

• Workshops




• “Beginner SharePoint Framework (SPFx) Bootcamp” | Sunday, April 28^th, 9:00am – 4:00pm


• “Grounding AI Using SharePoint Content” | Monday, April 29^th, 9:00am – 4:00pm


• See the full list of 18 workshops available on the pre days and post day.

Register today | Note: Use the MSCMTY discount code to save $100 USD.

In addition to our main sessions and content, expect a lot of community time and networking with executives and product makers in the Expo Hall – Microsoft will have a booth with a stage for lightning talks, meet and greets throughout the week, day and evening activities – including the main attendee party at Universal Islands of Adventure, plus a variety of roundtable discussion with our researchers and product team members to listen and help share future product/feature direction.

We asked three Microsoft technology and event experts, @Sharon Weaver, @Sean Bugler, and Derek Cash Peterson — to share their in-person tips and tricks so you can best prepare to have an awesome and optimal Microsoft 365 Community Conference experience: 

Join in! The Microsoft 365 Community Conference in Orlando, FL | April 30 – May 2, 2024 | aka.ms/M365Conf24 – Sponsored by Microsoft.

• What: Microsoft 365 Community Conference 2024




• Register today | Note: Use the MSCMTY discount code to save $100 USD.




• Content: 1 Microsoft keynote + 1 AMA || 150+ overall sessions – 88 Microsoft-led sessions (see all below in product-area buckets) | 18 full-day workshops (pre-day and post) – 4 supported by Microsoft




• Microsoft is sending over 175+ product makers to present and engage.


• Review all sessions, workshops, and speakers.




• When & where: April 30 – May 2nd, 2024 




• In-person: Orlando, Florida – Swan & Dolphin Resort – Disneyworld


• Workshops: April 28, 29, and May 3, 2024




• Twitter & hashtag: @M365CONF | #M365Con


• Cost: $1,899 – full conference (Includes 3 continental breakfasts, 3 lunches, a T-shirt, and backpack. Additional costs for full-day workshops.)

Thank you, Mark Kashman, Senior product manager – Microsoft

Join in: The Microsoft 365 Community Conference in Orlando, FL | April 30 – May 2, 2024 | aka.ms/M365Conf24 – Sponsored by Microsoft.

Join in: The Microsoft 365 Community Conference in Orlando, FL | April 30 – May 2, 2024 | aka.ms/M365Conf24 – Sponsored by Microsoft.

Join in: The Microsoft 365 Community Conference in Orlando, FL | April 30 – May 2, 2024 | aka.ms/M365Conf24 – Sponsored by Microsoft.

Is Azure the right place to run Red Hat Enterprise Linux workloads?

by Contributed | Apr 9, 2024 | Technology

This article is contributed. See the original author and article here.

Ensure peak performance, security and compatibility with Azure for Red Hat Enterprise Linux. Leverage Azure Migrate to transition on-prem Linux VMs to Azure, for cloud-native or hybrid deployment. Deploy and orchestrate infrastructure with Azure Resource Manager templates, Terraform, and Ansible playbooks. Uncover cost-saving opportunities and performance optimization tools, and benefit from license portability, commitment-based discounts, and diverse compute options, including Azure Confidential Computing VMs, for enhanced scalability and efficiency. Experience flexibility with Azure, enabling RHEL workloads to run across global regions and edge locations, with Azure Arc providing centralized management and security for hybrid environments.

Join Azure expert, Matt McSpirit, as he shares why Azure is the right place to run your Red Hat Enterprise Linux workloads.

Transition on-prem Linux VMs to Azure

Leverage Azure Migrate for cloud-native or hybrid deployment. Check out Azure’s seamless integration for your Red Hat Enterprise Linux workloads.

Optimize spend with RHEL workloads on Azure.

Take advantage of the latest cloud tech, license portability, and commitment-based discounts. Click to watch.

Azure provides flexibility for RHEL workloads.

Deploy RHEL workloads across global regions, edge locations, and hybrid environments ensuring consistency and integration with other Azure services. See it here.

Watch our video here: