Tag: Hyper-V

Nov082022November 8, 2022November 8, 20220 Commentby Thomas Maurer

Manage Azure Arc-enabled Azure Stack HCI with Azure Arc

Manage Azure Arc-enabled Azure Stack HCI from Azure

Posted in Microsoft Azure, Virtualization

In this blog post we are going to have a quick look on how you can manage Azure Arc-enabled Azure Stack HCI (Hyper-Converged Infrastructure) directly from Microsoft Azure using the Azure Arc integration. As part of the Azure Arc-enabled infrastructure, Azure Stack HCI can be managed directly from the Azure control plane.

Azure Arc-enabled Azure Stack HCI provides you with unified resource management and a flexible cloud-connected architecture. Which means you can always stay up to date with the latest Azure security, performance, and capabilities with Azure Arc–enabled Azure Stack HCI. Discover, monitor, and manage the Azure Stack HCI hosts as well as the virtual machines (VMs) and containers running on them from within the Azure portal or the Azure Resource Manager (ARM) APIs.

Azure Arc-enabled Infrastructure with Azure Stack HCI

After you have deployed and registered Azure Stack HCI with Azure Arc, you can now see the resource in the Azure portal. From here you can leverage different Azure management tools and hybrid cloud services.

Monitor Azure Stack HCI with Azure Monitor

You can now monitor your Azure Stack HCI clusters directly from Azure using Azure monitor. This also provides a great overview if you manage multiple Azure Stack HCI clusters.

Enable Azure Hybrid benefits for Azure Stack HCI

You can easily enable the Azure Hybrid benefits for your Azure Stack HCI cluster and other features directly from the Azure portal.

Enable Azure Hybrid benefits on Azure Stack HCI

Deploy virtual machines (VMs) using the Azure Arc resource bridge

With the Azure Arc resource bridge integration, you can easily deploy new virtual machines on your Azure Stack HCI clusters running on-premises or at the edge.

Create VM on Azure Stack HCI using the Azure Portal

You can use your own images stored locally, on a central Azure storage account, or even use Azure marketplace images.

Manage VM images on Azure Stack HCI with Azure Marketplace

Use Windows Admin Center in the Azure Portal

If you need some more granular management, you can also use Windows Admin Center directly from the Azure portal. No VPN needed; the connection works securely over the integrated Azure Arc agent.

And more

I hope this blog and the video provided you with an overview on how you can manage your Azure Arc-enabled Azure Stack HCI cluster directly from Azure. This only converted some of the features, there is more than just that.

If you have any questions, feel free to comment below.

Nov022022November 2, 2022November 2, 20220 Commentby Thomas Maurer

Speaking at the Windows Server Summit 2022

Posted in Microsoft Azure, Speaking, Thomas Maurer, Windows Server

I am happy to let you know that I will be speaking at the Windows Server Summit 2022 and show you how you can run the Azure Kubernetes Service (AKS) Hybrid deployment options on Windows Server and Azure Stack HCI, as well as manage it through Azure Arc. But there is more to learn here, and we have some great speakers, such as Roanne Sones, Bernardo Caldas, and many more, showing you all the best about Windows Server.

Join us on: Tuesday, December 6, 2022 9:00 AM–10:30 AM Pacific Time and register right here.

Make sure you check out the latest about the Azure Hybrid Benefit for Windows Server customers.

Learn how to open up new opportunities for your org to innovate and operate more efficiently—while also improving security—at the Windows Server Summit. Join your peers and Microsoft experts for sessions and demos on the latest Windows Server 2022 and Azure capabilities.

You’ll gain practical skills and insights on how to:

Fortify your security with improved multilayer protection.
Easily manage and integrate your on-premises servers to Azure with Automanage and Windows Admin Center.
More efficiently secure and manage hybrid or multi-cloud environments.
Run apps seamlessly across on-premises datacenters and the cloud with Azure Arc.
Make the most of the management capabilities in System Center 2022.

And you’ll be able to ask the experts about your own use cases during the live Q&A.

I hope to see you live on the Windows Server Summit 2022!

Oct172022October 17, 2022October 17, 20220 Commentby Thomas Maurer

PowerShell Unplugged 2022 Edition

Posted in Microsoft, PowerShell

April Edwards and I had the chance to host the PowerShell Unplugged 2022 Edition and the video is now available on YouTube! In the PowerShell Unplugged 2022 Edition we talked to the PowerShell product group at Microsoft to learn more about PowerShell 7, secret management, PowerShell Crescendo, Remoting, Predictive IntelliSense, VS Code, the roadmap, and the future of PowerShell!

PowerShell Unplugged 2022 Timestamps

The timestamps for the video:

0:00 – Video Intro
03:29 – Secret Management in PowerShell
07:10 – Installing PowerShell 7
09:20 – Installing the SecretManagement Module
31:08 – PowerShell Crescendo
1:03:47 – PowerShell Team Blog
1:08:50 – Remoting with PowerShell
1:36:05 – Shell of an Idea
1:36:12 – Predictive IntelliSense with PowerShell
1:52:05 – Using VSCode with PowerShell
1:57:16 – PowerShell 7 Roadmap

Links

Some useful links:

I hope you liked the PowerShell Unplugged 2022 Edition, let me know what you think!

Jul182022July 18, 2022July 18, 20220 Commentby Thomas Maurer

Speaking at TechMentor 2022 Redmond

Posted in Events, Microsoft, Microsoft Azure, Speaking, Thomas Maurer

TechMentor returns to Microsoft Headquarters in Redmond, Washington in 2022 for more in-depth, behind the scenes IT Pro training by technical experts and Microsoft insiders. I am happy to announce that I will be one of the speakers at the TechMentor 2022 conference at the Microsoft HQ in Redmond. Since I am already on the Microsoft campus it is great to take some time to speak about some cool Azure Hybrid, Windows Server and Azure Management things. TechMentor 2022 is a 5-day conference from August 8-12, 2022 at the Microsoft Headquarters in Redmond.

About TechMentor

Technology continues to advance faster than ever. As an IT Professional, it is your responsibility to stay up-to-date on all the latest tools, topics, and trends. Let the experts at TechMentor help you on your tech odyssey to improve your tech skills and achieve your learning goals.

TechMentor 2022 Redmond Featured Speakers

My sessions at TechMentor 2022

I will be delivering two sessions about Cloud Shell and Azure Hybrid with Azure Arc and Azure Stack, as well as being part of a panel discussion.

TW04 Azure Arc Overview – Learn About Hybrid and Multicloud Management with Azure

For customers who want to simplify complex and distributed environments across on-premises, edge and multi-cloud, Azure Arc enables deployment of Azure services anywhere and extends Azure management to any infrastructure. In this session, Thomas Maurer will demonstrate the new Azure Arc capabilities for your Hybrid environment. This session includes an overview of the different features such as:

Multi and Hybrid Cloud Governance
Using Azure as a Control plane for Linux, Windows Server, Kubernetes cluster, SQL DBs
Deploy Azure services such as Logic Apps, Web Apps, Azure SQL, and many more anywhere

You will learn:

About hybrid and multicloud Management
About Azure Arc
How to use Azure management and deploy Azure services anywhere

TW15 Mastering Azure Using Cloud Shell, PowerShell and Bash!

Azure can be managed in many different ways. Learn your command line options like Azure PowerShell, Azure CLI, and Cloud Shell to be more efficient in managing your Azure infrastructure. Become a hero on the shell to manage the cloud!

You will learn:

About Cloud Shell, Azure CLI and Azure PowerShell
Some awesome management tricks
About how to manage your Azure systems using these tools!

TT09 Panel Discussion: The Future of Windows

Join our esteemed panelists as they discuss questions regarding the future of Windows. Will there be continued versions of LTSC editions available on-prem. Is Hybrid here to stay. Or should we just pack up our datacenters and move everything to the cloud. Find out great answers like this with our engaging moderators and panelists in this session.

Join us!

Want to experience IT training at the mothership? Join TechMentor this August as it heads to Microsoft Headquarters for a full week of training, featuring our NEW full-day Hands-On Labs. I hope to see you there!

Jun072022June 7, 2022June 7, 20222 Commentsby Thomas Maurer

Set up a single-node AKS cluster on Windows Server on-premises

Posted in Microsoft Azure, Windows Server

In this blog post we are going to have a look at how you can deploy a single-node Azure Kubernetes Service (AKS) cluster on Windows Server running on-premises in your hybrid cloud environment and connect it with Azure Arc.

Many customers want to modernize their application landscape and are using managed Kubernetes services from cloud providers such as the Azure Kubernetes Service (AKS) on Microsoft Azure. Many of these organizations also require running Kubernetes on-premises in their hybrid cloud and edge environment. With Microsofts offering you can deploy the Azure Kubernetes Service (AKS) on-premises on Windows Server, Azure Stack HCI or Azure Stack Hub.

If you want to run AKS on-premises in product obviously you will need to deploy a Windows Server Hyper-V, Azure Stack HCI, or Azure Stack Hub cluster, however, if you just want to evaluate AKS or run it in a development environment, you can also run it on a single-node Windows Server with Hyper-V.

Prerequisites

If you want to run a single-node AKS on a Windows Server, there are a couple of prerequisites.

An Azure subscription to register the AKS cluster
32 GB of memory or more depending on the workloads
Minimum of 500GB direct attached storage (Data drive)
Networking
- One Network Adapter
- Verify that you have disabled IPv6 on all network adapters.
- Must have external internet connectivity.
- Make sure all subnets you define for the cluster are routable amongst each other and to the internet.
- Make sure that there’s network connectivity between the Windows Server host and the tenant VMs.
- DNS name resolution is required for all nodes to be able to communicate with each other.
- (Recommended) Enable dynamic DNS updates in your DNS environment to allow AKS on Azure Stack HCI and Windows Server to register the cloud agent generic cluster name in the DNS system for discovery. If dynamic DNS isn’t an option, use the steps prescribed in ‘Set-AksHciConfig’.

To learn more about the AKS on Azure Stack HCI or Windows Server prerequisites, check out Microsoft Docs.

Set up an Azure Kubernetes Service host Windows Server and deploy a workload cluster using PowerShell

Now before we get started, I want to mention that you can also set up the AKS on Windows Server cluster using Windows Admin Center, you can find more here on Microsoft Docs. However, I prefer the PowerShell way.

Set up Azure Kubernetes Service AKS on Windows Server

Windows Admin Center provides a super straight forward wizard to install AKS on Windows Server or Azure Stack HCI.

Set up Hyper-V

First set up Hyper-V on your Windows Server and create a virtual switch.

# Install the Hyper-V Role
Install-WindowsFeature  "Hyper-V" -IncludeAllSubFeature -IncludeManagementTools -Restart
# After the reboot create the virtual Switch
New-VMSwitch -Name VirtualSwitch -NetAdapterName Ethernet -AllowManagementOS $true
# Set Default Storage Path
Set-VMHost -VirtualHardDiskPath "E:\VMs" -VirtualMachinePath "E:\VMs"
# Disable IPv6 on all network adapters
Disable-NetAdapterBinding -Name "*" -ComponentID ms_tcpip6

Install the AksHci PowerShell module

If you have not installed the AksHci PowerShell module, run the following commands to install the modules. You must close all existing PowerShell windows and open a fresh administrative session to install the pre-requisite PowerShell packages and modules.

# Prepare PowerShell
Install-PackageProvider -Name NuGet -Force 
Install-Module -Name PowershellGet -Force -Confirm:$false -SkipPublisherCheck
# Install PowerShell modules
Install-Module -Name Az.Accounts -Repository PSGallery -RequiredVersion 2.2.4
Install-Module -Name Az.Resources -Repository PSGallery -RequiredVersion 3.2.0
Install-Module -Name AzureAD -Repository PSGallery -RequiredVersion 2.0.2.128
Install-Module -Name AksHci -Repository PSGallery
# Import PowerShell modules
Import-Module Az.Accounts
Import-Module Az.Resources
Import-Module AzureAD
Import-Module AksHci
# Validate your installation
Get-Command -Module AksHci

Register the resource provider to your Azure subscription and login to Azure

Before the registration process, you need to enable the appropriate resource provider in Azure for AKS on Azure Stack HCI and Windows Server registration. To do that, run the following PowerShell commands.

# Login
Connect-AzAccount -Tenant <tenantId> -DeviceCode
Set-AzContext -Subscription "xxxx-xxxx-xxxx-xxxx"
# Register Resource Providers
Register-AzResourceProvider -ProviderNamespace Microsoft.Kubernetes
Register-AzResourceProvider -ProviderNamespace Microsoft.KubernetesConfiguration

To validate the registration process, run the following PowerShell command:

# Verify
Get-AzResourceProvider -ProviderNamespace Microsoft.Kubernetes
Get-AzResourceProvider -ProviderNamespace Microsoft.KubernetesConfiguration

Prepare your machine for deployment

Run checks on every physical node to see if all the requirements are satisfied to install AKS on Azure Stack HCI and Windows Server. Open PowerShell as an administrator and run the following Initialize-AksHciNode command.

Initialize-AksHciNode

Create a virtual network using the virtual switch earlier. If you don’t remember the name, use the Get-VMSwitch command to find the virtual switch.

To create a virtual network for the nodes in your deployment to use, create an environment variable with the New-AksHciNetworkSetting PowerShell command. This will be used later to configure a deployment that uses static IP.

#Set up vNet with static IP
$vnet = New-AksHciNetworkSetting -name myvnet -vSwitchName "VirtualSwitch" -k8sNodeIpPoolStart "172.21.21.21" -k8sNodeIpPoolEnd "172.21.21.49" -vipPoolStart "172.21.21.51" -vipPoolEnd "172.21.21.120" -ipAddressPrefix "172.21.21.0/24" -gateway "172.21.21.1" -dnsServers "172.21.21.11"

To create the configuration settings for the AKS host, use the Set-AksHciConfig command. You must specify the imageDir, workingDir, and cloudConfigLocation parameters. If you want to reset your configuration details, run the command again with new parameters.

Set-AksHciConfig -imageDir E:\Images -workingDir E:\ImageStore -cloudConfigLocation E:\Config -vnet $vnet -cloudservicecidr "172.21.21.121/24"

Run the following Set-AksHciRegistration PowerShell command with your subscription and resource group name to log into Azure. You must have an Azure subscription, and an existing Azure resource group in the Australia East, East US, Southeast Asia, or West Europe Azure regions to proceed.

Set-AksHciRegistration -subscriptionId "<subscriptionId>" -resourceGroupName "<resourceGroupName>" -TenantId "<tenantId>" -UseDeviceAuthentication

Create AKS Configuration and Registration in Azure

After you’ve configured your deployment, you must start it to install the AKS on Azure Stack HCI and Windows Server agents/services and the AKS host. To begin deployment, run the following commands:

# More detail
$VerbosePreference = "Continue"
# Install AKS on Windows Server
Install-AksHci

Installation Azure Kubernetes Service AKS on Windows Server with PowerShell

This will also download the necessary images for the Azure Kubernetes Service (AKS) cluster.

Manage your AKS on Windows Server deployment

You can now manage your AKS on Windows Server deployment using PowerShell or Windows Admin Center.

Azure Kubernetes Service Runtime on Windows Server with Windows Admin Center

You can also see the deploy virtual machines for the AKS services and the future Kubernetes clusters you create in Hyper-V Manager

If you need to update your Azure Kubernetes Cluster (AKS) on Azure Stack HCI or Windows Server, you can simply open the host settings.

Update AKS on Azure Stack HCI and Windows Server

Create a Kubernetes Cluster

After installing your AKS host, you are ready to deploy a Kubernetes cluster. To create a new Kubernetes cluster on AKS on Windows Server, you can use PowerShell or Windows Admin Center.

PowerShell

Open PowerShell as an administrator and run the following New-AksHciCluster command. This command will create a new Kubernetes cluster with one Linux node pool named linuxnodepool with a node count of 2. To read more information about node pools, visit Use node pools in AKS on Azure Stack HCI and Windows Server.

New-AksHciCluster -name mycluster -nodePoolName linuxnodepool -nodeCount 2 -osType Linux

Windows Admin Center

Or use the web-based UI from Windows Admin Center following the wizard.

Connect your cluster to Azure Arc enabled Kubernetes

Connect your cluster to Arc enabled Kubernetes by running the Enable-AksHciArcConnection command. The command below connects your AKS on Windows Server cluster to Azure Arc.

Connect-AzAccount -Tenant <tenantId> -DeviceCode
Enable-AksHciArcConnection -name mycluster

Now you can view and manage your AKS on Windows Server running on-premises directly from the Azure portal using Azure Arc. This allows you to enable monitoring, use Microsoft Defender for Kubernetes, Azure Policy, configure GitOps, leverage role-based access control (RBAC), and much more.

Manage your AKS on Windows Server cluster from the Azure Portal using Azure Arc

Manage your Hybrid AKS Kubernetes Cluster on Windows Server

Access your cluster using kubectl

To access your Kubernetes clusters using kubectl, run the Get-AksHciCredential PowerShell command. This will use the specified cluster’s kubeconfig file as the default kubeconfig file for kubectl. You can also use kubectl to deploy applications using Helm.

If you haven’t installed kubectl on your Windows machine, you can simply do that using the following commands:

mkdir C:\kube
Start-BitsTransfer -Source "https://dl.k8s.io/release/v1.24.0/bin/windows/amd64/kubectl.exe" -Destination "C:\kube"
$Env:PATH += ";C:\kube"

Get-AksHciCredential -name mycluster

Access your AKS on Windows Server Kubernetes cluster using kubectl

Monitoring with Azure Monitor using Azure Arc

Once your AKS cluster running on-premises is connected to Azure Arc you can enable Azure Monitor for containers. This is straight forwarded, just click on Insights, and enable Azure Monitor.

Enable Monitoring for Azure Arc enabled Kubernetes cluster

After enabling monitoring, you can review information about the AKS cluster on Windows Server directly in Azure Monitor, and you can also set up alerting.

Azure Monitor AKS on Windows Server and Azure Stack HCI using Azure Arc

By enabling Azure Monitor you can also access the logs.

Get Kubernetes Logs using Azure Arc and Log Analytics

Scale a Kubernetes Cluster

If you need to scale your cluster up or down, you can change the number of control plane nodes using the Set-AksHciCluster command, and you can change the number of Linux or Windows worker nodes in your node pool using the Set-AksHciNodePool command.

To scale control plane nodes, run the following command.

Set-AksHciCluster -name mycluster -controlPlaneNodeCount 3

To scale the AKS worker nodes in your node pool, run the following command.

Set-AksHciNodePool -clusterName mycluster -name linuxnodepool -count 3

You can also use vertical node scaling in AKS on Windows Server & Azure Stack HCI to change the size of the virtual machines in each node pool to increase the resources available to your node pool.

# Show available VM sizes
Get-AksHciVmSize
# Set new VM size for the nodepool
Set-AksHciNodePool -ClusterName mycluster -name mycluster-linux -vmsize Standard_A4_v2

Security and GitOps for your Kubernetes cluster using Azure Arc

By connecting your Kubernetes cluster to Azure using Azure Arc, you can enable Microsoft Defender for Containers and Azure Policy to make sure your cluster is secure and compliant.

GitOps on Azure Arc-enabled Kubernetes or Azure Kubernetes Service uses Flux, a popular open-source tool set. Flux provides support for common file sources (Git and Helm repositories, Buckets) and template types (YAML, Helm, and Kustomize). Flux also supports multi-tenancy and deployment dependency management, among other features.

Run Azure services on-premises using Azure Arc

By deploying the Azure Kubernetes Service (AKS) on-premises and Azure Arc enabling it, you can also start running Azure services such as Azure Arc-enabled data services with SQL MI or Azure Arc-enabled application services on top of your Kubernetes cluster.

End to End Azure Hybrid withAzure Stack HCI AKS and Azure Arc — End to End Azure Hybrid with Azure Stack HCI AKS and Azure Arc

Conclusion

Setting up the Azure Kubernetes Service on Windows Server or Azure Stack HCI is super straightforward. You can easily set it up using the wizard in Windows Admin Center or PowerShell. And with the additional management capabilities with PowerShell, CLI, Windows Admin Center, Azure Arc, administration, and deployment of apps is super easy.

Mar312022March 31, 2022April 26, 20222 Commentsby Thomas Maurer

Microsoft Azure Edge Platform Customer and Partner Engineering - Azure Hybrid

Joining Azure CPE in Edge + Platform (Hybrid)

Posted in Microsoft, Thomas Maurer

Today, I am excited to announce that I am joining the Microsoft Azure Customer + Partner Engineering (CPE) team in Cloud + AI as a Senior Program Manager and Chief Evangelist Azure Hybrid working on Azure Hybrid (Azure.com/Hybrid).

Azure CPE in Edge + Platform (Hybrid)

The Azure CPE team drives adoption of the Azure edge + platform (hybrid) and provides an engineering-focused effort designed to improving the customer experience while improving service quality and credibility through customer success engagements, a rich partner engineering ecosystem, and enabling the technical field. I will be engaging with the community and customers around the world to share my knowledge and collect feedback to improve the Azure hybrid cloud and edge platform.

This means I will continue my work in helping customers with their hybrid and multi-cloud environments using Azure Arc, the Azure Stack portfolio, and many of our other hybrid cloud solutions.

Thank you

With that I want to give a big thank you to the Cloud Advocacy team, especially Rick Claus and the Modern Hybrid Infra team. In the past three years I had the chance to work with great minds, work on challenging projects, learn a lot, and have a lot of fun! I will definitely miss the team, but since I am not going far away, I am sure we will be collaborating a lot in the future.

Microsoft AzOps Team - Cloud Advocates - Modern Hybrid Infra — Microsoft AzOps Team – Cloud Advocates – Modern Hybrid Infra

I also want to thank the Azure CPE team and especially Duane Bourgeois for giving me the opportunity to join Azure Edge + Platform.

What’s next?

Azure CPE is a global team, with team members located in Redmond (USA), and many of us working remotely worldwide. I am looking forward to connecting with my team and plan the next steps.

I am excited to start on April 1st, 2022, and I am sure I will have a lot more to share and write in the future. Stay tuned and Azure on.

Mar172022March 17, 2022March 17, 20220 Commentby Thomas Maurer

AZ-801 Exam Study Guide Configuring Windows Server Hybrid Advanced Services

Posted in Certification, Microsoft, Microsoft Azure, Windows Server

Microsoft just released two new exams for Windows Server Hybrid Administrators. With the exams AZ-800 Administering Windows Server Hybrid Core Infrastructure and AZ-801 Configuring Windows Server Hybrid Advanced Services you can gain the Microsoft Certified: Windows Server Hybrid Administrator Associate certification. In this blog post I want to share my AZ-801 Configuring Windows Server Hybrid Advanced Services Certification Exam Study Guide with you. To learn and prepare for the exam, I usually use a couple of online resources, mainly Microsoft Docs and Microsoft Learn, which I am going to share with you. You can find more information about how I prepare for a Microsoft Certification exam on my blog post: How to prepare and pass Microsoft Certification Exam.

AZ-800 and AZ-801 Exams Microsoft Certified Windows Server Hybrid Administrator Associate Certification Study Guide

Also, check out other Microsoft Azure Certification Exam Study Guides:

Here is my AZ-801 Configuring Windows Server Hybrid Advanced Services Certification Exam Study Guide

It is essential to get familiar with the exam objectives and skills measured first. That is why I recommend reading the description of the exam and the skills measured.

Exam AZ-801: Configuring Windows Server Hybrid Advanced Services
Candidates for this exam configure advanced Windows Server services using on-premises, hybrid, and cloud technologies. These professionals should have expertise in implementing and managing on-premises and hybrid solutions, including performing tasks related to security, migration, monitoring, high availability, troubleshooting, and disaster recovery. They use administrative tools and technologies, such as Windows Admin Center, PowerShell, Azure Arc, Azure Automation Update Management, Microsoft Defender for Identity, Azure Security Center, Azure Migrate, and Azure Monitor.
A candidate for this exam should have extensive experience working with Windows Server operating systems.
Microsoft Docs

The high-level view of the skills measured in the exam:

Secure Windows Server on-premises and hybrid infrastructures (25-30%)
Implement and manage Windows Server high availability (10-15%)
Implement disaster recovery (10-15%)
Migrate servers and workloads (20-25%)
Monitor and troubleshoot Windows Server environments (20-25%)

Microsoft Certified: Windows Server Hybrid Administrator Associate certification

By passing the AZ-800 and AZ-801 exam, you will gain the Microsoft Certified: Windows Server Hybrid Administrator Associate certification.

Microsoft Certified: Windows Server Hybrid Administrator Associate Certification
Responsibilities for this role include integrating Windows Server environments with Azure services and managing Windows Server in on-premises networks. This role manages and maintains Windows Server IaaS workloads in Azure, in addition to migrating and deploying workloads to Azure.
Candidates for this certification administer core and advanced Windows Server workloads and services using on-premises, hybrid, and cloud technologies. These professionals should have expertise in implementing and managing on-premises and hybrid solutions, such as identity, management, compute, networking, and storage. They are also experts at performing tasks related to security, migration, monitoring, high availability, troubleshooting, and disaster recovery. These professionals use administrative tools and technologies, including Windows Admin Center, PowerShell, Azure Arc, and IaaS virtual machine administration. They also work with Azure Automation Update Management, Microsoft Defender for Identity, Azure Security Center, Azure Migrate, and Azure Monitor.
A candidate for this certification should have extensive experience working with Windows Server operating systems.
Microsoft Docs

You can learn more on the certification website.

Free Online Microsoft Learn AZ-801 Exam Study Guide resources

Microsoft Learn provides you with free online training and learning paths for different Microsoft technologies. They not just offer reading material, but also control questions and free online labs. Here are some relevant Microsoft Learn modules and learning paths for the AZ-801 Configuring Windows Server Hybrid Advanced Services Certification Exam. Microsoft Learn is an important part of my AZ-801 exam study guide.

Microsoft Docs AZ-801 Study Guide resources

One thing I always used to prepare for my Microsoft exams is Microsoft Docs. Here are the relevant Microsoft Docs which I used to prepare and study for the AZ-801 exam. If you want to get some hands-on experience, I also recommend checking out my Windows Server and Azure Arc Lab Kit.

Secure Windows Server On-premises and Hybrid Infrastructures (25-30%)

Secure Windows Server operating system

configure and manage exploit protection
- Turn on exploit protection to help mitigate against attacks
configure and manage Windows Defender Application Control
- How to manage Windows Defender Application Control – Configuration Manager
configure and manage Windows Defender for Endpoint
- Microsoft Defender for Endpoint – Configuration Manager
configure and manage Windows Defender Credential Guard
- Manage Windows Defender Credential Guard (Windows) – Windows security
configure SmartScreen
- Microsoft Defender SmartScreen overview (Windows) – Windows security
implement operating system security by using Group Policies
- Security baselines guide – Windows security

Secure a hybrid Active Directory (AD) infrastructure

configure password policies
- Best Practices for Securing Active Directory
enable password block lists
- Configure custom Azure Active Directory password protection lists
manage protected users
- Appendix C – Protected Accounts and Groups in Active Directory
manage account security on a Read-Only Domain Controller (RODC)
- Read-Only Domain Controllers (RODC) Step-by-Step Guide
harden domain controllers
- Securing Domain Controllers Against Attack
configure authentication policies silos
- Guidance about how to configure protected accounts
restrict access to domain controllers
- Appendix H – Securing Local Administrator Accounts and Groups
configure account security
- Best Practices for Securing Active Directory
manage AD built-in administrative groups
- Appendix B – Privileged Accounts and Groups in Active Directory
manage AD delegation
- Kerberos Constrained Delegation Overview
- Enable computer and user accounts to be trusted for delegation
implement and manage Microsoft Defender for Identity
- What is Microsoft Defender for Identity?

Identify and remediate Windows Server security issues by using Azure services

monitor on-premises servers and Azure IaaS virtual machines (VMs) by using Azure Sentinel
- Find your Microsoft Sentinel data connector
identify and remediate security issues on-premises servers and Azure IaaS VMs by using Azure Security Center
- Microsoft Defender for servers – the benefits and features

Secure Windows Server networking

manage Windows Defender Firewall
- Best practices for configuring Windows Defender Firewall – Windows security
implement domain isolation
- Restrict Server Access to Members of a Group Only (Windows) – Windows security
implement connection security rules
- Create an Authentication Request Rule (Windows) – Windows security

Secure Windows Server storage

manage Windows BitLocker Drive Encryption (BitLocker)
- BitLocker Frequently Asked Questions (FAQ)
manage and recover encrypted volumes
- BitLocker Recovery Guide
enable storage encryption by using Azure Disk Encryption
- Data encryption models in Microsoft Azure
manage disk encryption keys for IaaS virtual machines
- Azure Disk Encryption for virtual machines and virtual machine scale sets

Implement and Manage Windows Server High Availability (10-15%)

Implement a Windows Server failover cluster

implement a failover cluster on-premises, hybrid, or cloud-only
- Share an Azure managed disk across VMs – Azure Virtual Machines
- Deploy VMs in an availability set using Azure PowerShell – Azure Virtual Machines
create a Windows failover cluster
- Create a failover cluster
stretch cluster across datacenter or Azure regions
- Stretch Cluster Replication Using Shared Storage
- Cluster to Cluster Storage Replica cross region in Azure
configure storage for failover clustering
- Failover clustering hardware requirements and storage options
- Failover Clustering Hardware Requirements and Storage Options
modify quorum options
- Configure and manage the quorum in a failover cluster
configure network adapters for failover clustering
- Network Interface on a Clustered Node
configure cluster workload options
- Failover Clustering
- Clustered Services and Applications
configure cluster sets
- Deploy a cluster set – Azure Stack HCI
configure Scale-Out File Servers
- Scale-Out File Server for application data overview
create an Azure witness
- Deploy a cloud witness for a Failover Cluster
configure a floating IP address for the cluster
- Clustering information on IP address failover – Windows Server
implement load balancing for the failover cluster
- Virtual machine load balancing – Azure Stack HCI

Manage failover clustering

implement cluster-aware updating
- Cluster-Aware Updating overview
recover a failed cluster node
- High Availability overview – Windows Server
upgrade a node to Windows Server 2022
- Cluster Operating System Rolling Upgrade
failover workloads between nodes
- Failover Clustering
install Windows updates on cluster nodes
- Cluster-Aware Updating advanced options and updating run profiles
manage failover clusters using Windows Admin Center
- Manage Failover Clusters with Windows Admin Center

Implement and manage Storage Spaces Direct

create a failover cluster using Storage Spaces Direct
- Storage Spaces Direct overview
upgrade a Storage Spaces Direct node
- Upgrade a Storage Spaces Direct cluster to Windows Server 2019
implement networking for Storage Spaces Direct
- Deploy Storage Spaces Direct on Windows Server
configure Storage Spaces Direct
- Deploy Storage Spaces Direct on Windows Server

Implement Disaster Recovery (10-15%)

Manage backup and recovery for Windows Server

back up and restore files and folders to Azure Recovery Services vault
- Back up Windows machines by using the MARS agent – Azure Backup
- Restore files to Windows Server using the MARS Agent – Azure Backup
install and manage Azure Backup Server
- What’s new in Microsoft Azure Backup Server – Azure Backup
- Use Azure Backup Server to back up workloads – Azure Backup
back up and recover using Azure Backup Server
- Back up Azure VMs in a Recovery Services vault – Azure Backup
manage backups in Azure Recovery Services vault
- Azure Instant Restore Capability – Azure Backup
create a backup policy
- Create backup policies using REST API – Azure Backup
configure backup for Azure Virtual Machines using the built-in backup agent
- Use PowerShell to back up Windows Server to Azure – Azure Backup
recover a VM using temporary snapshots
- Backup and disaster recovery for managed disks on Azure VMs – Azure Virtual Machines
recover VMs to new Azure Virtual Machines
- Restore VMs by using the Azure portal – Azure Backup
restore a VM
- Restore VMs by using the Azure portal – Azure Backup

Implement disaster recovery by using Azure Site Recovery

configure Azure Site Recovery networking
- Manage network adapters for on-premises disaster recovery with Azure Site Recovery – Azure Site Recovery
configure Site Recovery for on-premises VMs
- Azure Site Recovery ThomasMaurer.ch Blog
- About Hyper-V (with VMM) network mapping with Site Recovery – Azure Site Recovery
configure a recovery plan
- Create/customize recovery plans in Azure Site Recovery – Azure Site Recovery
configure Site Recovery for Azure Virtual Machines
- About networking in Azure VM disaster recovery with Azure Site Recovery – Azure Site Recovery
implement VM replication to secondary datacenter or Azure region
- Enable Zone to Zone Disaster Recovery for Azure Virtual Machines – Azure Site Recovery
configure Azure Site Recovery policies
- Enable Azure Site Recovery for your VMs by using Azure Policy – Azure Site Recovery

Protect virtual machines by using Hyper-V replicas

configure Hyper-V hosts for replication
- Hyper-V Replica ThomasMaurer.ch Blog
- Set up Hyper-V Replica
manage Hyper-V replica servers
- Hyper-V Replica ThomasMaurer.ch Blog
- Set up Hyper-V Replica
configure VM replication
- Hyper-V Replica ThomasMaurer.ch Blog
- Set up Hyper-V Replica
perform a failover
- Hyper-V Replica ThomasMaurer.ch Blog
- Demonstrate replication and planned failover

Migrate Servers and Workloads (20-25%)

Migrate on-premises storage to on-premises servers or Azure

transfer data and share
- Storage Migration Service overview
- How cutover works in Storage Migration Service
cut over to a new server by using Storage Migration Service
- Storage Migration Service overview
use Storage Migration Service to migrate to Azure Virtual Machines
- Storage Migration Service overview
migrate to Azure file shares
- Migrate to Azure file shares

Migrate on-premises servers to Azure

deploy and configure Azure Migrate appliance
- Disaster Recovery using Azure Site Recovery – Thomas Maurer
- Set up an Azure Migrate appliance with a script – Azure Migrate
migrate VM workloads to Azure IaaS
- Disaster Recovery using Azure Site Recovery – Thomas Maurer
- Migrate Hyper-V VMs to Azure with Azure Migrate Server Migration – Azure Migrate
migrate physical workloads to Azure IaaS
- Set up an Azure Migrate appliance for physical servers – Azure Migrate
migrate by using Azure Migrate
- Add migration tools in Azure Migrate – Azure Migrate

Migrate workloads from previous versions to Windows Server 2022

migrate Internet Information Services (IIS)
- Migrate a Web Site from IIS 6.0 to IIS 7 or above
migrate Hyper-V hosts
- Disaster Recovery using Azure Site Recovery – Thomas Maurer
- Hyper-V: Migration Options
migrate Remote Desktop Services (RDS) host servers
- Migrate Remote Desktop Services to Windows Server 2012 R2
migrate Dynamic Host Configuration Protocol (DHCP)
- Migrate DHCP Server to Windows Server 2012 R2
migrate print servers
- Migrate Print and Document Services to Windows Server 2012

Migrate IIS workloads to Azure

migrate IIS workloads to Azure Web Apps
- Migrate your .NET web app or service to Azure App Service
migrate IIS workloads to containers
- Containerize a .NET Core App

Migrate an AD DS infrastructure to Windows Server 2022 AD DS

migrate AD DS objects, including users, groups and Group Policies, using Active Directory Migration Tool
- Best Practices for Active Directory Migration
migrate to a new Active Directory forest
- Interforest Active Directory Domain Restructure
upgrade an existing forest
- Upgrade domain controllers to a newer version of Windows Server

Monitor and Troubleshoot Windows Server Environments (20-25%)

Monitor Windows Server by using Windows Server tools and Azure services

monitor Windows Server by using Performance Monitor
- Performance overview – Windows Server
create and configure Data Collector Sets
- Creating Data Collector Sets
- Get started with Setup and Boot Event Collection
monitor servers and configure alerts by using Windows Admin Center
- Monitor servers and configure alerts with Azure Monitor from Windows Admin Center
monitor by using System Insights
- System Insights overview
manage event logs
- Event Logs
deploy Log Analytics agents
- Install Log Analytics agent on Windows computers – Azure Monitor
collect performance counters to Azure
- Data Collection Rules in Azure Monitor – Azure Monitor
create alerts
- Create, view, and manage log alert rules Using Azure Monitor – Azure Monitor
monitor Azure Virtual Machines by using Azure diagnostics extension
- Azure Diagnostics extension overview – Azure Monitor
monitor Azure Virtual Machines performance by using VM insights
- What is VM insights? – Azure Monitor

Troubleshoot Windows Server on-premises and hybrid networking

troubleshoot hybrid network connectivity
- Microsoft Azure Virtual Network Troubleshooter package – Azure
troubleshoot on-premises connectivity
- Networking overview – Windows Server

Troubleshoot Windows Server virtual machines in Azure

troubleshoot deployment failures
- VM deployment issues
troubleshoot booting failures
- Troubleshoot boot errors in Azure Virtual Machines – Virtual Machines
troubleshoot VM performance issues
- Performance diagnostics for Azure virtual machines – Virtual Machines
troubleshoot VM extension issues
- Support for VM agent extensions in Microsoft Azure – Virtual Machines
troubleshoot disk encryption issues
- Enable Azure Disk Encryption for Windows VMs – Azure Virtual Machines
troubleshoot storage
- Azure Disk Storage overview – Azure Virtual Machines
troubleshoot VM connection issues
- Troubleshoot authentication errors when you use RDP to connect to Azure VM – Virtual Machines

Troubleshoot Active Directory

restore objects from AD recycle bin
- What’s New in Active Directory Domain Services (AD DS) in Windows Server 2008 R2: Active Directory Recycle Bin
recover Active Directory database using Directory Services Restore Mode
- Directory Services Restore Mode
recover SYSVOL
- Restoring and Rebuilding SYSVOL: Active Directory
troubleshoot Active Directory replication
- Troubleshooting Active Directory Replication Problems
troubleshoot hybrid authentication issues
- Azure AD Connect: Troubleshoot Pass-through Authentication
troubleshoot on-premises Active Directory
- Troubleshooting Domain Controller Deployment

Tips and Resources

I hope this AZ-801 Configuring Windows Server Hybrid Advanced Services for the Microsoft Certified: Windows Server Hybrid Administrator Associate Certification Exam Study Guide helps you pass the exam and get the Windows Server Hybrid Administrator certification. I also recommend that you open a free Azure account if you don’t have one yet. You can create your free Azure account here. Also, check out my blog posts about Microsoft Azure Certification:

I hope you enjoyed my AZ-801 Study Guide, and it helps you with exam prep. Did I miss any link, or do you have any recommended AZ-801 Windows Server Hybrid Administrator Certification Exam Study resources? Let me know in the comments.

Mar082022March 8, 2022March 17, 20220 Commentby Thomas Maurer

AZ-800 Exam Study Guide Administering Windows Server Hybrid Core Infrastructure

Posted in Certification, Microsoft, Microsoft Azure, Windows Server

Microsoft just released two new exams for Windows Server Hybrid Administrators. With the exams AZ-800 Administering Windows Server Hybrid Core Infrastructure and AZ-801 Configuring Windows Server Hybrid Advanced Services you can gain the Microsoft Certified: Windows Server Hybrid Administrator Associate certification. In this blog post I want to share my AZ-800 Administering Windows Server Hybrid Core Infrastructure Certification Exam Study Guide with you. To learn and prepare for the exam, I usually use a couple of online resources, mainly Microsoft Docs and Microsoft Learn, which I am going to share with you. You can find more information about how I prepare for a Microsoft Certification exam on my blog post: How to prepare and pass Microsoft Certification Exam.

Also, check out other Microsoft Azure Certification Exam Study Guides:

My AZ-800 Administering Windows Server Hybrid Core Infrastructure Certification Exam Study Guide

It is essential to get familiar with the exam objectives and skills measured first. That is why I recommend reading the description of the exam and the skills measured.

Exam AZ-800: Administering Windows Server Hybrid Core Infrastructure
Candidates for this exam administer core Windows Server workloads using on-premises, hybrid, and cloud technologies. These professionals should have expertise in implementing and managing on-premises and hybrid solutions, such as identity, management, compute, networking, and storage. They use administrative tools and technologies, such as Windows Admin Center, PowerShell, Azure Arc, and IaaS virtual machine administration.
A candidate for this exam should have extensive experience working with Windows Server operating systems.
Microsoft Docs

The high-level view of the skills measured in the exam:

Deploy and manage Active Directory Domain Services (AD DS) in on-premises and cloud environments (30-35%)
Manage Windows Servers and workloads in a hybrid environment (10-15%)
Manage virtual machines and containers (15-20%)
Implement and manage an on-premises and hybrid networking infrastructure (15-20%)
Manage storage and file services (15-20%)

Microsoft Certified: Windows Server Hybrid Administrator Associate certification

By passing the AZ-800 and AZ-801 exam, you will gain the Microsoft Certified: Windows Server Hybrid Administrator Associate certification.

Microsoft Certified: Windows Server Hybrid Administrator Associate Certification
Responsibilities for this role include integrating Windows Server environments with Azure services and managing Windows Server in on-premises networks. This role manages and maintains Windows Server IaaS workloads in Azure, in addition to migrating and deploying workloads to Azure.
Candidates for this certification administer core and advanced Windows Server workloads and services using on-premises, hybrid, and cloud technologies. These professionals should have expertise in implementing and managing on-premises and hybrid solutions, such as identity, management, compute, networking, and storage. They are also experts at performing tasks related to security, migration, monitoring, high availability, troubleshooting, and disaster recovery. These professionals use administrative tools and technologies, including Windows Admin Center, PowerShell, Azure Arc, and IaaS virtual machine administration. They also work with Azure Automation Update Management, Microsoft Defender for Identity, Azure Security Center, Azure Migrate, and Azure Monitor.
A candidate for this certification should have extensive experience working with Windows Server operating systems.
Microsoft Docs

You can learn more on the certification website.

Free Online Microsoft Learn AZ-800 Exam Study Guide resources

Microsoft Learn provides you with free online training and learning paths for different Microsoft technologies. They not just offer reading material, but also control questions and free online labs. Here are some relevant Microsoft Learn modules and learning paths for the AZ-800 Administering Windows Server Hybrid Core Infrastructure Certification Exam. Microsoft Learn is an important part of my AZ-800 exam study guide.

Microsoft Docs AZ-800 Study Guide resources

One thing I always used to prepare for my Microsoft exams is Microsoft Docs. Here are the relevant Microsoft Docs which I used to prepare and study for the AZ-800 exam. If you want to get some hands-on experience, I also recommend checking out my Windows Server and Azure Arc Lab Kit.

Deploy and manage Active Directory Domain Services (AD DS) in on-premises and cloud environments (30–35%)

Deploy and manage AD DS domain controllers
- deploy and manage domain controllers on-premises
  Install Active Directory Domain Services (Level 100)
  Install a New Windows Server 2012 Active Directory Forest (Level 200)
- deploy and manage domain controllers in Azure
  Deploy AD DS in an Azure virtual network
- deploy Read-Only Domain Controllers (RODCs)
  Install a Windows Server 2012 Active Directory Read-Only Domain Controller (RODC) (Level 200)
- troubleshoot flexible single master operations (FSMO) roles
  Active Directory FSMO roles in Windows
  How To Find Servers That Hold Flexible Single Master Operations Roles
  Error Attempting to Seize RID Master Role with Ntdsutil
Configure and manage multi-site, multi-domain, and multi-forest environments
- configure and manage forest and domain trusts
  Managing Trusts
  Tutorial: Create an outbound forest trust to an on-premises domain in Azure Active Directory Domain Services
- configure and manage AD DS sites
  Understanding Active Directory Site Topology
  Site Functions
  Creating a Site Design
- configure and manage AD DS replication
  Active Directory Replication Concepts
Create and manage AD DS security principals
- create and manage AD DS users and groups
  Managing Users
  Understanding User Accounts
  Create a New User Account
  Managing Users
  Managing Groups
- manage users and groups in multi-domain and multi-forest scenarios
  Understanding Group Accounts
- implement group managed service accounts (gMSAs)
  Group Managed Service Accounts Overview
- join Windows Servers to AD DS, Azure AD DS, and Azure AD
  Join a Computer to a Domain
  Join a Windows Server VM to an Azure AD Domain Services managed domain
Implement and manage hybrid identities
- implement Azure AD Connect
  Implement Azure AD Connect – Learn
  What is Azure AD Connect v2.0?
- manage Azure AD Connect Synchronization
  Azure AD Connect: Next steps and how to manage Azure AD Connect
- implement Azure AD Connect cloud sync
  What is Azure AD Connect cloud sync?
- integrate Azure AD, AD DS, and Azure AD DS
  On-premises AD domains with Azure AD
- manage Azure AD DS
  Tutorial – Create an Azure Active Directory Domain Services managed domain
- manage Azure AD Connect Health
  What is Azure AD Connect and Connect Health
- manage authentication in on-premises and hybrid environments
  Authentication for Azure AD hybrid identity solutions – Active Directory
- configure and manage AD DS passwords
  Create and use password policies in Azure AD Domain Services
Manage Windows Server by using domain-based Group Policies
- implement Group Policy in AD DS
  Group Policy Overview
- implement Group Policy Preferences in AD DS
  About Group Policy Preferences
- implement Group Policy in Azure AD DS
  Create and manage group policy in Azure AD Domain Services

Manage Windows Servers and workloads in a hybrid environment (10–15%)

Manage Windows Servers in a hybrid environment
Windows Server management overview
- deploy a Windows Admin Center gateway server
  Deploy a Windows Admin Center gateway in Azure
- configure a target machine for Windows Admin Center
  Use Windows Admin Center in the Azure portal to manage a Windows Server VM
- configure PowerShell Remoting
  Running Remote Commands – PowerShell
  PowerShell Remoting FAQ – PowerShell
- configure CredSSP or Kerberos delegation for second hop remoting
  Making the second hop in PowerShell Remoting – PowerShell
- configure JEA for PowerShell Remoting
  Overview of Just Enough Administration (JEA) – PowerShell
Manage Windows Servers and workloads by using Azure services
Windows Server and Azure Management
- manage Windows Servers by using Azure Arc
  Connect hybrid machines to Azure using a deployment script
  Connect hybrid machines to Azure at scale
  Connect hybrid machines to Azure from Windows Admin Center – Azure Arc
- assign Azure Policy Guest Configuration
  Tutorial – New policy assignment with Azure portal
- deploy Azure services using Azure Virtual Machine extensions on non-Azure machines
  Tutorial – Monitor a hybrid machine with Azure Monitor VM insights
- manage updates for Windows machines
  Azure Automation Update Management overview
- integrate Windows Servers with Log Analytics
  Log Analytics agent overview – Azure Monitor
- integrate Windows Servers with Azure Security Center
  Hybrid security monitoring with Sentinel
  Connect your non-Azure machines to Microsoft Defender for Cloud
- manage IaaS virtual machines (VMs) in Azure that run Windows Server
  Windows Server and Azure Management
  Maintenance and updates – Azure Virtual Machines
- implement Azure Automation for hybrid workloads
  Azure Automation in a hybrid environment
- create runbooks to automate tasks on target VMs
  Runbook execution in Azure Automation
- implement DSC to prevent configuration drift in IaaS machines
  Azure VM extensions and features for Windows – Azure Virtual Machines
  Azure Desired State Configuration Extension Handler – Azure Virtual Machines
  Desired State Configuration for Azure overview – Azure Virtual Machines

Manage virtual machines and containers (15–20%)

Manage Hyper-V and guest virtual machines
- enable VM enhanced session mode
  Use local resources on Hyper-V virtual machine with VMConnect
  Hyper-V enhanced session mode
- manage VM using PowerShell Remoting, PowerShell Direct, and HVC.exe
  HVC.exe
  PowerShell Direct
  Manage Windows virtual machines with PowerShell Direct
  Manage Hyper-V VMs using PowerShell Direct
- configure nested virtualization
  Hyper-V Nested Virtualization
  Nested Virtualization
- configure VM memory
  Hyper-V Dynamic Memory Overview
- configure Integration Services
  Manage Hyper-V Integration Services
- configure Discrete Device Assignment
  Deploy graphics devices using Discrete Device Assignment
  Plan for deploying devices using Discrete Device Assignment
  Deploy NVMe Storage Devices using Discrete Device Assignment
- configure VM Resource Groups
  Hyper-V Host CPU Resource Management
- configure VM CPU Groups
  Virtual Machine Resource Controls
- configure hypervisor scheduling types
  Understanding and using Hyper-V hypervisor scheduler types
  About Hyper-V hypervisor scheduler type selection
- manage VM Checkpoints
  Hyper-V Checkpoints PowerShell
  Choose between standard or production checkpoints in Hyper-V
  Enable or disable checkpoints in Hyper-V
- implement high availability for virtual machines
  Clustering for Hyper-V
- manage VHD and VHDX files
  Hyper-V Virtual Hard Disk Format Overview
- configure Hyper-V network adapter
  Host network requirements for Azure Stack HCI – Azure Stack HCI
- configure NIC teaming
  Support Policy for NIC Teaming with Hyper-V – Windows Server
  NIC Teaming
- configure Hyper-V switch
  Hyper-V Virtual Switch
  Create a virtual switch for Hyper-V virtual machines
Create and manage containers
- create Windows Server container images
  Windows Container Base Images
  Dockerfile and Windows Containers
- manage Windows Server container images
  Update Windows Server containers
- configure Container networking
  Windows container networking
- manage container instances
  Run containers on Windows Admin Center
Manage Azure Virtual Machines that run Windows Server
- manage data disks
  Attach a managed data disk to a Windows VM – Azure – Azure Virtual Machines
- resize Azure Virtual Machines
  Resize a virtual machine – Azure Virtual Machines
- configure continuous delivery for Azure Virtual Machines
  CI/CD for Azure VMs – Azure Solution Ideas
- configure connections to VMs
  Connect to a Windows Server VM – Azure Virtual Machines
  Set up WinRM access for an Azure VM – Azure Virtual Machines
- manage Azure Virtual Machines network configuration
  Virtual networks and virtual machines in Azure

Implement and manage an on-premises and hybrid networking infrastructure (15–20%)

Implement on-premises and hybrid name resolution
- integrate DNS with AD DS
  Active Directory-Integrated DNS Zones
- create and manage zones and records
  Managing a Forward Lookup Zone
  Adding a Resource Record to a Forward Lookup Zone
- configure DNS forwarding/conditional forwarding
  Configure a DNS Server to Use Forwarders
  Assign a Conditional Forwarder for a Domain Name
- integrate Windows Server DNS with Azure DNS private zones
  Scenarios for Private Zones – Azure DNS
- implement DNSSEC
  Overview of DNSSEC
Manage IP addressing in on-premises and hybrid scenarios
- implement and manage IPAM
  IP Address Management (IPAM)
- implement and configure the DHCP server role (on-premises only)
  Administering DHCP Server
- resolve IP address issues in hybrid environments
- create and manage scopes
  Managing DHCP Server Scopes
- create and manage IP reservations
  Managing Reservations and Reserved Clients
- implement DHCP high availability
  Understand and Deploy DHCP Failover
Implement on-premises and hybrid network connectivity
- implement and manage the Remote Access role
  Remote Access Overview
- implement and manage Azure Network Adapter
  Azure Network Adapter
  Use Azure Network Adapter to connect a server to an Azure Virtual Network
  Connect standalone servers by using Azure Network Adapter
- implement and manage Azure Extended Network
  Extend your on-premises subnets into Azure using extended network for Azure
- implement and manage Network Policy Server role
  Network Policy and Access Services Overview
- implement Web Application Proxy
  Web Application Proxy
  Working with Web Application Proxy
- implement Azure Relay
  What is Azure Relay? – Azure Relay
- implement site-to-site virtual private network (VPN)
  Azure VPN Gateway topologies and design
- implement Azure Virtual WAN
  Azure Virtual WAN Overview
- implement Azure AD Application Proxy
  Publish on-premises apps with Azure Active Directory Application Proxy

Manage storage and file services (15–20%)

Configure and manage Azure File Sync
- create Azure File Sync service
  Azure File Sync
  Deploy Azure File Sync
- create sync groups
  Modify your Azure File Sync topology
- create cloud endpoints
  Create an Azure file share – Azure Files
- register servers
  Manage registered servers with Azure File Sync
- create server endpoints
  Create an Azure File Sync server endpoint
- configure cloud tiering
  How to manage Azure File Sync tiered files
- monitor File Sync
  Monitor Azure File Sync
- migrate DFS to Azure File Sync
  How to use DFS-N with Azure Files
Configure and manage Windows Server file shares
- configure Windows Server file share access
  Share permissions: File and Storage Services
- configure file screens
  File Screening Management
- configure File Server Resource Manager (FSRM) quotas
  Quota Management
- configure BranchCache
  BranchCache
- implement and configure Distributed File System (DFS)
  DFS Namespaces overview
  DFS Replication overviews
Configure Windows Server storage
- configure disks and volumes
  Manage disks
  Manage basic volumes
- configure and manage Storage Spaces
  Storage Spaces overview
- configure and manage Storage Replica
  Storage Replica Overview
- configure Data Deduplication
  Data Deduplication Overview
- configure SMB direct
  Improve performance of a file server with SMB Direct
- configure Storage Quality of Service (QoS)
  Storage QoS
  Storage Quality of Service
- configure file system
  NTFS overview
  Resilient File System (ReFS) overview

Tips and Resources

I hope this AZ-800 Administering Windows Server Hybrid Core Infrastructure for the Microsoft Certified: Windows Server Hybrid Administrator Associate Certification Exam Study Guide helps you pass the exam and get the Windows Server Hybrid Administrator certification. I also recommend that you open a free Azure account if you don’t have one yet. You can create your free Azure account here. Also, check out my blog posts about Microsoft Azure Certification:

I hope you enjoyed my AZ-800 Study Guide, and it helps you with exam prep. Did I miss any link, or do you have any recommended AZ-800 Windows Server Hybrid Administrator Certification Exam Study resources? Let me know in the comments.

Mar012022March 1, 2022March 1, 20221 Commentby Thomas Maurer

Honored as a Veeam Vanguard 2022

Posted in Awards, Thomas Maurer

I feel honored, I just was informed that my 2022 Veeam Vanguard Renewal has been approved, and I got awarded my sixth Veeam Vanguard award. After being a Veeam Vanguard in 2015, 2016, 2019, 2020, 2021 I am proud to be part of the Veeam Vanguard community in 2022 again.

The Veeam Vanguard Program is Veeam’s top-level influencer community. This group shares points of view, provides feedback, and is committed to mutual success. Experts in the Vanguard program are a combination of many different disciplines, contribution types and advocacy mechanisms yet are each the best in space regarding technical thought leadership for the technical communities in which Veeam exists.
These individuals have been nominated as Veeam Vanguards. A Veeam Vanguard represents our brand to the highest level in many of the different technology communities in which we engage. These individuals are chosen for their acumen, engagement, and style in their activities on and offline.
Veeam Vanguard

I am looking forward to being part of this community in this virtualization and cloud journey. I also want to thank Veeam, especially the Veeam Vanguard team, it is an honor to be part of the Veeam Vanguard community again.

Feb082022February 8, 2022February 7, 20220 Commentby Thomas Maurer

Azure webinar series Windows Server Management Security and Monitoring

Webinar: Windows Server Management, Security and Monitoring

Posted in Microsoft, Microsoft Azure, Windows Server

I am happy to let you know that we are planning a Microsoft free online webinar for Windows Server Management, Security and Monitoring on Tuesday, March 1, 2022 10:00 AM–11:00 AM Pacific Time.

Customers are choosing a hybrid and multi-cloud approach to digitally transform their businesses. If you have on-premises Windows Server workloads, you can now take advantage of cloud services with Windows Server 2022 by connecting with Azure Arc.

Join this webinar and learn how:

Hybrid services and Azure Arc can extend your datacenter for IT efficiency.
You can connect your on-premises servers to Azure through Windows Admin Center or the Azure Portal.
To secure your on-premises estate with Microsoft Defender for servers.
Azure Arc can help meet the governance, compliance, and organizational standards through policies for apps, infrastructure, and data.

Feel free to register for this webinar around Windows Server Management here, and see you there!

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Tag: Hyper-V

AZ-800 Exam Study Guide Administering Windows Server Hybrid Core Infrastructure

My AZ-800 Administering Windows Server Hybrid Core Infrastructure Certification Exam Study Guide

Microsoft Certified: Windows Server Hybrid Administrator Associate certification

Free Online Microsoft Learn AZ-800 Exam Study Guide resources

Microsoft Docs AZ-800 Study Guide resources

Tips and Resources

About Thomas Maurer

Follow Me

Subscribe

Sponsors