Month

Something stirs in DevOps land..

A Kubernetes crashcourse.

An extension that makes it easier for applications running on virtual machines to use certificates from Azure Key Vault.

Azure Saturday 2019 demos.

Governance at scale with Azure AD Privileged Identity Management and tips on how to automate it.

Governance at scale with Azure RBAC, Management Groups and Policies.

Chroot, a couple of Linux namespaces and pivot_root.

Not exactly bubble wrap for your VMs.

IPC, Network & Time namespaces.

Build confidence and only slightly break stuff.

PID, Cgroup & User namespaces.

Kubernetes lasagne.

Cloud Native environments ❤️ Policy-based control

Virtual water cooler discussions.

Jobs, a couple of Silos and the Host Compute Service.

Running the K8SE preview on CodeReady Containers.

Secure your valuable assets.

Keeping an eye on your data estate.

Securely orchestrated fault injections.

Chaos experiments with Pester 5.

And down the rabbit hole we go.

2022 edition; comes with additional bubble wrapping.

A closer look at AMD SEV-SNP VM SKUs.

Releasing Key Vault keys to attested Confidential Virtual Machines.

Request for Comments.

Identification, please.

The legend of the missing puzzle pieces.

Secure Key Release and Azure Disk Encryption are such a good combo.

Leveraging Azure role based access control.

A look at the CoCo project and how to use it in Azure Kubernetes Service.

Authenticate workloads to Entra ID without managing secrets or certificates.

A workload identity a day keeps the PAT away.

No more for PATs for Windows-based AZP agents.

Tips on how to automate PIM for Azure resources.

Taking the NVIDIA H100 for a spin.

Scribbles from my scratchpad.