Browse Azure Community (289)

TulikaC announces that PHP 8.5 is available on Azure App Service for Linux in all public regions, and points developers to the portal, Azure CLI, and ARM/Bicep options to create and deploy updated PHP web apps.

TulikaC introduces a new drag-and-drop zip deployment experience for Azure App Service for Linux via the Kudu/SCM site, including optional server-side builds, deployment phase tracking, and access to deployment and runtime logs.

mosiddi explains how Microsoft’s open-source Agent Governance Toolkit implements production-grade security and reliability controls for autonomous AI agents, covering its package architecture, policy enforcement (Agent OS), zero-trust identity (Agent Mesh), privilege rings (Agent Hypervisor), and SRE/observability integrations, including Azure deployment patterns.

jordanselig shows how to instrument Microsoft Agent Framework agents with OpenTelemetry GenAI semantic conventions and send that telemetry to Azure Application Insights, enabling the Agents (Preview) view for per-agent token usage, latency, errors, and end-to-end agent runs across an ASP.NET Core API and a WebJob.

wesback breaks down what “sovereignty” can mean in Azure Belgium Central by mapping it to three practical technical layers: data residency/locality, encryption (including CMK with Key Vault or Managed HSM), and confidential computing with attestation for in-use protection.

Gapandey lays out a practical, end-to-end MLOps template on Azure: train a scikit-learn model from data in Azure Blob Storage, package it as a self-contained pickle bundle, register it in an Azure ML Registry with auto-versioning, and deploy it to an Azure ML Managed Online Endpoint via an Azure DevOps multi-stage pipeline.

AmitManchanda28 explains how reusing a User Assigned Managed Identity (UAMI) across Azure environments can unintentionally widen trust boundaries and increase blast radius, and proposes an environment-isolated identity model with tighter RBAC scoping.

theringe walks through deploying to Azure App Service from Azure DevOps using a user-assigned managed identity (UAMI), including the Azure DevOps service connection setup, required RBAC permissions, and how to validate the deployment identity via AppServiceAuditLogs.

AjaySingh_ explains how to avoid false “backend unhealthy” states and resulting 502/504 errors by designing a lightweight, unauthenticated IIS /health endpoint and configuring Azure Application Gateway health probes (including correct host header/SNI handling).

jordanselig walks through building an MCP App (a tool plus a UI resource) with ASP.NET Core, rendering an interactive weather widget inside chat clients like VS Code Copilot, and deploying the MCP server to Azure App Service using azd and Bicep.

Shamir_AbdulAziz describes how Microsoft built Azure SRE Agent—an AI-powered ops agent—using “agentic workflows” across the SDLC, with human-in-the-loop governance, RBAC guardrails, and deep integration into telemetry and incident systems to reduce on-call toil and speed up incident mitigation.

Lee_Stott walks through what Azure Developer CLI (azd) is, why it’s useful for beginners, and how the AZD for Beginners learning path helps you move from local code to a repeatable Azure deployment workflow with templates, infrastructure as code, and lifecycle cleanup.

alinetran explains how to automate Azure Arc server onboarding at scale using Ansible with a new purpose-built onboarding role, focusing on least-privilege permissions and removing manual steps that don’t scale.

Vineela-Suri walks through how Azure SRE Agent integrates with Azure Monitor to pick up fired alerts, investigate them autonomously, and merge repeated firings into a single incident thread, using an AKS + Azure Cache for Redis failure scenario and practical guidance on when to enable or disable auto-resolve.

AnjaliSadhukhan argues that AI agents fail on enterprise questions mainly due to fragmented data and missing semantics, and outlines how Microsoft Fabric (OneLake, semantic models, Data Agents) and Azure AI Foundry can work together to provide governed, agent-ready access to business data.

Gaurav-Seth describes a hands-on, AI-guided workflow for migrating legacy IIS-hosted ASP.NET Framework apps to Managed Instance on Azure App Service, including how registry, storage, SMTP/MSMQ, and COM dependencies are handled via ARM templates and an install.ps1 startup script.

molina_sharma outlines practical Azure architecture choices for resilience, comparing in-region availability-zone designs with multi-region disaster recovery patterns (paired and non-paired) and active/active setups, and explains how to pick based on RTO/RPO, latency, compliance, and operational trade-offs.

joclemen breaks down what Azure Key Vault’s paired-region replication really guarantees during a regional outage, why it becomes read-only after Microsoft-managed failover, and how to build true multi-region continuity with two Terraform reference architectures (private and public endpoint designs).

Meagan McCrory announces a public preview “Essential Machine Management” experience in Azure’s Compute Infrastructure Hub, aimed at onboarding Azure VMs and Azure Arc-enabled servers at subscription scope for monitoring, updates, inventory, configuration, and security baselines.

MelanieKraintz007 announces GA support for managed identities and workload identity in Azure Red Hat OpenShift, explaining how ARO operators and Kubernetes workloads can use short-lived tokens with Azure RBAC to reduce reliance on long-lived service principals.