Browse Azure Community (288)

shobhitgarg describes a new Azure CLI experience that enables Azure Backup for Azure Kubernetes Service (AKS) with a single command, reducing the previous multi-step onboarding (extensions, vaults, policies, trusted access) into an automation-friendly workflow for platform teams.

PrabhKaur (co-authored with Avneesh Kaushik) lays out an architecture-focused checklist for building AI agents in Microsoft Foundry with security, observability, least privilege, continuous validation, and human accountability built in from the start.

dhruti explains why cloud-native migrations to Azure Kubernetes Service (AKS) often “succeed” in deployment but still fail at runtime during production cutover, and outlines the dependency, DR, and batch-processing checks needed for operational readiness.

simonjj shares an Azure Developer CLI template that deploys Google’s Gemma 4 (via Ollama) onto Azure Container Apps serverless GPU with an OpenAI-compatible endpoint, protected by an Nginx basic-auth proxy, plus steps to verify the API and wire it into the OpenCode terminal coding agent for private, in-subscription prompting.

kirankumar_manchiwar04 explains how Azure Private DNS Zones can return NXDOMAIN for missing Private Link records in hybrid and multi-region setups, and how enabling the NxDomainRedirect (“fallback to internet”) resolution policy on a VNet link lets Azure retry via public recursive DNS to keep applications connecting.

vdivizinschi explains how to run diagnostic and remediation commands across Azure VM Scale Set instances using Azure Run Command via the control plane, avoiding RDP/SSH. The post covers prerequisites, RBAC permissions, orchestration-mode differences (Uniform vs Flexible), and provides Bash/Azure CLI loops to run scripts across all instances.

Marc de Droog demonstrates Azure Virtual Network TAP (VTAP) by mirroring full VM NIC traffic (including payload) to a destination VM and inspecting the VXLAN-encapsulated packets in Wireshark.

In this community post, nishantmv breaks down a production-grade Azure serverless architecture for an enterprise facility-management IoT platform, covering a multi-provider telemetry pipeline, template-driven device modeling, an event-driven rule engine, and the security/resilience hardening that made it ready for production.

ManishChopra outlines six practical integration patterns for building agents and copilots that query Oracle Database@Azure with sub-millisecond proximity to Microsoft’s AI stack, covering options from Copilot Studio connectors to ORDS/PL/SQL, Azure Functions, and Logic Apps, plus the identity/governance controls typically needed for production.

jordanselig shows how to add runtime governance to a multi-agent ASP.NET Core travel planner on Azure App Service using the Microsoft Agent Governance Toolkit, including YAML policy allowlists, audit logging into Application Insights, and SRE controls like SLOs and circuit breakers.

ssaluja72 shares a Sync-over-Async architecture pattern for edge API gateways on Azure Service Bus, replacing session-based request/reply correlation with stateless topic subscriptions filtered by CorrelationId to avoid session lock bottlenecks and improve horizontal scalability.

Marc de Droog walks through connecting an Azure ExpressRoute circuit to Megaport Virtual Edge (MVE) running a Cisco 8000v NVA, including circuit creation, Megaport VXC setup, Azure Private Peering configuration, and the required Cisco IOS interface/BGP commands.

mshboul explains how Logic Apps users can migrate from the deprecated Log Analytics HTTP Data Collector API to the Azure Monitor Log Ingestion API, including how to create DCE/DCR resources, build the ingestion URL, assign the right IAM role to a managed identity, and send data via an HTTP action.

TomClaes shows how to use Azure Policy to enforce the correct LicenseType on SQL Server enabled by Azure Arc, including PowerShell-based deployment, remediation runs, and the RBAC permissions needed to keep Arc SQL inventory compliant at scale.

kevinguo introduces wildcard group roles in Azure Web PubSub, explaining how pattern-based permissions reduce token bloat and simplify authorization for real-time apps that use many dynamic groups.

fenildoshi2510 explains how to sync Azure Key Vault secrets into an AKS namespace managed by Rancher using External Secrets Operator (ESO) and Workload Identity, so apps can consume Kubernetes Secrets without storing any client secrets.

Siddhi_Singh shows how to enable Istio/Envoy access logging in Azure Kubernetes Service (AKS) and correlate those mesh logs with Azure Application Insights telemetry using W3C trace context and Log Analytics (KQL) for end-to-end request troubleshooting.

TulikaC announces that PHP 8.5 is available on Azure App Service for Linux in all public regions, and points developers to the portal, Azure CLI, and ARM/Bicep options to create and deploy updated PHP web apps.

TulikaC introduces a new drag-and-drop zip deployment experience for Azure App Service for Linux via the Kudu/SCM site, including optional server-side builds, deployment phase tracking, and access to deployment and runtime logs.

mosiddi explains how Microsoft’s open-source Agent Governance Toolkit implements production-grade security and reliability controls for autonomous AI agents, covering its package architecture, policy enforcement (Agent OS), zero-trust identity (Agent Mesh), privilege rings (Agent Hypervisor), and SRE/observability integrations, including Azure deployment patterns.