SlideShare uma empresa Scribd logo

Azure SQL Database

N
nj-azure

Azure SQL Database

Educação
1 de 26
Baixar para ler offline
Overview of Azure SQL Database Marcin Policht MCSE: Cloud Platform and Infrastructure https://www.linkedin.com/in/marcin-policht-857b013
Agenda • Common Business and Technical Differentiators between Azure SQL Database and SQL Server in an Azure VM • Azure SQL Servers and Databases • Performance • Database Transaction Unit (DTU) • Database-level Service Tiers • Elastic Database Pools • Elastic Database Pool-level Service Tiers • Management and Development • Business Continuity • Disaster Recovery • Backups, Long-Term Backup Retention, and Restores • Security and Compliance • Authentication and Authorization • Encryption • Row-Level Security • Dynamic Data Masking • Auditing and Threat Detection • Temporal Tables • Monitoring • Query Performance Insights • Database Advisor
Azure SQL Database Azure SQL Database is a cloud-based relational database service, built on the Microsoft SQL Server engine designed to deliver predictable performance and scalability, with virtually no downtime and near-zero server- level administration.
Common Business Differentiators Azure SQL Database • You’re building new cloud-based applications to take advantage of cost savings and performance. • You need agility and scalability. • You want databases replicated in different regions of the world for disaster recovery. • You want to minimize server-level management overhead. SQL Server in an Azure VM • You want to build enterprise applications with OLTP databases larger than 4 TB. • You have existing IT resources and can maintain stewardship over backups, high availability and disaster recovery.
Common Technical Differentiators Azure SQL Database SQL Server in an Azure VM • AlwaysOn Availability Groups/Database mirroring/Failover Clustering • Active Directory authentication • SQL Server Agent • Cross-database queries • Integration Services • Analysis Services • Database snapshots • Reporting Services • Profiler • Data Quality Services • Direct Azure VNet connectivity • Service Broker • Resource Governor https://docs.microsoft.com/en-us/azure/sql-database/sql-database-features • Active Geo-Replication • Azure Active Directory authentication • SSMS MFA • Autoscaling • Elastic pools • Elastic jobs • Elastic queries • Azure Data Factory • Azure Analysis Services • Server and database-level firewall • Elastic database tools • Threat detection • Database Advisor
Azure SQL Servers and Databases Servers • Logical constructs • Host databases • Designate: • an Azure region • resource group • Serve as • security boundaries: • logins • server-level firewalls • connection endpoints: • auto-generated FQDN • xxxx.database.windows.net Databases • Share logical server settings • Have individually assigned: • Service tier: • Basic • Standard • Premium • Premium RS (preview) • Performance level • Expressed in DTUs • Provide additional security: • users (including contained users) • database-level firewalls
Database Transaction Unit (DTU) . • A unit of measurement of platform resources guaranteed to be available to an Azure SQL database • CPU • Memory • I/O (data and transaction log) • Based on an OLTP benchmark workload • For details, refer to SQL Database benchmark overview • Directly proportional to database performance • e.g. a database with 1750 DTUs will have 350x more compute power than a database with 5 DTUs Intended for performance-based sizing of Azure SQL Database
Database-level Service Tiers . • Represent performance and capacity: • Max DTUs (up to 4,000) • Max database size (up to 4 TB) • Max in-memory OLTP storage (up to 32 GB) • Max concurrent workers (up to 6,400) • Max concurrent logins (up to 6,400) • Max concurrent sessions (up to 30,000) • Backup retention period (up to 35 days) • Availability SLA • 99.99% - Basic, Standard, Premium • 99.9% - Premium RS • Further divided into performance levels: • Standard: S0, S1, S2, S3 • Premium: P1, P2, P4, P6, P11, P15 • Premium RS: PRS1, PRS2, PRS4, PRS6 • Shared max database size • Different performance characteristics Basic, Standard, Premium, Premium RS (preview)
Management In majority of cases, working with Azure SQL Database data is the same as working with SQL Server data. • Rich and up-to-date transact- SQL (T-SQL) support • A few differences in DDL and DML(*) • Stored procedures, user-defined functions, triggers, and views • Newest features from SQL Server 2016 • The same tools: • SSMS, Visual Studio • Automation via PowerShell, Azure CLI, REST API (*) https://docs.microsoft.com/en-us/azure/sql-database/sql-database-transact-sql-information
Developing Solutions Azure SQL Database tasks, scripts, methods, functions and processes can be created and managed in Visual Studio using SQL Server Data Tools. Azure SQL Database lets you parse and query data represented in JSON format, and export your relational data as JSON text. Connection libraries (on Windows, Linux, and Mac) for: • ADO.NET • Java • PHP (Windows only) • Node.js • Python • Ruby • C/C++ (Windows and Linux)
Elastic Database Pools • A set number of eDTUs for a set price: • Predictable cost • Individual databases within the pool can autoscale: • Autoscaling boundaries determined by the min eDTU and max eDTU per database • min eDTU and max eDTU are pool level settings • Size limited by the smaller of the database service tier and remaining pool storage • Performance expressed in eDTUs • eDTU = DTU Cost effective solution to manage multiple databases with different usage patterns
Elastic Database Pool-level Service Tiers . • Represent performance and capacity (per pool): • Max number of databases (up to 500) • Max eDTUs (up to 4,000) • Max data storage (up to 750 GB) • Max in-memory OLTP storage (up to 12 GB) • Max concurrent workers (up to 2,400) • Max concurrent logins (up to 2,400) • Max concurrent sessions (up to 30,000) • Min eDTU per database (down to 0) • Max eDTU per database (up to 4,000) • Divided into performance levels: • Based on total eDTUs per pool • Varying max data per pool size and performance characteristics • Each database in a pool has performance characteristics determined by the matching single database service tier • The min and max eDTU per database are determined by the pool performance level Basic, Standard, Premium, and Premium RS (preview)
Disaster Recovery • Asynchronous replication of committed transactions • Available for all service tiers • Source and target can be standalone or pooled • Up to 4 readable secondaries: • can be located in any Azure region (requires a server at that location) • must use the same service tier • performance level can differ • Manual failover and failback • ERT < 30s, RPO < 5s • Replication reestablished automatically Built-in support offering minimal RTO and RPO
Backups • Read Access Geo-Redundant (RA-GRS) • Retention service tier-dependent: • Basic: 7 days • Standard and Premium: 35 days • Frequency: • Transaction log: 5-10 minutes • Differential: every few hours • Full: weekly, starting immediately after db creation Automatic backup capabilities
Long-Term Backup Retention (preview) • Requires an Azure Recovery vault: • Assigned on the server level • LRS or GRS (you decide) • Once configured, automatically copies full backups to the vault • Preserves encryption (TDE) • Configurable retention period (between 1 week and 10 years) • Cost according to the Azure Backup service pricing rates Supplements built-in backup capabilities beyond service tier- specific retention period
Restores • Point-in-time • in the same region • within the service tier-specific retention period • Long-term • Within up to 10 years (when using long term retention with Azure Recovery Services vault) • Results in creation of a new database: • to any server in any region • within the same subscription • geo-restore uses full and differential backups (up to an hour of RPO) Point-in-time and long-term restore capabilities
Authentication and Authorization • Authentication • SQL Server principals • logins: • one or more defined in master • users: • master – manage server-wide roles • user databases - include contained database users • Azure AD security principals • login: • defined in master • the server-level Azure AD Admin (privileges equivalent to the server admin) • users • user databases - Azure AD contained database users • Authorization • Role membership • Object-level permissions Support for two types of identities
Security • Encryption • Transparent Data Encryption • Always Encrypted • Column/cell-level encryption • Row-level security • Dynamic data masking • Auditing • Threat detection • Firewall rules • Server-level • Database-level Includes the latest features of SQL Server 2016.
Encryption Support for “always encrypted” and “transparent” encryption of the database, backups, transaction log files, and secondaries (DR) • Always encrypted • Data encrypted and decrypted within client apps • Always Encrypted-enabled driver • Transparent Data Encryption • Encryption via a symmetric key • The symmetric key protected by a built-in server-specific certificate • Certificates managed by Microsoft
Row-level security • Based on characteristics of user or app executing queries: • group membership • execution context • Simplifies the design and coding of security in your application • Logic is located in the database tier Azure SQL Database supports row-level security making it easy to partition query results based on a user or an app
Dynamic Data Masking • Policy-based • Based on masking rules and masking functions (e.g. credit card, email, etc.) • Supports user-based exclusions • A set of SQL users or AAD identities • Admin users always excluded • Hides sensitive data in the result set of a query targeting designated fields • Created and managed: • In the Azure Portal • Programmatically via SDKs and services • Scripting and T-SQL commands Dynamic data masking prevents unauthorized access to sensitive data by “masking” fields based on roles or permissions.
Auditing and Threat Detection (preview) Capabilities • Retain an audit trail of selected event categories • Track database activity using preconfigured reports • Receive email alerts in response to suspicious events, unusual activity, and trends. Audited actions • Data access • DML – data changes • DCL – logins, users, roles and permissions • DDL – schema changes • Security exceptions
Temporal Tables Temporal Tables provide administrators and developers the ability to track and analyze historical changes in data, similar to concepts of versioning, and even allow retention polices, similar to a document management system.
Query Performance Insight • Deeper insight into your databases resource consumption • The ability to drill down into the details of a query, view its text and history of resource utilization • Performance tuning annotations that show actions performed by SQL Azure Database Advisor • Relies on Query Store Makes it easy to troubleshoot Azure SQL Database performance
Database Advisor • Three impact-based categories: • High impact recommendations should provide the most significant performance impact. • Medium impact recommendations should improve performance, but not substantially. • Low impact recommendations should provide better performance than without, but improvements might not be significant. • Recommendations: • Create index • Drop index • Parameterize queries • Fix schema issues Recommendations to improve query performance
Azure SQL Database

Recomendados

Azure storage
Azure storageAzure storage
Azure storageRaju Kumar
 
Azure storage
Azure storageAzure storage
Azure storageAdam Skibicki
 
Introducing Azure SQL Database
Introducing Azure SQL DatabaseIntroducing Azure SQL Database
Introducing Azure SQL DatabaseJames Serra
 
Azure Storage Services - Part 01
Azure Storage Services - Part 01Azure Storage Services - Part 01
Azure Storage Services - Part 01Neeraj Kumar
 
Azure Storage
Azure StorageAzure Storage
Azure StorageMustafa
 
Azure Cloud PPT
Azure Cloud PPTAzure Cloud PPT
Azure Cloud PPTAniket Kanitkar
 
Introduction to azure cosmos db
Introduction to azure cosmos dbIntroduction to azure cosmos db
Introduction to azure cosmos dbRatan Parai
 
SQL Database on Azure
SQL Database on AzureSQL Database on Azure
SQL Database on AzureThurupathan Vijayakumar
 

Recomendados

Azure storage
Azure storageAzure storage
Azure storageRaju Kumar
 
Azure storage
Azure storageAzure storage
Azure storageAdam Skibicki
 
Introducing Azure SQL Database
Introducing Azure SQL DatabaseIntroducing Azure SQL Database
Introducing Azure SQL DatabaseJames Serra
 
Azure Storage Services - Part 01
Azure Storage Services - Part 01Azure Storage Services - Part 01
Azure Storage Services - Part 01Neeraj Kumar
 
Azure Storage
Azure StorageAzure Storage
Azure StorageMustafa
 
Azure Cloud PPT
Azure Cloud PPTAzure Cloud PPT
Azure Cloud PPTAniket Kanitkar
 
Introduction to azure cosmos db
Introduction to azure cosmos dbIntroduction to azure cosmos db
Introduction to azure cosmos dbRatan Parai
 
SQL Database on Azure
SQL Database on AzureSQL Database on Azure
SQL Database on AzureThurupathan Vijayakumar
 
Azure vm introduction
Azure vm introductionAzure vm introduction
Azure vm introductionLalit Rawat
 
Microsoft Azure Fundamentals
Microsoft Azure FundamentalsMicrosoft Azure Fundamentals
Microsoft Azure FundamentalsAdwait Ullal
 
Windows Azure Blob Storage
Windows Azure Blob StorageWindows Azure Blob Storage
Windows Azure Blob Storageylew15
 
Azure SQL Database
Azure SQL DatabaseAzure SQL Database
Azure SQL Databaserockplace
 
Introducing Azure SQL Data Warehouse
Introducing Azure SQL Data WarehouseIntroducing Azure SQL Data Warehouse
Introducing Azure SQL Data WarehouseJames Serra
 
AZ-204 : Implement Azure security
AZ-204 : Implement Azure securityAZ-204 : Implement Azure security
AZ-204 : Implement Azure securityAzureEzy1
 
Introduction to Azure Cloud Storage
Introduction to Azure Cloud StorageIntroduction to Azure Cloud Storage
Introduction to Azure Cloud StorageGanga R Jaiswal
 
A complete guide to azure storage
A complete guide to azure storageA complete guide to azure storage
A complete guide to azure storageHimanshu Sahu
 
Azure Security Fundamentals
Azure Security FundamentalsAzure Security Fundamentals
Azure Security FundamentalsLorenzo Barbieri
 
Windows Azure Virtual Machines
Windows Azure Virtual MachinesWindows Azure Virtual Machines
Windows Azure Virtual MachinesClint Edmonson
 
Azure 101
Azure 101Azure 101
Azure 101Korry Lavoie
 
Migrate an Existing Application to Microsoft Azure
Migrate an Existing Application to Microsoft AzureMigrate an Existing Application to Microsoft Azure
Migrate an Existing Application to Microsoft AzureChris Dufour
 
Azure SQL Database & Azure SQL Data Warehouse
Azure SQL Database & Azure SQL Data WarehouseAzure SQL Database & Azure SQL Data Warehouse
Azure SQL Database & Azure SQL Data WarehouseMohamed Tawfik
 
Azure Arc Overview from Microsoft
Azure Arc Overview from MicrosoftAzure Arc Overview from Microsoft
Azure Arc Overview from MicrosoftDavid J Rosenthal
 
Azure Migrate
Azure MigrateAzure Migrate
Azure MigrateMustafa
 
Azure Database Services for MySQL PostgreSQL and MariaDB
Azure Database Services for MySQL PostgreSQL and MariaDBAzure Database Services for MySQL PostgreSQL and MariaDB
Azure Database Services for MySQL PostgreSQL and MariaDBNicholas Vossburg
 
Azure Cosmos DB
Azure Cosmos DBAzure Cosmos DB
Azure Cosmos DBMohamed Tawfik
 
Disaster Recovery using Azure Services
Disaster Recovery using Azure ServicesDisaster Recovery using Azure Services
Disaster Recovery using Azure ServicesAnoop Nair
 
Cloud Computing and Microsoft Azure
Cloud Computing and Microsoft AzureCloud Computing and Microsoft Azure
Cloud Computing and Microsoft AzureSuhail Jamaldeen
 
Azure App Service
Azure App ServiceAzure App Service
Azure App ServiceBizTalk360
 
Scalable relational database with SQL Azure
Scalable relational database with SQL AzureScalable relational database with SQL Azure
Scalable relational database with SQL AzureShy Engelberg
 
Azure data platform overview
Azure data platform overviewAzure data platform overview
Azure data platform overviewAlessandro Melchiori
 

Mais conteúdo relacionado

Mais procurados

Azure vm introduction
Azure vm introductionAzure vm introduction
Azure vm introductionLalit Rawat
 
Microsoft Azure Fundamentals
Microsoft Azure FundamentalsMicrosoft Azure Fundamentals
Microsoft Azure FundamentalsAdwait Ullal
 
Windows Azure Blob Storage
Windows Azure Blob StorageWindows Azure Blob Storage
Windows Azure Blob Storageylew15
 
Azure SQL Database
Azure SQL DatabaseAzure SQL Database
Azure SQL Databaserockplace
 
Introducing Azure SQL Data Warehouse
Introducing Azure SQL Data WarehouseIntroducing Azure SQL Data Warehouse
Introducing Azure SQL Data WarehouseJames Serra
 
AZ-204 : Implement Azure security
AZ-204 : Implement Azure securityAZ-204 : Implement Azure security
AZ-204 : Implement Azure securityAzureEzy1
 
Introduction to Azure Cloud Storage
Introduction to Azure Cloud StorageIntroduction to Azure Cloud Storage
Introduction to Azure Cloud StorageGanga R Jaiswal
 
A complete guide to azure storage
A complete guide to azure storageA complete guide to azure storage
A complete guide to azure storageHimanshu Sahu
 
Azure Security Fundamentals
Azure Security FundamentalsAzure Security Fundamentals
Azure Security FundamentalsLorenzo Barbieri
 
Windows Azure Virtual Machines
Windows Azure Virtual MachinesWindows Azure Virtual Machines
Windows Azure Virtual MachinesClint Edmonson
 
Migrate an Existing Application to Microsoft Azure
Migrate an Existing Application to Microsoft AzureMigrate an Existing Application to Microsoft Azure
Migrate an Existing Application to Microsoft AzureChris Dufour
 
Azure SQL Database & Azure SQL Data Warehouse
Azure SQL Database & Azure SQL Data WarehouseAzure SQL Database & Azure SQL Data Warehouse
Azure SQL Database & Azure SQL Data WarehouseMohamed Tawfik
 
Azure Arc Overview from Microsoft
Azure Arc Overview from MicrosoftAzure Arc Overview from Microsoft
Azure Arc Overview from MicrosoftDavid J Rosenthal
 
Azure Migrate
Azure MigrateAzure Migrate
Azure MigrateMustafa
 
Azure Database Services for MySQL PostgreSQL and MariaDB
Azure Database Services for MySQL PostgreSQL and MariaDBAzure Database Services for MySQL PostgreSQL and MariaDB
Azure Database Services for MySQL PostgreSQL and MariaDBNicholas Vossburg
 
Disaster Recovery using Azure Services
Disaster Recovery using Azure ServicesDisaster Recovery using Azure Services
Disaster Recovery using Azure ServicesAnoop Nair
 
Cloud Computing and Microsoft Azure
Cloud Computing and Microsoft AzureCloud Computing and Microsoft Azure
Cloud Computing and Microsoft AzureSuhail Jamaldeen
 
Azure App Service
Azure App ServiceAzure App Service
Azure App ServiceBizTalk360
 

Mais procurados (20)

Azure vm introduction
Azure vm introductionAzure vm introduction
Azure vm introduction
 
Microsoft Azure Fundamentals
Microsoft Azure FundamentalsMicrosoft Azure Fundamentals
Microsoft Azure Fundamentals
 
Windows Azure Blob Storage
Windows Azure Blob StorageWindows Azure Blob Storage
Windows Azure Blob Storage
 
Azure SQL Database
Azure SQL DatabaseAzure SQL Database
Azure SQL Database
 
Introducing Azure SQL Data Warehouse
Introducing Azure SQL Data WarehouseIntroducing Azure SQL Data Warehouse
Introducing Azure SQL Data Warehouse
 
AZ-204 : Implement Azure security
AZ-204 : Implement Azure securityAZ-204 : Implement Azure security
AZ-204 : Implement Azure security
 
Introduction to Azure Cloud Storage
Introduction to Azure Cloud StorageIntroduction to Azure Cloud Storage
Introduction to Azure Cloud Storage
 
A complete guide to azure storage
A complete guide to azure storageA complete guide to azure storage
A complete guide to azure storage
 
Azure Security Fundamentals
Azure Security FundamentalsAzure Security Fundamentals
Azure Security Fundamentals
 
Windows Azure Virtual Machines
Windows Azure Virtual MachinesWindows Azure Virtual Machines
Windows Azure Virtual Machines
 
Azure 101
Azure 101Azure 101
Azure 101
 
Migrate an Existing Application to Microsoft Azure
Migrate an Existing Application to Microsoft AzureMigrate an Existing Application to Microsoft Azure
Migrate an Existing Application to Microsoft Azure
 
Azure SQL Database & Azure SQL Data Warehouse
Azure SQL Database & Azure SQL Data WarehouseAzure SQL Database & Azure SQL Data Warehouse
Azure SQL Database & Azure SQL Data Warehouse
 
Azure Arc Overview from Microsoft
Azure Arc Overview from MicrosoftAzure Arc Overview from Microsoft
Azure Arc Overview from Microsoft
 
Azure Migrate
Azure MigrateAzure Migrate
Azure Migrate
 
Azure Database Services for MySQL PostgreSQL and MariaDB
Azure Database Services for MySQL PostgreSQL and MariaDBAzure Database Services for MySQL PostgreSQL and MariaDB
Azure Database Services for MySQL PostgreSQL and MariaDB
 
Azure Cosmos DB
Azure Cosmos DBAzure Cosmos DB
Azure Cosmos DB
 
Disaster Recovery using Azure Services
Disaster Recovery using Azure ServicesDisaster Recovery using Azure Services
Disaster Recovery using Azure Services
 
Cloud Computing and Microsoft Azure
Cloud Computing and Microsoft AzureCloud Computing and Microsoft Azure
Cloud Computing and Microsoft Azure
 
Azure App Service
Azure App ServiceAzure App Service
Azure App Service
 

Semelhante a Azure SQL Database

Scalable relational database with SQL Azure
Scalable relational database with SQL AzureScalable relational database with SQL Azure
Scalable relational database with SQL AzureShy Engelberg
 
Tech-Spark: Azure SQL Databases
Tech-Spark: Azure SQL DatabasesTech-Spark: Azure SQL Databases
Tech-Spark: Azure SQL DatabasesRalph Attard
 
Azure - Data Platform
Azure - Data PlatformAzure - Data Platform
Azure - Data Platformgiventocode
 
KoprowskiT_SQLSat419_WADBforBeginners
KoprowskiT_SQLSat419_WADBforBeginnersKoprowskiT_SQLSat419_WADBforBeginners
KoprowskiT_SQLSat419_WADBforBeginnersTobias Koprowski
 
KoprowskiT_SQLSatMoscow_WASDforBeginners
KoprowskiT_SQLSatMoscow_WASDforBeginnersKoprowskiT_SQLSatMoscow_WASDforBeginners
KoprowskiT_SQLSatMoscow_WASDforBeginnersTobias Koprowski
 
Adelaide Global Azure Bootcamp 2018 - Azure 101
Adelaide Global Azure Bootcamp 2018 - Azure 101Adelaide Global Azure Bootcamp 2018 - Azure 101
Adelaide Global Azure Bootcamp 2018 - Azure 101Balabiju
 
Introduction to Azure SQL DB
Introduction to Azure SQL DBIntroduction to Azure SQL DB
Introduction to Azure SQL DBChristopher Foot
 
ECS19 - Mustafa Toroman, Sasa Kranjac - SOUP TO NUTS: MICROSOFT AZURE POWERCLASS
ECS19 - Mustafa Toroman, Sasa Kranjac - SOUP TO NUTS: MICROSOFT AZURE POWERCLASSECS19 - Mustafa Toroman, Sasa Kranjac - SOUP TO NUTS: MICROSOFT AZURE POWERCLASS
ECS19 - Mustafa Toroman, Sasa Kranjac - SOUP TO NUTS: MICROSOFT AZURE POWERCLASSEuropean Collaboration Summit
 
Store Data in Azure SQL Database
Store Data in Azure SQL DatabaseStore Data in Azure SQL Database
Store Data in Azure SQL DatabaseSuhail Jamaldeen
 
KoprowskiT_session1_SDNEvent_WASDforBeginners
KoprowskiT_session1_SDNEvent_WASDforBeginnersKoprowskiT_session1_SDNEvent_WASDforBeginners
KoprowskiT_session1_SDNEvent_WASDforBeginnersTobias Koprowski
 
AWS Webcast - AWS Webinar Series for Education #3 - Discover the Ease of AWS ...
AWS Webcast - AWS Webinar Series for Education #3 - Discover the Ease of AWS ...AWS Webcast - AWS Webinar Series for Education #3 - Discover the Ease of AWS ...
AWS Webcast - AWS Webinar Series for Education #3 - Discover the Ease of AWS ...Amazon Web Services
 
Moving to the cloud; PaaS, IaaS or Managed Instance
Moving to the cloud; PaaS, IaaS or Managed InstanceMoving to the cloud; PaaS, IaaS or Managed Instance
Moving to the cloud; PaaS, IaaS or Managed InstanceThomas Sykes
 
Cloud architectural patterns and Microsoft Azure tools
Cloud architectural patterns and Microsoft Azure toolsCloud architectural patterns and Microsoft Azure tools
Cloud architectural patterns and Microsoft Azure toolsPushkar Chivate
 
AWS Webcast - Website Hosting in the Cloud
AWS Webcast - Website Hosting in the CloudAWS Webcast - Website Hosting in the Cloud
AWS Webcast - Website Hosting in the CloudAmazon Web Services
 

Semelhante a Azure SQL Database (20)

Scalable relational database with SQL Azure
Scalable relational database with SQL AzureScalable relational database with SQL Azure
Scalable relational database with SQL Azure
 
Azure data platform overview
Azure data platform overviewAzure data platform overview
Azure data platform overview
 
A to z for sql azure databases
A to z for sql azure databasesA to z for sql azure databases
A to z for sql azure databases
 
Tech-Spark: Azure SQL Databases
Tech-Spark: Azure SQL DatabasesTech-Spark: Azure SQL Databases
Tech-Spark: Azure SQL Databases
 
Azure - Data Platform
Azure - Data PlatformAzure - Data Platform
Azure - Data Platform
 
KoprowskiT_SQLSat419_WADBforBeginners
KoprowskiT_SQLSat419_WADBforBeginnersKoprowskiT_SQLSat419_WADBforBeginners
KoprowskiT_SQLSat419_WADBforBeginners
 
KoprowskiT_SQLSatMoscow_WASDforBeginners
KoprowskiT_SQLSatMoscow_WASDforBeginnersKoprowskiT_SQLSatMoscow_WASDforBeginners
KoprowskiT_SQLSatMoscow_WASDforBeginners
 
Adelaide Global Azure Bootcamp 2018 - Azure 101
Adelaide Global Azure Bootcamp 2018 - Azure 101Adelaide Global Azure Bootcamp 2018 - Azure 101
Adelaide Global Azure Bootcamp 2018 - Azure 101
 
Introduction to Azure SQL DB
Introduction to Azure SQL DBIntroduction to Azure SQL DB
Introduction to Azure SQL DB
 
ECS19 - Mustafa Toroman, Sasa Kranjac - SOUP TO NUTS: MICROSOFT AZURE POWERCLASS
ECS19 - Mustafa Toroman, Sasa Kranjac - SOUP TO NUTS: MICROSOFT AZURE POWERCLASSECS19 - Mustafa Toroman, Sasa Kranjac - SOUP TO NUTS: MICROSOFT AZURE POWERCLASS
ECS19 - Mustafa Toroman, Sasa Kranjac - SOUP TO NUTS: MICROSOFT AZURE POWERCLASS
 
Store Data in Azure SQL Database
Store Data in Azure SQL DatabaseStore Data in Azure SQL Database
Store Data in Azure SQL Database
 
Microservices in Azure
Microservices in AzureMicroservices in Azure
Microservices in Azure
 
KoprowskiT_session1_SDNEvent_WASDforBeginners
KoprowskiT_session1_SDNEvent_WASDforBeginnersKoprowskiT_session1_SDNEvent_WASDforBeginners
KoprowskiT_session1_SDNEvent_WASDforBeginners
 
AWS Webcast - Website Hosting
AWS Webcast - Website HostingAWS Webcast - Website Hosting
AWS Webcast - Website Hosting
 
AWS Webcast - AWS Webinar Series for Education #3 - Discover the Ease of AWS ...
AWS Webcast - AWS Webinar Series for Education #3 - Discover the Ease of AWS ...AWS Webcast - AWS Webinar Series for Education #3 - Discover the Ease of AWS ...
AWS Webcast - AWS Webinar Series for Education #3 - Discover the Ease of AWS ...
 
Microservices in Azure
Microservices in AzureMicroservices in Azure
Microservices in Azure
 
Moving to the cloud; PaaS, IaaS or Managed Instance
Moving to the cloud; PaaS, IaaS or Managed InstanceMoving to the cloud; PaaS, IaaS or Managed Instance
Moving to the cloud; PaaS, IaaS or Managed Instance
 
AZURE Data Related Services
AZURE Data Related ServicesAZURE Data Related Services
AZURE Data Related Services
 
Cloud architectural patterns and Microsoft Azure tools
Cloud architectural patterns and Microsoft Azure toolsCloud architectural patterns and Microsoft Azure tools
Cloud architectural patterns and Microsoft Azure tools
 
AWS Webcast - Website Hosting in the Cloud
AWS Webcast - Website Hosting in the CloudAWS Webcast - Website Hosting in the Cloud
AWS Webcast - Website Hosting in the Cloud
 

Mais de nj-azure

Why AvePoint chose Azure for its Office 365 solutions
Why AvePoint chose Azure for its Office 365 solutionsWhy AvePoint chose Azure for its Office 365 solutions
Why AvePoint chose Azure for its Office 365 solutionsnj-azure
 
Introduction to Mind Machine Interfacing using Azure IoT Hub and other cloud ...
Introduction to Mind Machine Interfacing using Azure IoT Hub and other cloud ...Introduction to Mind Machine Interfacing using Azure IoT Hub and other cloud ...
Introduction to Mind Machine Interfacing using Azure IoT Hub and other cloud ...nj-azure
 
Setting up SharePoint Farm in Azure using Azure Resource Manager (ARM)
Setting up SharePoint Farm in Azure using Azure Resource Manager (ARM)Setting up SharePoint Farm in Azure using Azure Resource Manager (ARM)
Setting up SharePoint Farm in Azure using Azure Resource Manager (ARM)nj-azure
 
Intro to azure logic apps
Intro to azure logic appsIntro to azure logic apps
Intro to azure logic appsnj-azure
 
My personal story from azure it pro to azure dev ops
My personal story from azure it pro to azure dev opsMy personal story from azure it pro to azure dev ops
My personal story from azure it pro to azure dev opsnj-azure
 
Becoming the master of disaster... with asr
Becoming the master of disaster... with asrBecoming the master of disaster... with asr
Becoming the master of disaster... with asrnj-azure
 
From 0 to Deployed
From 0 to DeployedFrom 0 to Deployed
From 0 to Deployednj-azure
 

Mais de nj-azure (7)

Why AvePoint chose Azure for its Office 365 solutions
Why AvePoint chose Azure for its Office 365 solutionsWhy AvePoint chose Azure for its Office 365 solutions
Why AvePoint chose Azure for its Office 365 solutions
 
Introduction to Mind Machine Interfacing using Azure IoT Hub and other cloud ...
Introduction to Mind Machine Interfacing using Azure IoT Hub and other cloud ...Introduction to Mind Machine Interfacing using Azure IoT Hub and other cloud ...
Introduction to Mind Machine Interfacing using Azure IoT Hub and other cloud ...
 
Setting up SharePoint Farm in Azure using Azure Resource Manager (ARM)
Setting up SharePoint Farm in Azure using Azure Resource Manager (ARM)Setting up SharePoint Farm in Azure using Azure Resource Manager (ARM)
Setting up SharePoint Farm in Azure using Azure Resource Manager (ARM)
 
Intro to azure logic apps
Intro to azure logic appsIntro to azure logic apps
Intro to azure logic apps
 
My personal story from azure it pro to azure dev ops
My personal story from azure it pro to azure dev opsMy personal story from azure it pro to azure dev ops
My personal story from azure it pro to azure dev ops
 
Becoming the master of disaster... with asr
Becoming the master of disaster... with asrBecoming the master of disaster... with asr
Becoming the master of disaster... with asr
 
From 0 to Deployed
From 0 to DeployedFrom 0 to Deployed
From 0 to Deployed
 

Último

The basics of sentences session 3pptx.pptx
The basics of sentences session 3pptx.pptxThe basics of sentences session 3pptx.pptx
The basics of sentences session 3pptx.pptxheathfieldcps1
 
microwave assisted reaction. General introduction
microwave assisted reaction. General introductionmicrowave assisted reaction. General introduction
microwave assisted reaction. General introductionMaksud Ahmed
 
Python Notes for mca i year students osmania university.docx
Python Notes for mca i year students osmania university.docxPython Notes for mca i year students osmania university.docx
Python Notes for mca i year students osmania university.docxRamakrishna Reddy Bijjam
 
PROCESS RECORDING FORMAT.docx
PROCESS RECORDING FORMAT.docxPROCESS RECORDING FORMAT.docx
PROCESS RECORDING FORMAT.docxPoojaSen20
 
UGC NET Paper 1 Mathematical Reasoning & Aptitude.pdf
UGC NET Paper 1 Mathematical Reasoning & Aptitude.pdfUGC NET Paper 1 Mathematical Reasoning & Aptitude.pdf
UGC NET Paper 1 Mathematical Reasoning & Aptitude.pdfNirmal Dwivedi
 
Introduction to Nonprofit Accounting: The Basics
Introduction to Nonprofit Accounting: The BasicsIntroduction to Nonprofit Accounting: The Basics
Introduction to Nonprofit Accounting: The BasicsTechSoup
 
2024-NATIONAL-LEARNING-CAMP-AND-OTHER.pptx
2024-NATIONAL-LEARNING-CAMP-AND-OTHER.pptx2024-NATIONAL-LEARNING-CAMP-AND-OTHER.pptx
2024-NATIONAL-LEARNING-CAMP-AND-OTHER.pptxMaritesTamaniVerdade
 
SOC 101 Demonstration of Learning Presentation
SOC 101 Demonstration of Learning PresentationSOC 101 Demonstration of Learning Presentation
SOC 101 Demonstration of Learning Presentationcamerronhm
 
How to Manage Global Discount in Odoo 17 POS
How to Manage Global Discount in Odoo 17 POSHow to Manage Global Discount in Odoo 17 POS
How to Manage Global Discount in Odoo 17 POSCeline George
 
Spellings Wk 3 English CAPS CARES Please Practise
Spellings Wk 3 English CAPS CARES Please PractiseSpellings Wk 3 English CAPS CARES Please Practise
Spellings Wk 3 English CAPS CARES Please PractiseAnaAcapella
 
This PowerPoint helps students to consider the concept of infinity.
This PowerPoint helps students to consider the concept of infinity.This PowerPoint helps students to consider the concept of infinity.
This PowerPoint helps students to consider the concept of infinity.christianmathematics
 
Unit-V; Pricing (Pharma Marketing Management).pptx
Unit-V; Pricing (Pharma Marketing Management).pptxUnit-V; Pricing (Pharma Marketing Management).pptx
Unit-V; Pricing (Pharma Marketing Management).pptxVishalSingh1417
 
Magic bus Group work1and 2 (Team 3).pptx
Magic bus Group work1and 2 (Team 3).pptxMagic bus Group work1and 2 (Team 3).pptx
Magic bus Group work1and 2 (Team 3).pptxdhanalakshmis0310
 
General Principles of Intellectual Property: Concepts of Intellectual Proper...
General Principles of Intellectual Property: Concepts of Intellectual Proper...General Principles of Intellectual Property: Concepts of Intellectual Proper...
General Principles of Intellectual Property: Concepts of Intellectual Proper...Poonam Aher Patil
 
Basic Civil Engineering first year Notes- Chapter 4 Building.pptx
Basic Civil Engineering first year Notes- Chapter 4 Building.pptxBasic Civil Engineering first year Notes- Chapter 4 Building.pptx
Basic Civil Engineering first year Notes- Chapter 4 Building.pptxDenish Jangid
 
Jual Obat Aborsi Hongkong ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...
Jual Obat Aborsi Hongkong ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...Jual Obat Aborsi Hongkong ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...
Jual Obat Aborsi Hongkong ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...ZurliaSoop
 
Accessible Digital Futures project (20/03/2024)
Accessible Digital Futures project (20/03/2024)Accessible Digital Futures project (20/03/2024)
Accessible Digital Futures project (20/03/2024)Jisc
 
TỔNG ÔN TẬP THI VÀO LỚP 10 MÔN TIẾNG ANH NĂM HỌC 2023 - 2024 CÓ ĐÁP ÁN (NGỮ Â...
TỔNG ÔN TẬP THI VÀO LỚP 10 MÔN TIẾNG ANH NĂM HỌC 2023 - 2024 CÓ ĐÁP ÁN (NGỮ Â...TỔNG ÔN TẬP THI VÀO LỚP 10 MÔN TIẾNG ANH NĂM HỌC 2023 - 2024 CÓ ĐÁP ÁN (NGỮ Â...
TỔNG ÔN TẬP THI VÀO LỚP 10 MÔN TIẾNG ANH NĂM HỌC 2023 - 2024 CÓ ĐÁP ÁN (NGỮ Â...Nguyen Thanh Tu Collection
 
Dyslexia AI Workshop for Slideshare.pptx
Dyslexia AI Workshop for Slideshare.pptxDyslexia AI Workshop for Slideshare.pptx
Dyslexia AI Workshop for Slideshare.pptxcallscotland1987
 

Último (20)

The basics of sentences session 3pptx.pptx
The basics of sentences session 3pptx.pptxThe basics of sentences session 3pptx.pptx
The basics of sentences session 3pptx.pptx
 
microwave assisted reaction. General introduction
microwave assisted reaction. General introductionmicrowave assisted reaction. General introduction
microwave assisted reaction. General introduction
 
Python Notes for mca i year students osmania university.docx
Python Notes for mca i year students osmania university.docxPython Notes for mca i year students osmania university.docx
Python Notes for mca i year students osmania university.docx
 
PROCESS RECORDING FORMAT.docx
PROCESS RECORDING FORMAT.docxPROCESS RECORDING FORMAT.docx
PROCESS RECORDING FORMAT.docx
 
Asian American Pacific Islander Month DDSD 2024.pptx
Asian American Pacific Islander Month DDSD 2024.pptxAsian American Pacific Islander Month DDSD 2024.pptx
Asian American Pacific Islander Month DDSD 2024.pptx
 
UGC NET Paper 1 Mathematical Reasoning & Aptitude.pdf
UGC NET Paper 1 Mathematical Reasoning & Aptitude.pdfUGC NET Paper 1 Mathematical Reasoning & Aptitude.pdf
UGC NET Paper 1 Mathematical Reasoning & Aptitude.pdf
 
Introduction to Nonprofit Accounting: The Basics
Introduction to Nonprofit Accounting: The BasicsIntroduction to Nonprofit Accounting: The Basics
Introduction to Nonprofit Accounting: The Basics
 
2024-NATIONAL-LEARNING-CAMP-AND-OTHER.pptx
2024-NATIONAL-LEARNING-CAMP-AND-OTHER.pptx2024-NATIONAL-LEARNING-CAMP-AND-OTHER.pptx
2024-NATIONAL-LEARNING-CAMP-AND-OTHER.pptx
 
SOC 101 Demonstration of Learning Presentation
SOC 101 Demonstration of Learning PresentationSOC 101 Demonstration of Learning Presentation
SOC 101 Demonstration of Learning Presentation
 
How to Manage Global Discount in Odoo 17 POS
How to Manage Global Discount in Odoo 17 POSHow to Manage Global Discount in Odoo 17 POS
How to Manage Global Discount in Odoo 17 POS
 
Spellings Wk 3 English CAPS CARES Please Practise
Spellings Wk 3 English CAPS CARES Please PractiseSpellings Wk 3 English CAPS CARES Please Practise
Spellings Wk 3 English CAPS CARES Please Practise
 
This PowerPoint helps students to consider the concept of infinity.
This PowerPoint helps students to consider the concept of infinity.This PowerPoint helps students to consider the concept of infinity.
This PowerPoint helps students to consider the concept of infinity.
 
Unit-V; Pricing (Pharma Marketing Management).pptx
Unit-V; Pricing (Pharma Marketing Management).pptxUnit-V; Pricing (Pharma Marketing Management).pptx
Unit-V; Pricing (Pharma Marketing Management).pptx
 
Magic bus Group work1and 2 (Team 3).pptx
Magic bus Group work1and 2 (Team 3).pptxMagic bus Group work1and 2 (Team 3).pptx
Magic bus Group work1and 2 (Team 3).pptx
 
General Principles of Intellectual Property: Concepts of Intellectual Proper...
General Principles of Intellectual Property: Concepts of Intellectual Proper...General Principles of Intellectual Property: Concepts of Intellectual Proper...
General Principles of Intellectual Property: Concepts of Intellectual Proper...
 
Basic Civil Engineering first year Notes- Chapter 4 Building.pptx
Basic Civil Engineering first year Notes- Chapter 4 Building.pptxBasic Civil Engineering first year Notes- Chapter 4 Building.pptx
Basic Civil Engineering first year Notes- Chapter 4 Building.pptx
 
Jual Obat Aborsi Hongkong ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...
Jual Obat Aborsi Hongkong ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...Jual Obat Aborsi Hongkong ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...
Jual Obat Aborsi Hongkong ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...
 
Accessible Digital Futures project (20/03/2024)
Accessible Digital Futures project (20/03/2024)Accessible Digital Futures project (20/03/2024)
Accessible Digital Futures project (20/03/2024)
 
TỔNG ÔN TẬP THI VÀO LỚP 10 MÔN TIẾNG ANH NĂM HỌC 2023 - 2024 CÓ ĐÁP ÁN (NGỮ Â...
TỔNG ÔN TẬP THI VÀO LỚP 10 MÔN TIẾNG ANH NĂM HỌC 2023 - 2024 CÓ ĐÁP ÁN (NGỮ Â...TỔNG ÔN TẬP THI VÀO LỚP 10 MÔN TIẾNG ANH NĂM HỌC 2023 - 2024 CÓ ĐÁP ÁN (NGỮ Â...
TỔNG ÔN TẬP THI VÀO LỚP 10 MÔN TIẾNG ANH NĂM HỌC 2023 - 2024 CÓ ĐÁP ÁN (NGỮ Â...
 
Dyslexia AI Workshop for Slideshare.pptx
Dyslexia AI Workshop for Slideshare.pptxDyslexia AI Workshop for Slideshare.pptx
Dyslexia AI Workshop for Slideshare.pptx
 

Azure SQL Database

  • 1. Overview of Azure SQL Database Marcin Policht MCSE: Cloud Platform and Infrastructure https://www.linkedin.com/in/marcin-policht-857b013
  • 2. Agenda • Common Business and Technical Differentiators between Azure SQL Database and SQL Server in an Azure VM • Azure SQL Servers and Databases • Performance • Database Transaction Unit (DTU) • Database-level Service Tiers • Elastic Database Pools • Elastic Database Pool-level Service Tiers • Management and Development • Business Continuity • Disaster Recovery • Backups, Long-Term Backup Retention, and Restores • Security and Compliance • Authentication and Authorization • Encryption • Row-Level Security • Dynamic Data Masking • Auditing and Threat Detection • Temporal Tables • Monitoring • Query Performance Insights • Database Advisor
  • 3. Azure SQL Database Azure SQL Database is a cloud-based relational database service, built on the Microsoft SQL Server engine designed to deliver predictable performance and scalability, with virtually no downtime and near-zero server- level administration.
  • 4. Common Business Differentiators Azure SQL Database • You’re building new cloud-based applications to take advantage of cost savings and performance. • You need agility and scalability. • You want databases replicated in different regions of the world for disaster recovery. • You want to minimize server-level management overhead. SQL Server in an Azure VM • You want to build enterprise applications with OLTP databases larger than 4 TB. • You have existing IT resources and can maintain stewardship over backups, high availability and disaster recovery.
  • 5. Common Technical Differentiators Azure SQL Database SQL Server in an Azure VM • AlwaysOn Availability Groups/Database mirroring/Failover Clustering • Active Directory authentication • SQL Server Agent • Cross-database queries • Integration Services • Analysis Services • Database snapshots • Reporting Services • Profiler • Data Quality Services • Direct Azure VNet connectivity • Service Broker • Resource Governor https://docs.microsoft.com/en-us/azure/sql-database/sql-database-features • Active Geo-Replication • Azure Active Directory authentication • SSMS MFA • Autoscaling • Elastic pools • Elastic jobs • Elastic queries • Azure Data Factory • Azure Analysis Services • Server and database-level firewall • Elastic database tools • Threat detection • Database Advisor
  • 6. Azure SQL Servers and Databases Servers • Logical constructs • Host databases • Designate: • an Azure region • resource group • Serve as • security boundaries: • logins • server-level firewalls • connection endpoints: • auto-generated FQDN • xxxx.database.windows.net Databases • Share logical server settings • Have individually assigned: • Service tier: • Basic • Standard • Premium • Premium RS (preview) • Performance level • Expressed in DTUs • Provide additional security: • users (including contained users) • database-level firewalls
  • 7. Database Transaction Unit (DTU) . • A unit of measurement of platform resources guaranteed to be available to an Azure SQL database • CPU • Memory • I/O (data and transaction log) • Based on an OLTP benchmark workload • For details, refer to SQL Database benchmark overview • Directly proportional to database performance • e.g. a database with 1750 DTUs will have 350x more compute power than a database with 5 DTUs Intended for performance-based sizing of Azure SQL Database
  • 8. Database-level Service Tiers . • Represent performance and capacity: • Max DTUs (up to 4,000) • Max database size (up to 4 TB) • Max in-memory OLTP storage (up to 32 GB) • Max concurrent workers (up to 6,400) • Max concurrent logins (up to 6,400) • Max concurrent sessions (up to 30,000) • Backup retention period (up to 35 days) • Availability SLA • 99.99% - Basic, Standard, Premium • 99.9% - Premium RS • Further divided into performance levels: • Standard: S0, S1, S2, S3 • Premium: P1, P2, P4, P6, P11, P15 • Premium RS: PRS1, PRS2, PRS4, PRS6 • Shared max database size • Different performance characteristics Basic, Standard, Premium, Premium RS (preview)
  • 9. Management In majority of cases, working with Azure SQL Database data is the same as working with SQL Server data. • Rich and up-to-date transact- SQL (T-SQL) support • A few differences in DDL and DML(*) • Stored procedures, user-defined functions, triggers, and views • Newest features from SQL Server 2016 • The same tools: • SSMS, Visual Studio • Automation via PowerShell, Azure CLI, REST API (*) https://docs.microsoft.com/en-us/azure/sql-database/sql-database-transact-sql-information
  • 10. Developing Solutions Azure SQL Database tasks, scripts, methods, functions and processes can be created and managed in Visual Studio using SQL Server Data Tools. Azure SQL Database lets you parse and query data represented in JSON format, and export your relational data as JSON text. Connection libraries (on Windows, Linux, and Mac) for: • ADO.NET • Java • PHP (Windows only) • Node.js • Python • Ruby • C/C++ (Windows and Linux)
  • 11. Elastic Database Pools • A set number of eDTUs for a set price: • Predictable cost • Individual databases within the pool can autoscale: • Autoscaling boundaries determined by the min eDTU and max eDTU per database • min eDTU and max eDTU are pool level settings • Size limited by the smaller of the database service tier and remaining pool storage • Performance expressed in eDTUs • eDTU = DTU Cost effective solution to manage multiple databases with different usage patterns
  • 12. Elastic Database Pool-level Service Tiers . • Represent performance and capacity (per pool): • Max number of databases (up to 500) • Max eDTUs (up to 4,000) • Max data storage (up to 750 GB) • Max in-memory OLTP storage (up to 12 GB) • Max concurrent workers (up to 2,400) • Max concurrent logins (up to 2,400) • Max concurrent sessions (up to 30,000) • Min eDTU per database (down to 0) • Max eDTU per database (up to 4,000) • Divided into performance levels: • Based on total eDTUs per pool • Varying max data per pool size and performance characteristics • Each database in a pool has performance characteristics determined by the matching single database service tier • The min and max eDTU per database are determined by the pool performance level Basic, Standard, Premium, and Premium RS (preview)
  • 13. Disaster Recovery • Asynchronous replication of committed transactions • Available for all service tiers • Source and target can be standalone or pooled • Up to 4 readable secondaries: • can be located in any Azure region (requires a server at that location) • must use the same service tier • performance level can differ • Manual failover and failback • ERT < 30s, RPO < 5s • Replication reestablished automatically Built-in support offering minimal RTO and RPO
  • 14. Backups • Read Access Geo-Redundant (RA-GRS) • Retention service tier-dependent: • Basic: 7 days • Standard and Premium: 35 days • Frequency: • Transaction log: 5-10 minutes • Differential: every few hours • Full: weekly, starting immediately after db creation Automatic backup capabilities
  • 15. Long-Term Backup Retention (preview) • Requires an Azure Recovery vault: • Assigned on the server level • LRS or GRS (you decide) • Once configured, automatically copies full backups to the vault • Preserves encryption (TDE) • Configurable retention period (between 1 week and 10 years) • Cost according to the Azure Backup service pricing rates Supplements built-in backup capabilities beyond service tier- specific retention period
  • 16. Restores • Point-in-time • in the same region • within the service tier-specific retention period • Long-term • Within up to 10 years (when using long term retention with Azure Recovery Services vault) • Results in creation of a new database: • to any server in any region • within the same subscription • geo-restore uses full and differential backups (up to an hour of RPO) Point-in-time and long-term restore capabilities
  • 17. Authentication and Authorization • Authentication • SQL Server principals • logins: • one or more defined in master • users: • master – manage server-wide roles • user databases - include contained database users • Azure AD security principals • login: • defined in master • the server-level Azure AD Admin (privileges equivalent to the server admin) • users • user databases - Azure AD contained database users • Authorization • Role membership • Object-level permissions Support for two types of identities
  • 18. Security • Encryption • Transparent Data Encryption • Always Encrypted • Column/cell-level encryption • Row-level security • Dynamic data masking • Auditing • Threat detection • Firewall rules • Server-level • Database-level Includes the latest features of SQL Server 2016.
  • 19. Encryption Support for “always encrypted” and “transparent” encryption of the database, backups, transaction log files, and secondaries (DR) • Always encrypted • Data encrypted and decrypted within client apps • Always Encrypted-enabled driver • Transparent Data Encryption • Encryption via a symmetric key • The symmetric key protected by a built-in server-specific certificate • Certificates managed by Microsoft
  • 20. Row-level security • Based on characteristics of user or app executing queries: • group membership • execution context • Simplifies the design and coding of security in your application • Logic is located in the database tier Azure SQL Database supports row-level security making it easy to partition query results based on a user or an app
  • 21. Dynamic Data Masking • Policy-based • Based on masking rules and masking functions (e.g. credit card, email, etc.) • Supports user-based exclusions • A set of SQL users or AAD identities • Admin users always excluded • Hides sensitive data in the result set of a query targeting designated fields • Created and managed: • In the Azure Portal • Programmatically via SDKs and services • Scripting and T-SQL commands Dynamic data masking prevents unauthorized access to sensitive data by “masking” fields based on roles or permissions.
  • 22. Auditing and Threat Detection (preview) Capabilities • Retain an audit trail of selected event categories • Track database activity using preconfigured reports • Receive email alerts in response to suspicious events, unusual activity, and trends. Audited actions • Data access • DML – data changes • DCL – logins, users, roles and permissions • DDL – schema changes • Security exceptions
  • 23. Temporal Tables Temporal Tables provide administrators and developers the ability to track and analyze historical changes in data, similar to concepts of versioning, and even allow retention polices, similar to a document management system.
  • 24. Query Performance Insight • Deeper insight into your databases resource consumption • The ability to drill down into the details of a query, view its text and history of resource utilization • Performance tuning annotations that show actions performed by SQL Azure Database Advisor • Relies on Query Store Makes it easy to troubleshoot Azure SQL Database performance
  • 25. Database Advisor • Three impact-based categories: • High impact recommendations should provide the most significant performance impact. • Medium impact recommendations should improve performance, but not substantially. • Low impact recommendations should provide better performance than without, but improvements might not be significant. • Recommendations: • Create index • Drop index • Parameterize queries • Fix schema issues Recommendations to improve query performance