search

Which AWS service or feature can be used to create a private connection between an on

1 Jahrs vor
Kommentare: 0
Ansichten: 77

Skip to main content

This browser is no longer supported.

Show

Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.

AWS to Azure services comparison

  • Article
  • 11/30/2022
  • 29 minutes to read

In this article

This article helps you understand how Microsoft Azure services compare to Amazon Web Services (AWS). Whether you are planning a multicloud solution with Azure and AWS, or migrating to Azure, you can compare the IT capabilities of Azure and AWS services in all categories.

This article compares services that are roughly comparable. Not every AWS service or Azure service is listed, and not every matched service has exact feature-for-feature parity.

Azure and AWS for multicloud solutions

As the leading public cloud platforms, Azure and AWS each offer a broad and deep set of capabilities with global coverage. Yet many organizations choose to use both platforms together for greater choice and flexibility, as well as to spread their risk and dependencies with a multicloud approach. Consulting companies and software vendors might also build on and use both Azure and AWS, as these platforms represent most of the cloud market demand.

For an overview of Azure for AWS users, see Introduction to Azure for AWS professionals.

Marketplace

AWS serviceAzure serviceDescription
AWS Marketplace Azure Marketplace Easy-to-deploy and automatically configured third-party applications, including single virtual machine or multiple virtual machine solutions.

AI and machine learning

AWS serviceAzure serviceDescription
SageMaker Machine Learning A cloud service to train, deploy, automate, and manage machine learning models.
Alexa Skills Kit Bot Framework Build and connect intelligent bots that interact with your users using text/SMS, Skype, Teams, Slack, Microsoft 365 mail, Twitter, and other popular services.
Lex Speech Services API capable of converting speech to text, understanding intent, and converting text back to speech for natural responsiveness.
Lex Language Understanding (LUIS) Allows your applications to understand user commands contextually.
Polly, Transcribe Speech Services Enables both Speech to Text, and Text into Speech capabilities.
Rekognition Cognitive Services Computer Vision: Extract information from images to categorize and process visual data.

Face: Detect, identify, and analyze faces and facial expressions in photos.

Skills Kit Virtual Assistant The Virtual Assistant Template brings together a number of best practices we've identified through the building of conversational experiences and automates integration of components that we've found to be highly beneficial to Bot Framework developers.

AI and machine learning architectures

  • Which AWS service or feature can be used to create a private connection between an on

    Image classification on Azure

    • 7/05/2018
    • 4 min read

    Learn how to build image processing into your applications by using Azure services such as the Computer Vision API and Azure Functions.

  • Which AWS service or feature can be used to create a private connection between an on

    Predictive Marketing with Machine Learning

    • 12/16/2019
    • 2 min read

    Learn how to build a machine-learning model with Microsoft R Server on Azure HDInsight Spark clusters to recommend actions to maximize the purchase rate.

  • Which AWS service or feature can be used to create a private connection between an on

    Scalable personalization on Azure

    • 5/31/2019
    • 6 min read

    Use machine learning to automate content-based personalization for customers.

view all

Big data and analytics

Data warehouse

AWS serviceAzure serviceDescription
Redshift Synapse Analytics Cloud-based enterprise data warehouse (EDW) that uses massively parallel processing (MPP) to quickly run complex queries across petabytes of data.
Lake Formation Data Share A simple and safe service for sharing big data.

Data warehouse architectures

  • Which AWS service or feature can be used to create a private connection between an on

    Modern Data Warehouse Architecture

    • 12/16/2019
    • 2 min read

    Explore a cloud data warehouse that uses big data. Modern data warehouse brings together all your data and scales easily as your data grows.

  • Which AWS service or feature can be used to create a private connection between an on

    Automated enterprise BI

    • 6/03/2020
    • 13 min read

    Automate an extract, load, and transform (ELT) workflow in Azure using Azure Data Factory with Azure Synapse Analytics.

view all

Time series

AWS serviceAzure serviceDescription
Amazon Timestream Azure Data Explorer

Azure Time Series Insights

Fully managed, low latency, and distributed big data analytics platform that runs complex queries across petabytes of data. Highly optimized for log and time series data.

Open and scalable end-to-end IoT analytics service. Collect, process, store, query, and visualize data at Internet of Things (IoT) scale--data that's highly contextualized and optimized for time series.

Time series architectures

  • Which AWS service or feature can be used to create a private connection between an on

    IoT analytics with Azure Data Explorer

    • 8/11/2020
    • 3 min read

    IoT Telemetry Analytics with Azure Data Explorer demonstrates near real-time analytics over fast flowing, high volume, wide variety of streaming data from IoT devices.

  • Which AWS service or feature can be used to create a private connection between an on

    Azure Data Explorer interactive analytics

    • 8/11/2020
    • 3 min read

    Interactive Analytics with Azure Data Explorer focuses on its integration with the rest of the data platform ecosystem.

Big data processing

AWS serviceAzure serviceDescription
EMR Azure Data Explorer Fully managed, low latency, distributed big data analytics platform to run complex queries across petabytes of data.
EMR Databricks Apache Spark-based analytics platform.
EMR HDInsight Managed Hadoop service. Deploy and manage Hadoop clusters in Azure.
EMR Data Lake Storage Massively scalable, secure data lake functionality built on Azure Blob Storage.

Big data architectures

  • Which AWS service or feature can be used to create a private connection between an on

    Azure data platform end-to-end

    • 1/31/2020
    • 7 min read

    Use Azure services to ingest, process, store, serve, and visualize data from different sources.

  • Which AWS service or feature can be used to create a private connection between an on

    Campaign Optimization with Azure HDInsight Spark Clusters

    • 12/16/2019
    • 4 min read

    This solution demonstrates how to build and deploy a machine learning model with Microsoft R Server on Azure HDInsight Spark clusters to recommend actions to maximize the purchase rate of leads targeted by a campaign. This solution enables efficient handling of big data on Spark with Microsoft R Server.

  • Which AWS service or feature can be used to create a private connection between an on

    Big data analytics with Azure Data Explorer

    • 8/11/2020
    • 3 min read

    Big Data Analytics with Azure Data Explorer demonstrates Azure Data Explorer's abilities to cater to volume, velocity, and variety of data, the three V's of big data.

view all

Data orchestration / ETL

AWS serviceAzure serviceDescription
Data Pipeline, Glue Data Factory Processes and moves data between different compute and storage services, as well as on-premises data sources at specified intervals. Create, schedule, orchestrate, and manage data pipelines.
Glue Azure Purview A unified data governance service that helps you manage and govern your on-premises, multicloud, and software as a service (SaaS) data.
Dynamo DB Table storage, Azure Cosmos DB NoSQL key-value store for rapid development using massive semi-structured datasets.

Analytics and visualization

AWS serviceAzure serviceDescription
Kinesis Analytics Stream Analytics

Azure Data Explorer

Data Lake Analytics

Data Lake Store

Storage and analysis platforms that create insights from large quantities of data, or data that originates from many sources.
QuickSight Power BI Business intelligence tools that build visualizations, perform ad hoc analysis, and develop business insights from data.
CloudSearch Cognitive Search Delivers full-text search and related search analytics and capabilities.
Athena Data Lake Analytics

Azure Synapse Analytics

Provides a serverless interactive query service that uses standard SQL for analyzing databases.

Azure Synapse Analytics is a limitless analytics service that brings together data integration, enterprise data warehousing, and big data analytics. It gives you the freedom to query data on your terms, using either serverless or dedicated resources at scale.

Elasticsearch Service Elastic on Azure Use the Elastic Stack (Elastic, Logstash, and Kibana) to search, analyze, and visualize in real time.

Analytics architectures

  • Which AWS service or feature can be used to create a private connection between an on

    Advanced Analytics Architecture

    • 12/16/2019
    • 2 min read

    Get near real-time data analytics on streaming services. This big data architecture allows you to combine any data at any scale with custom machine learning.

  • Which AWS service or feature can be used to create a private connection between an on

    Automated enterprise BI

    • 6/03/2020
    • 13 min read

    Automate an extract, load, and transform (ELT) workflow in Azure using Azure Data Factory with Azure Synapse Analytics.

  • Which AWS service or feature can be used to create a private connection between an on

    Mass ingestion and analysis of news feeds on Azure

    • 2/01/2019
    • 5 min read

    Create a pipeline for ingesting and analyzing text, images, sentiment, and other data from RSS news feeds using only Azure services, including Azure Cosmos DB and Azure Cognitive Services.

view all

Compute

Virtual machines and servers

Virtual machines (VMs) and servers allow users to deploy, manage, and maintain OS and other software. Users pay for what they use, with the flexibility to change sizes.

AWS serviceAzure serviceDescription
Amazon EC2 Instance Types Azure Virtual Machines AWS and Azure on-demand VMs bill per seconds used. Although AWS instance types and Azure VM sizes have similar categories, the exact RAM, CPU, and storage capabilities differ. For information about Azure VM sizes, see Azure VM sizes.
VMware Cloud on AWS Azure VMware Solution AWS and Azure solutions let you move VMware vSphere-based workloads and environments to the cloud. Azure VMware Solution is a VMware-verified Microsoft service that runs on Azure infrastructure. You can manage existing environments with VMware solution tools, while modernizing applications with cloud native services.
AWS Parallel Cluster Azure CycleCloud Create, manage, operate, and optimize HPC and large compute clusters of any scale.

View all the virtual machines architectures

Autoscaling

Autoscaling lets you automatically change the number of VM instances. You set defined metrics and thresholds that determine when to add or remove instances.

AWS serviceAzure serviceDescription
AWS Auto Scaling Virtual machine scale sets, App Service autoscale In Azure, virtual machine scale sets let you deploy and manage identical sets of VMs. The number of sets can autoscale. App Service autoscale lets you autoscale Azure App Service applications.

View all the autoscaling architectures

Batch processing

Batch processing runs large-scale parallel and high-performance computing applications efficiently in the cloud.

AWS serviceAzure serviceDescription
AWS Batch Azure Batch Azure Batch helps you manage compute-intensive work across a scalable collection of VMs.

View all the batch processing architectures

Storage

Several services provide different types of data storage for VM disks.

AWS serviceAzure serviceDescription
Disk volumes on Amazon Elastic Block Store (EBS) Data disks in Azure Blob Storage. Data disks in blob storage provide durable data storage for Azure VMs. This storage is similar to AWS EC2 instance disk volumes on EBS.
Amazon EC2 instance store Azure temporary storage Azure temporary storage provides VMs with similar low-latency temporary read-write storage to EC2 instance storage, also called ephemeral storage.
Amazon EBS Provisioned IOPS Volume Azure premium storage Azure supports higher performance disk I/O with premium storage. This storage is similar to AWS Provisioned IOPS storage options.
Amazon Elastic File System (EFS) Azure Files Azure Files provides VMs with similar functionality to Amazon EFS.

View all the storage architectures

Containers and container orchestrators

Several AWS and Azure services provide containerized application deployment and orchestration.

AWS serviceAzure serviceDescription
Amazon Elastic Container Service (Amazon ECS), AWS Fargate Azure Container Apps Azure Container Apps is a scalable service that lets you deploy thousands of containers without requiring access to the control plane.
Amazon Elastic Container Registry (Amazon ECR) Azure Container Registry Container registries store Docker formatted images and create all types of container deployments in the cloud.
Amazon Elastic Kubernetes Service (EKS) Azure Kubernetes Service (AKS) EKS and AKS let you orchestrate Docker containerized application deployments with Kubernetes. AKS simplifies monitoring and cluster management through auto upgrades and a built-in operations console. See Container runtime configuration for specifics on the hosting environment.
AWS App Mesh Open Service Mesh on AKS The Open Service Mesh add-on integrates with features provided by Azure as well as open source projects.

Example container architectures

  • Which AWS service or feature can be used to create a private connection between an on

    Baseline architecture on Azure Kubernetes Service (AKS)

    • 07/20/2020
    • 37 min read

    Deploy a baseline infrastructure that deploys an AKS cluster with focus on security.

  • Which AWS service or feature can be used to create a private connection between an on

    Microservices architecture on Azure Kubernetes Service (AKS)

    • 5/07/2020
    • 17 min read

    Deploy a microservices architecture on Azure Kubernetes Service (AKS)

  • Which AWS service or feature can be used to create a private connection between an on

    CI/CD pipeline for container-based workloads

    • 7/05/2018
    • 7 min read

    Build a DevOps pipeline for a Node.js web app with Jenkins, Azure Container Registry, Azure Kubernetes Service, Azure Cosmos DB, and Grafana.

View all the container architectures

Serverless computing

Serverless computing lets you integrate systems and run backend processes without provisioning or managing servers.

AWS serviceAzure serviceDescription
AWS Lambda Azure Functions, WebJobs in Azure App Service Azure Functions is the primary equivalent of AWS Lambda in providing serverless, on-demand code. AWS Lambda functionality also overlaps with Azure WebJobs, which let you schedule or continuously run background tasks.

Example serverless architectures

  • Which AWS service or feature can be used to create a private connection between an on

    Social App for Mobile and Web with Authentication

    • 12/16/2019
    • 3 min read

    View a detailed, step-by-step diagram depicting the build process and implementation of the mobile client app architecture that offers social image sharing with a companion web app and authentication abilities, even while offline.

  • Which AWS service or feature can be used to create a private connection between an on

    HIPAA and HITRUST compliant health data AI

    • 12/16/2019
    • 2 min read

    Manage HIPAA and HITRUST compliant health data and medical records with the highest level of built-in security.

  • Which AWS service or feature can be used to create a private connection between an on

    Cross Cloud Scaling Architecture

    • 12/16/2019
    • 1 min read

    Learn how to improve cross cloud scalability with solution architecture that includes Azure Stack. A step-by-step flowchart details instructions for implementation.

View all the serverless architectures

Database

TypeAWS ServiceAzure ServiceDescription
Relational database RDS SQL Database

Database for MySQL

Database for PostgreSQL

Database for MariaDB

Managed relational database services in which resiliency, scale and maintenance are primarily handled by the Azure platform.
Serverless relational database Amazon Aurora Serverless Azure SQL Database serverless

Serverless SQL pool in Azure Synapse Analytics

Database offerings that automatically scales compute based on the workload demand. You're billed per second for the actual compute used (Azure SQL)/data that's processed by your queries (Azure Synapse Analytics Serverless).
NoSQL DynamoDB (Key-Value)

SimpleDB

Amazon DocumentDB (Document)

Amazon Neptune (Graph)

Azure Cosmos DB Azure Cosmos DB is a globally distributed, multi-model database that natively supports multiple data models including key-value pairs, documents, graphs, and columnar.
Caching ElastiCache

Amazon MemoryDB for Redis

Cache for Redis An in-memory–based, distributed caching service that provides a high-performance store that's typically used to offload nontransactional work from a database.
Database migration Database Migration Service Database Migration Service A service that executes the migration of database schema and data from one database format to a specific database technology in the cloud.

Database architectures

  • Which AWS service or feature can be used to create a private connection between an on

    Gaming using Azure Cosmos DB

    • 12/16/2019
    • 1 min read

    Elastically scale your database to accommodate unpredictable bursts of traffic and deliver low-latency multi-player experiences on a global scale.

  • Which AWS service or feature can be used to create a private connection between an on

    Oracle Database Migration to Azure

    • 12/16/2019
    • 2 min read

    Oracle DB migrations can be accomplished in multiple ways. This architecture covers one of these options wherein Oracle Active Data Guard is used to migrate the Database.

  • Which AWS service or feature can be used to create a private connection between an on

    Retail and e-commerce using Azure MySQL

    • 12/16/2019
    • 1 min read

    Build secure and scalable e-commerce solutions that meet the demands of both customers and business using Azure Database for MySQL.

view all

DevOps and application monitoring

AWS serviceAzure serviceDescription
CloudWatch, X-Ray Monitor Comprehensive solution for collecting, analyzing, and acting on telemetry from your cloud and on-premises environments.
CodeDeploy

CodeCommit

CodePipeline

DevOps A cloud service for collaborating on code development.
Developer Tools Developer Tools Collection of tools for building, debugging, deploying, diagnosing, and managing multiplatform scalable apps and services.
CodeBuild DevOps Pipeline

Github Actions

Fully managed build service that supports continuous integration and deployment.
Command Line Interface CLI

PowerShell

Built on top of the native REST API across all cloud services, various programming language-specific wrappers provide easier ways to create solutions.
eksctl az aks Manage Azure Kubernetes Service using these Azure CLI commands.
AWS CloudShell Azure Cloud Shell Azure Cloud Shell is an interactive, authenticated, browser-accessible shell for managing Azure resources. It gives you the flexibility to choose the shell experience that best suits the way you work, either Bash or PowerShell.
OpsWorks (Chef-based) Automation Configures and operates applications of all shapes and sizes, and provides templates to create and manage a collection of resources.
CloudFormation Resource Manager

Bicep

VM extensions

Azure Automation

Provides a way for users to automate the manual, long-running, error-prone, and frequently repeated IT tasks.

DevOps architectures

  • Which AWS service or feature can be used to create a private connection between an on

    Container CI/CD using Jenkins and Kubernetes on Azure Kubernetes Service (AKS)

    • 12/16/2019
    • 2 min read

    Containers make it easy for you to continuously build and deploy applications. By orchestrating the deployment of those containers using Azure Kubernetes Service (AKS), you can achieve replicable, manageable clusters of containers.

  • Which AWS service or feature can be used to create a private connection between an on

    Run a Jenkins server on Azure

    • 11/19/2020
    • 6 min read

    Recommended architecture that shows how to deploy and operate a scalable, enterprise-grade Jenkins server on Azure secured with single sign-on (SSO).

  • Which AWS service or feature can be used to create a private connection between an on

    DevOps in a hybrid environment

    • 12/16/2019
    • 3 min read

    The tools provided in Azure allow for the implementation of a DevOps strategy that capably manages both cloud and on-premises environments in tandem.

view all

Internet of things (IoT)

AWS serviceAzure serviceDescription
IoT Core IoT Hub A cloud gateway for managing bidirectional communication with billions of IoT devices, securely and at scale.
Greengrass IoT Edge Deploy cloud intelligence directly onto IoT devices, catering to on-premises scenarios.
Kinesis Firehose, Kinesis Streams Event Hubs Services that facilitate the mass ingestion of events (messages), typically from devices and sensors. The data can then be processed in real-time micro-batches or be written to storage for further analysis.
IoT Things Graph Digital Twins Services you can use to create digital representations of real-world things, places, business processes, and people. Use these services to gain insights, drive the creation of better products and new customer experiences, and optimize operations and costs.

IoT architectures

  • Which AWS service or feature can be used to create a private connection between an on

    IoT Architecture � Azure IoT Subsystems

    • 12/16/2019
    • 1 min read

    Learn about our recommended IoT application architecture that supports hybrid cloud and edge computing. A flowchart details how the subsystems function within the IoT application.

  • Which AWS service or feature can be used to create a private connection between an on

    Azure IoT reference architecture

    • 9/10/2020
    • 12 min read

    Recommended architecture for IoT applications on Azure using PaaS (platform-as-a-service) components

  • Which AWS service or feature can be used to create a private connection between an on

    Process real-time vehicle data using IoT

    • 11/17/2020
    • 5 min read

    This example builds a real-time data ingestion/processing pipeline to ingest and process messages from IoT devices into a big data analytic platform in Azure.

view all

Management and governance

AWS serviceAzure serviceDescription
AWS Organizations Management Groups Azure management groups help you organize your resources and subscriptions.
AWS Well-Architected Tool Azure Well-Architected Review Examine your workload through the lenses of reliability, cost management, operational excellence, security, and performance efficiency.
Trusted Advisor Advisor Provides analysis of cloud resource configuration and security, so that subscribers can ensure they're making use of best practices and optimum configurations.
AWS Billing and Cost Management Azure Cost Management and Billing Azure Cost Management and Billing helps you understand your Azure invoice (bill), manage your billing account and subscriptions, monitor and control Azure spending, and optimize resource use.
Cost and Usage Reports Usage Details API Services to help generate, monitor, forecast, and share billing data for resource usage by time, organization, or product resources.
Management Console Portal A unified management console that simplifies building, deploying, and operating your cloud resources.
Application Discovery Service Migrate Assesses on-premises workloads for migration to Azure, performs performance-based sizing, and provides cost estimations.
Systems Manager Monitor Comprehensive solution for collecting, analyzing, and acting on telemetry from your cloud and on-premises environments.
Personal Health Dashboard Resource Health Provides detailed information about the health of resources, as well as recommended actions for maintaining resource health.
CloudTrail Activity log The Activity log is a platform log in Azure that provides insight into subscription-level events, such as when a resource is modified or when a virtual machine is started.
CloudWatch Application Insights A feature of Azure Monitor, Application Insights is an extensible Application Performance Management (APM) service for developers and DevOps professionals, which provides telemetry insights and information, in order to better understand how applications are performing and to identify areas for optimization.
Config Application Change Analysis Application Change Analysis detects various types of changes, from the infrastructure layer all the way to application deployment.
Cost Explorer Cost Management Optimize costs while maximizing cloud potential.
Control Tower Blueprints Set up and govern a multi account/subscription environment by creating landing zones.
Resource Groups and Tag Editor Resource Groups and Tags A Resource Group is a container that holds related resources for an Azure solution. Apply tags to your Azure resources to logically organize them by categories.
AWS AppConfig Azure App Configuration Azure App Configuration is a managed service that helps developers centralize their application and feature settings simply and securely.
Service Catalog Azure Managed Applications Offers cloud solutions that are easy for consumers to deploy and operate.
SDKs and tools SDKs and tools Manage and interact with Azure services the way you prefer, programmatically from your language of choice, by using the Azure SDKs, our collection of tools, or both.

Messaging and eventing

AWS serviceAzure serviceDescription
Simple Queue Service (SQS) Queue Storage Provides a managed message queueing service for communicating between decoupled application components.
Simple Notification Service (SNS) Service Bus Supports a set of cloud-based, message-oriented middleware technologies, including reliable message queuing and durable publish/subscribe messaging.
Amazon EventBridge Event Grid A fully managed event routing service that allows for uniform event consumption using a publish/subscribe model.
Amazon Kinesis Event Hubs A fully managed, real-time data ingestion service. Stream millions of events per second, from any source, to build dynamic data pipelines and to immediately respond to business challenges.
Amazon MQ Service Bus Service Bus Premium is fully compliant with the Java/Jakarta EE Java Message Service (JMS) 2.0 API. Service Bus Standard supports the JMS 1.1 subset focused on queues.

Messaging architectures

  • Which AWS service or feature can be used to create a private connection between an on

    Anomaly Detector Process

    • 12/16/2019
    • 1 min read

    Learn more about Anomaly Detector with a step-by-step flowchart that details the process. See how anomaly detection models are selected with time-series data.

  • Which AWS service or feature can be used to create a private connection between an on

    Scalable web application

    • 10/03/2019
    • 7 min read

    Use the proven practices in this reference architecture to improve scalability and performance in an Azure App Service web application..

  • Which AWS service or feature can be used to create a private connection between an on

    Enterprise integration using queues and events

    • 12/03/2018
    • 5 min read

    Recommended architecture for implementing an enterprise integration pattern with Azure Logic Apps, Azure API Management, Azure Service Bus, and Azure Event Grid.

  • Which AWS service or feature can be used to create a private connection between an on

    Ops automation using Event Grid

    • 12/16/2019
    • 1 min read

    Event Grid allows you to speed automation and simplify policy enforcement. For example, Event Grid can notify Azure Automation when a virtual machine is created, or a SQL Database is spun up. These events can be used to automatically check that service configurations are compliant, put metadata into operations tools, tag virtual machines, or file work items.

Mobile services

AWS serviceAzure serviceDescription
Mobile Hub App Center

Xamarin Apps

Provides backend mobile services for rapid development of mobile solutions, identity management, data synchronization, and storage and notifications across devices.
Mobile SDK App Center Provides the technology to rapidly build cross-platform and native apps for mobile devices.
Cognito Azure Active Directory Provides authentication capabilities for mobile applications.
Device Farm App Center Provides services to support testing mobile applications.
Mobile Analytics App Center Supports monitoring, and feedback collection for the debugging and analysis of a mobile application service quality.

Device Farm

The AWS Device Farm provides cross-device testing services. In Azure, Visual Studio App Center provides similar cross-device front-end testing for mobile devices.

In addition to front-end testing, the Azure DevTest Labs provides back-end testing resources for Linux and Windows environments.

Mobile architectures

  • Which AWS service or feature can be used to create a private connection between an on

    Scalable web and mobile applications using Azure Database for PostgreSQL

    • 12/16/2019
    • 1 min read

    Use Azure Database for PostgreSQL to rapidly build engaging, performant, and scalable cross-platform and native apps for iOS, Android, Windows, or Mac.

  • Which AWS service or feature can be used to create a private connection between an on

    Social App for Mobile and Web with Authentication

    • 12/16/2019
    • 3 min read

    View a detailed, step-by-step diagram depicting the build process and implementation of the mobile client app architecture that offers social image sharing with a companion web app and authentication abilities, even while offline.

  • Which AWS service or feature can be used to create a private connection between an on

    Task-Based Consumer Mobile App

    • 12/16/2019
    • 3 min read

    Learn how the task-based consumer mobile app architecture is created with a step-by-step flow chart that shows the integration with Azure App Service Mobile Apps, Visual Studio, and Xamarin to simplify the build process.

view all

Networking

AreaAWS serviceAzure serviceDescription
Cloud virtual networking Virtual Private Cloud (VPC) Virtual Network Provides an isolated, private environment in the cloud. Users have control over their virtual networking environment, including selection of their own IP address range, creation of subnets, and configuration of route tables and network gateways.
NAT gateways NAT Gateways Virtual Network NAT A service that simplifies outbound-only Internet connectivity for virtual networks. When configured on a subnet, all outbound connectivity uses your specified static public IP addresses. Outbound connectivity is possible without a load balancer or public IP addresses directly attached to virtual machines.
Cross-premises connectivity VPN Gateway VPN Gateway Connects Azure virtual networks to other Azure virtual networks, or customer on-premises networks (Site To Site). Allows end users to connect to Azure services through VPN tunneling (Point To Site).
DNS management Route 53 DNS Manage your DNS records using the same credentials and billing and support contract as your other Azure services
DNS-based routing Route 53 Traffic Manager A service that hosts domain names, plus routes users to Internet applications, connects user requests to datacenters, manages traffic to apps, and improves app availability with automatic failover.
Dedicated network Direct Connect ExpressRoute Establishes a dedicated, private network connection from a location to the cloud provider (not over the Internet).
Load balancing Network Load Balancer Load Balancer Azure Load Balancer load balances traffic at layer 4 (TCP or UDP). Standard Load Balancer also supports cross-region or global load balancing.
Application-level load balancing Application Load Balancer Application Gateway Application Gateway is a layer 7 load balancer. It supports SSL termination, cookie-based session affinity, and round robin for load-balancing traffic.
Route table Custom Route Tables User Defined Routes Custom, or user-defined (static) routes to override default system routes, or to add more routes to a subnet's route table.
Private link PrivateLink Azure Private Link Azure Private Link provides private access to services that are hosted on the Azure platform. This keeps your data on the Microsoft network.
Private PaaS connectivity VPC endpoints Private Endpoint Private Endpoint provides secured, private connectivity to various Azure platform as a service (PaaS) resources, over a backbone Microsoft private network.
Virtual network peering VPC Peering VNET Peering VNet peering is a mechanism that connects two virtual networks (VNets) in the same region through the Azure backbone network. Once peered, the two virtual networks appear as one for all connectivity purposes.
Content delivery networks CloudFront Front Door Azure Front Door is a modern cloud content delivery network (CDN) service that delivers high performance, scalability, and secure user experiences for your content and applications.
Network Monitoring VPC Flow Logs Azure Network Watcher Azure Network Watcher allows you to monitor, diagnose, and analyze the traffic in Azure Virtual Network.

Networking architectures

  • Which AWS service or feature can be used to create a private connection between an on

    Deploy highly available NVAs

    • 12/08/2018
    • 7 min read

    Learn how to deploy network virtual appliances for high availability in Azure. This article includes example architectures for ingress, egress, and both.

  • Which AWS service or feature can be used to create a private connection between an on

    Hub-spoke network topology in Azure

    • 9/30/2020
    • 7 min read

    Learn how to implement a hub-spoke topology in Azure, where the hub is a virtual network and the spokes are virtual networks that peer with the hub.

  • Which AWS service or feature can be used to create a private connection between an on

    Implement a secure hybrid network

    • 1/07/2020
    • 9 min read

    See a secure hybrid network that extends an on-premises network to Azure with a perimeter network between the on-premises network and an Azure virtual network.

view all

Security, identity, and access

Authentication and authorization

AWS serviceAzure serviceDescription
Identity and Access Management (IAM) Azure Active Directory Allows users to securely control access to services and resources while offering data security and protection. Create and manage users and groups, and use permissions to allow and deny access to resources.
Identity and Access Management (IAM) Azure role-based access control Azure role-based access control (Azure RBAC) helps you manage who has access to Azure resources, what they can do with those resources, and what areas they have access to.
Organizations Subscription Management + Azure RBAC Security policy and role management for working with multiple accounts.
Multi-Factor Authentication Azure Active Directory Safeguard access to data and applications, while meeting user demand for a simple sign-in process.
Directory Service Azure Active Directory Domain Services Provides managed domain services, such as domain join, group policy, LDAP, and Kerberos/NTLM authentication, which are fully compatible with Windows Server Active Directory.
Cognito Azure Active Directory B2C A highly available, global, identity management service for consumer-facing applications that scales to hundreds of millions of identities.
Organizations Policy Azure Policy is a service in Azure that you use to create, assign, and manage policies. These policies enforce different rules and effects over your resources, so those resources stay compliant with your corporate standards and service level agreements.
Organizations Management Groups Azure management groups provide a level of scope above subscriptions. You organize subscriptions into containers called "management groups" and apply your governance conditions to the management groups. All subscriptions within a management group automatically inherit the conditions applied to the management group. Management groups give you enterprise-grade management at a large scale, no matter what type of subscriptions you have.

Encryption

AWS serviceAzure serviceDescription
Server-side encryption with Amazon S3 Key Management Service Azure Storage Service Encryption Helps you protect and safeguard your data and meet your organizational security and compliance commitments.
Key Management Service (KMS), CloudHSM Key Vault Provides security solution and works with other services by providing a way to manage, create, and control encryption keys stored in hardware security modules (HSM).

Firewall

AWS serviceAzure serviceDescription
Web Application Firewall Web Application Firewall A firewall that protects web applications from common web exploits.
Web Application Firewall Firewall Provides inbound protection for non-HTTP/S protocols, outbound network-level protection for all ports and protocols, and application-level protection for outbound HTTP/S.

Security

AWS serviceAzure serviceDescription
Inspector Defender for Cloud An automated security assessment service that improves the security and compliance of applications. Automatically assess applications for vulnerabilities or deviations from best practices.
Certificate Manager App Service Certificates available on the Portal Service that allows customers to create, manage, and consume certificates seamlessly in the cloud.
GuardDuty Advanced Threat Protection Detect and investigate advanced attacks on-premises and in the cloud.
Artifact Service Trust Portal Provides access to audit reports, compliance guides, and trust documents from across cloud services.
Shield DDos Protection Service Provides cloud services with protection from distributed denial of services (DDoS) attacks.

Security architectures

  • Which AWS service or feature can be used to create a private connection between an on

    Real-time fraud detection

    • 7/05/2018
    • 4 min read

    Detect fraudulent activity in real-time using Azure Event Hubs and Stream Analytics.

  • Which AWS service or feature can be used to create a private connection between an on

    Securely managed web applications

    • 5/09/2019
    • 8 min read

    Learn about deploying secure applications using the Azure App Service Environment, the Azure Application Gateway service, and Web Application Firewall.

  • Which AWS service or feature can be used to create a private connection between an on

    Threat indicators for cyber threat intelligence in Azure Sentinel

    • 4/13/2020
    • 13 min read

    Import threat indicators, view logs, create rules to generate security alerts and incidents, and visualize threat intelligence data with Azure Sentinel.

view all

Storage

Object storage

AWS serviceAzure serviceDescription
Simple Storage Services (S3) Blob storage Object storage service, for use cases including cloud applications, content distribution, backup, archiving, disaster recovery, and big data analytics.

Virtual server disks

AWS serviceAzure serviceDescription
Elastic Block Store (EBS) managed disks SSD storage optimized for I/O intensive read/write operations. For use as high-performance Azure virtual machine storage.

Shared files

AWS serviceAzure serviceDescription
Elastic File System Files Provides a simple interface to create and configure file systems quickly, and share common files. Can be used with traditional protocols that access files over a network.

Archiving and backup

AWS serviceAzure serviceDescription
S3 Infrequent Access (IA) Storage cool tier Cool storage is a lower-cost tier for storing data that is infrequently accessed and long-lived.
S3 Glacier, Deep Archive Storage archive access tier Archive storage has the lowest storage cost and higher data retrieval costs compared to hot and cool storage.
Backup Backup Back up and recover files and folders from the cloud, and provide offsite protection against data loss.

Hybrid storage

AWS serviceAzure serviceDescription
Storage Gateway StorSimple Integrates on-premises IT environments with cloud storage. Automates data management and storage, plus supports disaster recovery.
DataSync File Sync Azure Files can be deployed in two main ways: by directly mounting the serverless Azure file shares or by caching Azure file shares on-premises using Azure File Sync.

Bulk data transfer

AWS serviceAzure serviceDescription
Import/Export Disk Import/Export A data transport solution that uses secure disks and appliances to transfer large amounts of data. Also offers data protection during transit.
Import/Export Snowball, Snowball Edge, Snowmobile Data Box Petabyte- to exabyte-scale data transport solution that uses secure data storage devices to transfer large amounts of data to and from Azure.

Storage architectures

  • Which AWS service or feature can be used to create a private connection between an on

    HIPAA and HITRUST compliant health data AI

    • 12/16/2019
    • 2 min read

    Manage HIPAA and HITRUST compliant health data and medical records with the highest level of built-in security.

  • Which AWS service or feature can be used to create a private connection between an on

    HPC Media Rendering

    • 11/04/2020
    • 2 min read

    Optimize the media rendering process with a step-by-step HPC solution architecture from Azure that combines Azure CycleCloud and HPC Cache.

  • Which AWS service or feature can be used to create a private connection between an on

    Medical Data Storage Solutions

    • 12/16/2019
    • 2 min read

    Store healthcare data effectively and affordably with cloud-based solutions from Azure. Manage medical records with the highest level of built-in security.

view all

Web applications

AWS serviceAzure serviceDescription
Elastic Beanstalk App Service Managed hosting platform providing easy to use services for deploying and scaling web applications and services.
API Gateway API Management A turnkey solution for publishing APIs to external and internal consumers.
CloudFront Front Door Azure Front Door is a modern cloud content delivery network (CDN) service that delivers high performance, scalability, and secure user experiences for your content and applications.
Global Accelerator Front Door Easily join your distributed microservices architectures into a single global application using HTTP load balancing and path-based routing rules. Automate turning up new regions and scale-out with API-driven global actions, and independent fault-tolerance to your back end microservices in Azure-or anywhere.
Global Accelerator Cross-regional load balancer Distribute and load balance traffic across multiple Azure regions via a single, static, global anycast public IP address.
LightSail App Service Build, deploy, and scale web apps on a fully managed platform.
App Runner Web App for Containers Easily deploy and run containerized web apps on Windows and Linux.
Amplify Static Web Apps Boost productivity with a tailored developer experience, CI/CD workflows to build and deploy your static content hosting, and dynamic scale for integrated serverless APIs.

Web architectures

  • Which AWS service or feature can be used to create a private connection between an on

    Architect scalable e-commerce web app

    • 12/16/2019
    • 1 min read

    The e-commerce website includes simple order processing workflows with the help of Azure services. Using Azure Functions and Web Apps, developers can focus on building personalized experiences and let Azure take care of the infrastructure.

  • Which AWS service or feature can be used to create a private connection between an on

    Multi-region N-tier application

    • 6/18/2019
    • 10 min read

    Deploy an application on Azure virtual machines in multiple regions for high availability and resiliency.

  • Which AWS service or feature can be used to create a private connection between an on

    Serverless web application

    • 5/28/2019
    • 16 min read

    This reference architecture shows a serverless web application, which serves static content from Azure Blob Storage and implements an API using Azure Functions.

view all

End-user computing

AWS serviceAzure serviceDescription
WorkSpaces, AppStream 2.0 Azure Virtual Desktop Manage virtual desktops and applications to enable corporate network and data access to users, anytime, anywhere, from supported devices. Amazon WorkSpaces support Windows and Linux virtual desktops. Azure Virtual Desktop supports multi-session Windows 10 virtual desktops.
WorkLink Application Proxy Provides access to intranet applications, without requiring VPN connectivity. Amazon WorkLink is limited to iOS and Android devices.

Miscellaneous

AreaAWS serviceAzure serviceDescription
Backend process logic Step Functions Logic Apps Cloud technology to build distributed applications using out-of-the-box connectors to reduce integration challenges. Connect apps, data, and devices on-premises or in the cloud.
Enterprise application services WorkMail, WorkDocs, Chime Microsoft 365 Fully integrated cloud service that provides communications, email, and document management in the cloud and is available on a wide variety of devices.
Gaming GameLift PlayFab Managed services for hosting dedicated game servers.
Media transcoding Elastic Transcoder Media Services Services that offer broadcast-quality video streaming services, including various transcoding technologies.
Workflow Step Functions Logic Apps Serverless technology for connecting apps, data and devices anywhere, whether on-premises or in the cloud for large ecosystems of SaaS and cloud-based connectors.
Hybrid Outposts Stack Azure Stack is a hybrid cloud platform that enables you to run Azure services in your company's or service provider's datacenter. As a developer, you can build apps on Azure Stack. You can then deploy them to either Azure Stack or Azure, or you can build truly hybrid apps that take advantage of connectivity between an Azure Stack cloud and Azure.
Media Elemental MediaConvert Media Services Cloud-based media workflow platform to index, package, protect, and stream video at scale.
Satellite Ground Station Azure Orbital Fully managed cloud-based ground station as a service.
Quantum computing Amazon Braket Azure Quantum Managed quantum computing service that developers, researchers, and businesses can use to run quantum computing programs.

Next steps

If you are new to Azure, review the interactive Core Cloud Services - Introduction to Azure module.

Feedback

Submit and view feedback for

Which AWS service or feature can be used to create a private connection between an on

AWS PrivateLink provides private connectivity between virtual private clouds (VPCs), supported AWS services, and your on-premises networks without exposing your traffic to the public internet.

Which AWS service can be used to establish a dedicated private network connection between AWS and your datacenter?

AWS Direct Connect makes it easy to establish a dedicated connection from an on-premises network to one or more VPCs in the same region. Using private VIF on AWS Direct Connect, you can establish private connectivity between AWS and your data center, office, or colocation environment, as shown in the following figure.

Which AWS service can be used to create a dedicated network connection from your premises to AWS using a dedicated private network rather than the Internet?

AWS Direct Connect bypasses the internet; instead, it uses dedicated, private network connections between your network and AWS.

Which AWS services or features give users the ability to create a network connection between two VPCs?

A VPC peering connection is a networking connection between two VPCs that enables you to route traffic between them using private IPv4 addresses or IPv6 addresses.

aws service feature create private connection AWS private link AWS Direct Connect VPC endpoint service Virtual private Gateway NAT gateway

zusammenhängende Posts

Which of the following AWS service you should use if you want a serverless NoSQL database?
Which of the following AWS service you should use if you want a serverless NoSQL database?

Which of the following is not a best practice for protecting the root user of an aws account?
Which of the following is not a best practice for protecting the root user of an aws account?

Which aws cloud architecture principle slates that systems should reduce interdependences
Which aws cloud architecture principle slates that systems should reduce interdependences

Which AWS feature allows a company to take advantage of usage tiers for services across multiple member accounts?
Which AWS feature allows a company to take advantage of usage tiers for services across multiple member accounts?

Which duty is the customers responsibility while managing AWS lambda functions under the AWS shared responsibility model?
Which duty is the customers responsibility while managing AWS lambda functions under the AWS shared responsibility model?

Who is responsible for configuration management under the aws shared responsibility model?
Who is responsible for configuration management under the aws shared responsibility model?

Which AWS service or resource can the company use with Amazon CloudWatch to meet this requirement?
Which AWS service or resource can the company use with Amazon CloudWatch to meet this requirement?

Which aws cloud architecture principle states that systems should reduce interdependencies?
Which aws cloud architecture principle states that systems should reduce interdependencies?

What service does AWS use to provide a content delivery network CDN for its customers quizlet?
What service does AWS use to provide a content delivery network CDN for its customers quizlet?

Which of the following is an AWS well architected framework design principles related to Reliability?
Which of the following is an AWS well architected framework design principles related to Reliability?

Werbung

NEUESTEN NACHRICHTEN

What measures how well the solution will be accepted in a given opportunity?
1 Jahrs vor . durch FormlessAviation
Wenn der Hund tot ist beginnt ein neues Leben
1 Jahrs vor . durch DeliriousHurricane
Which of the following is a not a type of organizational information system?
1 Jahrs vor . durch CantankerousAssignment
Which of the following statements is true regarding an organizations culture
1 Jahrs vor . durch EnticingDucking
The system of behavioral rules and norms that emerge in a group is known as:
1 Jahrs vor . durch ElectromagneticRelativism
Mit kreditkarte bezahlen wenn konto leer
1 Jahrs vor . durch CommunistAllies
Mit jemandem auf kriegsfuß stehen bedeutung
1 Jahrs vor . durch SubliminalPundit
What are 3 of the most important criteria to keep in mind when evaluating a source?
1 Jahrs vor . durch CuteSorcery
Google scholar is a specialized search engine that provides which of the following?
1 Jahrs vor . durch SmartDiploma
Wie lange hat der Vermieter Zeit die Kündigung zu bestätigen
1 Jahrs vor . durch EphemeralProceedings

Werbung

Populer

Werbung

Um

Legal

Hilfe

Sozial

homeendejakoptzhthittr
Urheberrechte © © 2024 de.apacode Inc.