Azure Administrator — Complete Learning Package

SECTION A: Hands-on Labs

• Create VNet with subnets
• Deploy Windows/Linux VMs
• Configure NSGs
• Deploy Storage + SAS
• Deploy SQL Database
• App Service deployment
• VNet peering
• Key Vault + Managed Identity
• Monitoring + Alerts
• Backup & Restore
• Private Endpoints
• Bastion access
• VM auto-shutdown
• VMSS autoscaling
• Application Gateway setup
• Azure Firewall + VPN
• Policy + Management Groups
• Automation runbooks
• Hub-Spoke architecture
• AKS deployment

SECTION B: Major Projects

• Enterprise identity (Entra ID + SSO)
• Multi-subscription governance
• VM lifecycle automation
• Hybrid identity setup
• Multi-region DR implementation
• Monitoring for large environments
• Security hardening
• Azure Arc deployment
• Cost optimization (30% savings)
• Full enterprise Azure environment build

SECTION C: Gotchas & Mistakes

• Stopped VM still charges if not deallocated
• VNet peering is not transitive
• NSG priority rules are absolute
• Storage names must be globally unique
• Private Endpoint needs DNS setup
• Backup ≠ Disaster Recovery
• Managed Identity delay after creation
• Redis Basic has no SLA
• Policy Deny not retroactive
• App Service still charges when stopped

SECTION D: Operations Playbook

Daily

• Check Service Health
• Review alerts
• Check backups
• Review cost anomalies

Weekly

• Review security alerts
• Check DR replication
• Analyze logs
• Validate scaling

Monthly

• Cost review
• Policy compliance
• Access review
• Backup restore test

Troubleshooting Flow

1. Service Health
2. Activity Log
3. Metrics
4. Logs
5. NSG rules
6. Routing
7. DNS

Incident Response

1. Acknowledge
2. Assess impact
3. Communicate
4. Diagnose
5. Fix
6. Verify
7. Post-incident review