Microsoft has announced eight new services for the certification scope in Microsoft Azure Government. The services include Azure Resource Manager, Automation, Azure Batch, Log Analytics, Azure Media Services, Policy Administration Service/RBAC, Redis Cache, and Scheduler.
Each of these service offerings has received Joint Authorization Board (JAB) approval for addition to Azure Government’s P-ATO at the High Impact Level.
With 8 more services, the total number of Azure Government offerings that meet the FedRAMP High baseline grows to 26 services which is 20 more services than AWS GovCloud.
Here is the description for each of the service.
Azure Resource Manager – Azure Resource Manager (ARM) enables you to repeatedly deploy your app and have confidence your resources are deployed in a consistent state. You define the infrastructure and dependencies for your app in a single declarative template. This template is flexible enough to use for all of your environments such as test, staging or production.
You put resources with a common lifecycle into a resource group that can be deployed or deleted in a single action. You can see which resources are linked by a dependency. You can apply tags to resources to categorize them for management tasks, such as billing as well as control who in the organization can perform actions on the resources by defining roles for users and groups. ARM logs all user actions so you can audit those actions.
Automation – Azure Automation uses Windows PowerShell scripts and workflows – known as runbooks – to handle the creation, deployment, monitoring, and maintenance of Azure resources and third-party applications. Automation runbooks work with Web Apps in Azure App Service, Azure Virtual Machines (Windows or Linux), Azure Storage, Azure SQL Database, and any service that offers public Internet APIs.
Azure Batch – Azure Batch makes it easy to run large-scale parallel and high-performance computing (HPC) workloads in Azure. Use Batch to scale out parallel workloads, manage the execution of tasks in a queue, and cloud-enable applications to offload compute jobs to the cloud.
Log Analytics – Log Analytics is a service in Operations Management Suite that helps you collect and analyze data generated by resources in your cloud and on-premises environments. It gives you real-time insights using integrated search and custom dashboards to readily analyze millions of records across all of your workloads and servers regardless of their physical location.
Azure Media Services – Azure Media Services offers broadcast-quality video streaming services to reach larger audiences on today’s most popular mobile devices. With features that enhance accessibility, distribution, and scalability, Media Services makes it easy and cost-effective to stream and protect your content to audiences both local and worldwide.
Policy Administration Service/RBAC – Azure Role-Based Access Control (RBAC) enables fine-grained access management for Azure. Using RBAC, you can grant only the amount of access that users need to perform their jobs.
Redis Cache – Based on the popular open source Redis cache—Redis Cache gives you access to a secure, dedicated cache for your Azure application usage. It leverages the low-latency, high-throughput capabilities of the Redis engine. This separate, distributed cache layer allows your data tier to scale independently for more efficient use of compute resources in your application layer.
Scheduler – Azure Scheduler lets you invoke actions that call HTTP/S endpoints or post messages to a storage queue on any schedule. You can use Scheduler to create jobs that reliably call services either inside or outside of Azure and run those jobs on demand, on a regular or irregular schedule, or at a future date.