Browse Azure Community (309)

despindola announces general availability of prefix-scoped access for User Delegation SAS in Azure Blob Storage, letting you scope SAS tokens to a virtual directory (prefix) within a container. The post explains why this helps least-privilege access and includes REST API and .NET SDK examples plus required parameters like sr=d and sdd.

Pooja Pradhan outlines an Azure-focused approach to move from drift detection to diagnosis by combining IaC signals (Terraform/Bicep), Azure Resource Graph, and Activity Logs, then using an AI model to generate a human-readable root cause analysis with impact and recommended remediation steps.

junjieli announces updates to Foundry Toolkit that bring an end-to-end image generation workflow into VS Code, including discovering and deploying GPT-Image-2 to an Azure AI Foundry project, iterating in an Image Playground, and exporting ready-to-paste API code.

Valini Sunthwal describes a multi-repo Azure platform that uses Terraform, versioned releases, and daily reconciliation to detect and recover from infrastructure drift across many subscriptions. The post breaks down repo boundaries, pipeline design, drift detection tiers, and security practices like OIDC, Key Vault, and private endpoints.

PrabalDeb lays out a practical reference architecture for running diffusion model workloads on Azure Kubernetes Service (AKS), focusing on GPU/CPU lane separation, dispatch and autoscaling options (Kubernetes-native vs Service Bus + KEDA), secure ingress and identity, durable storage for outputs and model caches, and end-to-end observability for both apps and GPU hardware.

Vineela Suri explains how to configure Azure SRE Agent with Azure Monitor to cut alert fatigue: use reinvestigation cooldowns, tiered response plans, and scheduled hygiene reports to consolidate noisy alerts, improve thresholds, and keep LLM token costs under control.

Vineela Suri explains how the Azure SRE Agent plugin marketplace works: teams publish plugins (skills + MCP connectors) to a shared GitHub repo, and any SRE Agent instance can discover and install them. The post walks through an AKS incident investigation example and the marketplace.json manifest structure.

skundapura explains how to observe and troubleshoot AI agent workloads in Azure AI Foundry, comparing tracing and telemetry support across Microsoft Agent Framework, Semantic Kernel, LangChain/LangGraph, and the OpenAI Agent SDK using OpenTelemetry with Azure Monitor and Application Insights.

dbandaru shows how to connect the New Relic-hosted MCP server (Preview) to Azure SRE Agent, including API key setup, RBAC considerations, and how to create a New Relic-focused subagent/skill so the agent can query NRQL, traces, logs, metrics, alerts, and dashboards via natural language.

prabhattomar explains how to build a Kubernetes-native DBaaS-style SQL platform using Crossplane to provision Azure Database for PostgreSQL Flexible Server, including private networking, DNS-based read/write endpoints, and an active-passive multi-region HA/DR approach with replica promotion and Traffic Manager routing.

Sokuma announces the public preview of Azure Monitor Service Level Indicators (SLIs) and explains how SLIs/SLOs, error budgets, and burn-rate alerting help teams measure real customer impact (availability and latency) using Azure Monitor metrics at the Service Group level.

skundapura outlines a phased approach to migrate file-based application logging from Splunk to Azure Application Insights on VMs, using Azure Monitor Agent and Log Analytics, then mapping alerts and optionally adding SDK instrumentation for deeper traces and metrics with security and PHI considerations.

Samarpitaa explains where Azure AI Foundry IQ fits (and doesn’t) for enterprise agent knowledge access, then shows a reference approach for querying Foundry IQ knowledge bases directly via the Azure AI Search Python SDK with permission-aware retrieval and citations.

Shah_Viral explains how to build an enterprise “knowledge copilot” on Azure using Foundry IQ knowledge bases and Azure AI Search agentic retrieval, including C#/.NET setup, MCP-based agent connection, and key trade-offs around preview maturity, cost, latency, and security controls like ACLs and Purview labels.

dikshashakya explains how to turn long-form video transcripts into structured Standard Operating Procedures (SOPs) using GraphRAG to build a knowledge graph and Azure OpenAI to generate grounded sections like scope, definitions, responsibilities, and step-by-step procedures.

singhshub shows how to integrate HashiCorp Vault with Terraform so secrets (like Azure VM admin credentials) are fetched at runtime instead of being stored in .tf files, variable files, or pipeline variables, including KV v2 policy paths, auth options, and state protection guidance.

JennyF explains how Microsoft’s 1ES team uses agentic AI (including GitHub Copilot CLI) plus “skills” and “agent signals” to speed up CVE remediation and compliance work across many repositories, while keeping humans in the loop for review, validation, and deployment.

LuisFilipe explains how Azure Blob Storage SFTP users should handle Microsoft’s host key change, including when it impacts SSH key-based authentication, how to pre-update trusted host keys, and how to identify SFTP usage via Azure Resource Graph and Log Analytics queries.

lexinadolski recaps Microsoft’s presence in the CNCF Project Pavilion at KubeCon EU 2026, summarizing the technical conversations and themes across Kubernetes projects—migration to Gateway API, confidential computing, image signing, observability tooling, and requests for deeper Azure/AKS and AI-workload support.

Amreen explains how to implement Istio-based weighted traffic routing on Azure Kubernetes Service (AKS), including cookie-based session affinity and private, real-time traffic shaping. The post compares native Azure load balancing options and provides production-ready Istio YAML for AKS-only and AKS-to-Azure-VM backends.