Browse Security Community (82)

NelsonKumari explains how to connect Foundry IQ (built on Azure AI Search) to Foundry Agent Service using MCP, so agents can retrieve enterprise data with permissions enforced and return citation-backed answers.

In this community post, aayodeji introduces Azure Managed Grafana MCP, a built-in managed MCP endpoint that lets AI agents query production telemetry (Azure Monitor, Application Insights, Kusto) using existing Azure RBAC and managed identities—without running a self-hosted MCP server.

samcogan explains why teams running Ingress NGINX on AKS need to plan a migration, and walks through moving to Azure Application Gateway for Containers (AGC), including architecture basics, prerequisite checks (Azure CNI and workload identity), and using Microsoft’s AGC Migration Utility to generate Gateway API YAML and a coverage report.

bobmital explains how to run large-scale LLM inference on Azure Kubernetes Service (AKS), covering GPU parallelism choices, cloud/edge/hybrid deployment topology, and the security and governance controls (private clusters, Entra ID, Key Vault) needed to make inference production-safe.

pbeegala summarizes lessons learned from Azure Front Door incidents in October 2025 and lays out practical resiliency patterns—DNS failover, multi-CDN, and alternate ingress paths—aimed at keeping mission-critical internet-facing workloads available when global routing services have an outage.

meenagowdar explains how Azure Local can support “sovereign AI” by running advanced model workloads inside customer-controlled environments, from current NVIDIA RTX PRO 6000 Blackwell support (Azure Local 2603) to planned NVIDIA Rubin support, with Foundry Local services, AKS on Azure Local, and Azure Arc for management and governance.

aayodeji covers the major upgrades in Azure Managed Grafana 12, highlighting new Entra authentication, faster Azure Monitor log query workflows, Prometheus metric improvements, and streamlined database monitoring for Azure environments.

JeevanManoj presents an in-depth guide to the public preview of Entra ID-based access for Azure Blob Storage SFTP, highlighting enhanced enterprise identity management and security.

FeynmanZhou highlights Azure Container Registry's new proactive health monitoring and auto-communication features, empowering teams to integrate ACR outage alerts and diagnostics seamlessly into their DevOps and incident workflows.

Sanchit Mehta presents a detailed look at how the Azure SRE Agent autonomously investigates and resolves incidents, often identifying and fixing its own issues. The post explains how architectural choices—like filesystem workspaces and context layering—make these advanced AI-driven capabilities possible.

Dalibor_Kovacevic demonstrates how to effectively onboard the Azure SRE Agent for real-world apps, showing the practical steps needed to deliver actionable insights and better incident response in cloud environments.

SamhithaGurumurthy delivers a thorough step-by-step guide for migrating on-premises Windows and Linux VMs to Azure Confidential Virtual Machines with Azure Migrate, emphasizing secure architecture, disk encryption, attestation, and enterprise governance.

Vineela-Suri shares a detailed guide on implementing Agent Hooks within Azure SRE Agent, covering governance, safety, and auditing practices for automating incident response—including hands-on configuration to prevent unsafe operations and maintain compliance.

PramodPalukuru demonstrates how to create hardened, reusable custom images for Azure Confidential Virtual Machines, guiding you through secure image creation, compliance with PMK and CMK, and enterprise deployment using Azure Compute Gallery.

Coryskimming from Microsoft introduces the packed line-up for Azure at KubeCon Europe 2026, spotlighting hands-on AKS labs, AI/ML workload sessions, security, cloud-native DevOps practices, and open-source solutions from Microsoft's top engineers.

AjKundnani details the upcoming change in Azure Compute API 2025-11-01, where VM and VMSS responses will always return a non-null securityType, impacting automation and validation scripts that rely on null checks.

damocelj offers a practical walkthrough on securely deploying LLM inferencing with vLLM and NVIDIA NIM microservices in air-gapped Azure Kubernetes Service clusters, tackling network isolation, GPU configuration, and model artifact challenges.

jalenmcg announces the general availability of Azure Arc Gateway for Arc-enabled Kubernetes, detailing its simplified network configuration and improved onboarding processes for enterprise customers.

bobmital presents a comprehensive and practical guide for deploying and optimizing large language model inference on Azure Kubernetes Service, focusing on engineering tradeoffs, GPU efficiency strategies, open-source model evaluation, and robust enterprise security architecture.

PragyaDwivedi presents an overview of the public preview for simplified machine provisioning on Azure Local, emphasizing streamlined, secure, and scalable infrastructure deployment with minimal on-site requirements.