

Subscribe to the blog
Latest Posts
My developer-friendly Bicep module for role assignments
Capture Bicep outputs in PowerShell
Outputs in Bicep are super handy. They allow you to return values from your Bicep template or module. We often use this for returning values that cannot be known upfront, such as an IP address, principal Id, domain name, url... The challenge As long as we consume...
Use GitHub Actions with User-Assigned Managed Identity
Before we can automate our infrastructure as code, there is always to need to grant the required permissions to our release pipelines. For GitHub Actions, this typically involved creating a Service Principal with a client secret. By storing those credentials as...
Use Azure Resource Graph to identify potential security vulnerabilities
Security must be key for every cloud solution. Azure Policy is one of your biggest companions to ensure that you enforce certain security policies. You can configure them in audit, deny or modify mode. However, it often takes a while to see the results once you've...
How to purge a soft-deleted API Management instance?
A while ago, API Management received a default soft-delete feature. This is very handy for mission-critical workloads, because it protects against accidental removal. However, in development environments, this causes often friction, because you cannot toggle the...
Save costs by shutting down AKS Clusters on dev environments
With Your Azure Coach, I am regularly organizing trainings on Azure Kubernetes Service. To reduce the Azure hosting costs of these expensive clusters, I've implemented a Logic App that shuts down every evening all running AKS clusters. This is how it looks: Nightly...