Join the list! or Get updates on new episodes!
Join 10,000 other listeners and get updates on new episodes.
You Thought Your Power BI Maps Were Safe breaks down the Bing Maps → Azure Maps eviction — and why this is not optional, not cosmetic, and not “a visual upgrade.” As of Oct-2025, Bing Maps visuals are deprecated. If you don’t migrate, your map visuals become blank boxes. This episode explains …
Azure File Sync still “works” for many orgs—but on 2010s-era auth: local X.509 certs and SAS tokens. Those are possession-based secrets: whoever holds them is “you.” They sprawl into scripts, backups, repos, and logs; they expire silently; and one leak grants silent exfiltration via valid creds. Th…
Most orgs still treat on-prem AD groups as sacred, syncing them to Entra ID and calling it “hybrid.” In reality, those objects are zombies: visible in Entra but ruled by on-prem, which blocks modern governance (dynamic membership, access reviews, APIs) and slows HR-driven provisioning. The fix is r…
Azure Database for PostgreSQL – Flexible Server isn’t pricey because of traffic; it’s pricey because defaults quietly overprovision compute, storage, and HA. “Managed” means patched, not optimized—you still pay for VM cores at idle, disks that only grow, and standby replicas that double costs while…
For years, a “private” Azure Application Gateway still needed a public IP and outbound Internet just to talk to Microsoft’s control plane. Management (control plane) and user traffic (data plane) shared the same door—an architectural contradiction that forced ugly firewall exceptions, Azure-DNS dep…
Multi-cloud sounds like freedom—until physics and billing collide. Stitching Azure, AWS, and GCP together turns “resilience” into a toll road: you pay egress to leave one cloud, port/cross-connect fees in the colocation meet-me, and operational overhead to run three of everything (IAM, gateways, mo…
The Microsoft 365 Admin Center is a great map—but it’s not the vehicle. For Copilot and AI governance, clicking through GUI toggles won’t scale, won’t prove compliance, and won’t survive audits. The Admin Center prioritizes visibility; PowerShell delivers authority: bulk actions, reproducible chang…
Azure AI Foundry isn’t “just a big model.” It’s a governed runtime where every interaction is logged and traceable. Agents are built as disciplined “squad leaders” from three gears—Model (brain), Instructions (orders), Tools (capabilities)—and their work leaves receipts via Threads (conversation hi…
Active Directory (AD) is the single crown-jewel system: compromise it and an attacker can own identities, files, mail, GPOs—everything. Breaches rarely hinge on zero-days; they accelerate through identity abuse: one phished user → lateral movement (pass-the-hash/ticket reuse) → privilege escalation…
Identity is the real border now. In Microsoft cloud the firewall is no longer the decisive wall — Entra ID is. Modern attackers don’t smash doors; they log in using harvested, phished, or purchased credentials. That’s why a password-only world is effectively a natural-1 on defense. Real protection …
AI agents are about to feel like real coworkers inside Teams—fast, tireless, and dangerously literal. This episode gives you a simple framework to keep them helpful and safe: manage their memory, entitlements, and tools, and layer prompting, verification, and human-in-the-loop oversight. You’ll lea…
Hard-coding secrets is the “key under the doormat” of cloud apps. This episode shows how to ditch static passwords and move to short-lived, scoped tokens issued by Microsoft Entra ID, so breaches fizzle instead of cascade. We start with the “Doormat Key Problem”—why credentials proliferate across r…
We’re promised six clean stages in Azure’s Cloud Adoption Framework: Strategy, Plan, Ready, Adopt, Govern, Manage. Sounds simple, right? Microsoft technically frames CAF as foundational phases plus ongoing operational discipl...
Most “works-on-my-machine” bugs come from drift: different CLIs, runtimes, and extensions. Dev Containers kill drift by turning your environment into code: a devcontainer.json that pins tools, extensions, mounts, and security posture. Use Templates to standardize, Features to add tools, pre-builds …
Most bots are parrots: fluent, ungrounded, risky. RAG (search + LLM) fixes that by answering from your tenant with your permissions. You’ve got two Microsoft lanes: Copilot Studio (low-code, blazing fast to value) and Azure AI Foundry (code-first, full control, governance). Use a simple lifecycle—E…
The Azure AI Foundry Trap isn’t the platform—it’s treating it like plug-and-play. Multimodal demos crumble on messy real data; RAG without hybrid (keyword + vector) search and semantic re-ranking hallucinates; and “agents” spiral when you don’t scope identity, actions, or observability. The cure: g…
This episode argues that Syntex being folded into SharePoint Premium is not a naming joke — it’s Microsoft consolidating content processing, content experiences and governance into one platform so Copilot can stop guessing and start delivering real answers. SharePoint Premium = Brain (content e…
No single tool “wins” your analytics deployment. GitHub owns truth, Fabric moves packages, Azure DevOps enforces gates. Treat Bronze/Silver/Gold as code, or your Medallion becomes a CSV swamp with 3 a.m. dashboard calls. This episode lays out a practical stack and the three non-negotiables—isolated…
Boilerplate steals sprints. This session shows how GitHub Copilot for Azure and the Azure Developer CLI (azd) slash setup time: Copilot scaffolds IaC and app wiring from a prompt; azd provisions + deploys in a consistent, repeatable flow; and AI-assisted diagnostics helps you debug faster with real…
“Move to the cloud” isn’t a finish line—it’s a moving target. Migrations feel “done,” but platforms, pricing, and features keep shifting. Teams stall when they treat cloud as a project instead of a continuous discipline. This episode breaks down four failure loops—endless migration, data-without-ac…
Cloud outages aren’t rare—they’re inevitable—and most SLAs put the blast radius back on you. When Microsoft 365, Power Apps, or Intune hiccup, the fine print limits a provider’s liability while your teams absorb the missed deadlines, idle hours, and client friction. Outages cascade because of hidde…
The Azure portal is great for learning and one-off tweaks—but it’s a trap for repeatable operations. Clicks don’t leave an auditable recipe, they invite drift, and a midnight checkbox can break prod. The fix is to move routine changes to the command line and treat the portal as a viewer, not a depl…
From the Altair 8800’s toggle switches to today’s Azure APIs, the same fundamentals persist: clear intent, shared resources, and networked power. The portal and cloud may feel modern, but the winning habits are timeless—design for constraints, automate for repeatability, and think in systems. Mainf…
Most Monday-morning Azure “outages” aren’t platform meltdowns—they’re fragile designs exposed at peak demand. Resilience isn’t something Microsoft hands you; it’s something you architect. The five pillars you must bake in are Availability, Redundancy, Elasticity, Observability, and Security. Get au…