Tag Archives: microsoft
Blank area in the cell when printing.
Row or line break turn to blank area in the cell when printing. Cell size changes from 5 lines to 4 lines and one blank row when printing.
Row or line break turn to blank area in the cell when printing. Cell size changes from 5 lines to 4 lines and one blank row when printing. Read More
Explore Cloud Computing with the New “Azure for Students” Module!
I’m really excited to share a new module that I developed by working with the Microsoft Learn Team: “Introduction to Azure for students.” As students, we often encounter numerous tech challenges, from managing projects and assignments to exploring new fields like AI and data science. This module is designed to help you tackle these challenges head-on by diving into the fascinating world of cloud computing with Azure.
Why Cloud Computing?
Cloud computing might sound complex, but it’s simpler than you think. Imagine it as a giant library where you can borrow books whenever you need them, without the hassle of buying or storing them. Similarly, cloud computing lets you use computing resources whenever you need them, without owning or maintaining the hardware and software. It’s flexible, easy, and often more affordable.
What You’ll Learn
In this module, you’ll discover:
Core Concepts of Cloud Computing: Learn the basics and understand what cloud computing is all about.
Azure in Action: Explore real-world scenarios to see how Azure is used in various fields, from student projects to professional healthcare.
Getting Started with Azure: Find out about the tools and services that will help you begin your Azure journey.
Why Azure Cloud?
Azure is Microsoft’s cloud platform, offering over 200 products and services. Whether you’re into AI, app development, data science, or machine learning, Azure has it all. Here’s how Azure can help you as a student:
Access Powerful Tools: Utilize advanced tools and services without the need for expensive hardware.
Scalability: Easily scale your resources up or down based on your project needs.
Cost-Effective: Pay only for the resources you use and take advantage of free services and a $100 Azure credit with the Azure for Students offer.
How Azure Can Help with College Projects?
Imagine you’re working on a complex college project that involves data analysis and collaboration with classmates. With Azure, you can set up a virtual environment where everyone can work together seamlessly, share resources, and analyze data in real-time. Need to develop a mobile app for your project? Azure provides all the necessary tools and platforms to build, test, and deploy your app efficiently.
Special Offer for Students!
Being a student usually means living on a budget. Good news—Microsoft’s got your back with Azure for Students! Get a $100 Azure credit and access a sea of free services. Learning has never been so cost-effective and fun! Learn more about the Azure for Students offer.
What are you waiting for? Start learning cloud today by going through the module with hands-on experience by claiming the Azure for Students offer. Whether you’re working on a school project, developing an app, or just curious about the cloud, this module will provide you with the foundation to succeed.
Ready to get started? Sign up on Microsoft Learn to save your progress and take the first step towards an exciting career in cloud computing!
Microsoft Tech Community – Latest Blogs –Read More
Removing duplicates and sorting data in columns instead of rows
Hello, one of our software exports data in the following format. I don’t want to touch this file since it will be exported frequently.
I want to create a different Excel file with formulas which is linked to this file and configure it in a way to obtain the results in the following way:
Basically removing the duplicates and sorting the data in columns and leaving blanks when nothing is found.
Thank you!
Hello, one of our software exports data in the following format. I don’t want to touch this file since it will be exported frequently.I want to create a different Excel file with formulas which is linked to this file and configure it in a way to obtain the results in the following way:Basically removing the duplicates and sorting the data in columns and leaving blanks when nothing is found.Thank you! Read More
Automatically replace old data with new data
Hello.
I am trying to create a sheet that averages the last 5 scores.
My idea is to have the input cell at A1, and the average cell at A7.
When a value is entered into A1, it appears in A2.
When a second value is entered into A1, it appears in A2 and the value in A2 moves to A3.
When a third value is entered into A1, it appears in A2, the value in A2 moves to A3 and the value in A3 moves to A4, and so on.
All the while, the value in A7 changes to represent the new mean.
Once A6 is full, a new A1 entry will cause the A6 number to disappear, as the value is now to old and no longer of any use.
Is this possible in excel?
Cheers
Hello. I am trying to create a sheet that averages the last 5 scores.My idea is to have the input cell at A1, and the average cell at A7.When a value is entered into A1, it appears in A2.When a second value is entered into A1, it appears in A2 and the value in A2 moves to A3.When a third value is entered into A1, it appears in A2, the value in A2 moves to A3 and the value in A3 moves to A4, and so on.All the while, the value in A7 changes to represent the new mean.Once A6 is full, a new A1 entry will cause the A6 number to disappear, as the value is now to old and no longer of any use.Is this possible in excel? Cheers Read More
Error – Your windows insider build ran into a problem and needs to restart . We will restart for you
please help me with this problem. I cannot open my laptop!
please help me with this problem. I cannot open my laptop! Read More
SVG attribute animation
CSS does not support many SVG attribute animations, and the original Edge fully supports SMIL to implement all SVG attribute animations; But the latest edge has encountered many problems, and the latest beta version is also not working. Before CSS animations fully support SVG attributes, smil animations should not be overlooked. I hope you can answer our concerns.
CSS does not support many SVG attribute animations, and the original Edge fully supports SMIL to implement all SVG attribute animations; But the latest edge has encountered many problems, and the latest beta version is also not working. Before CSS animations fully support SVG attributes, smil animations should not be overlooked. I hope you can answer our concerns. Read More
Build your own copilot! New Microsoft Copilot extensions
Customize Copilot for Microsoft 365 with tailored experiences and external data integration through Copilot extensions. Enhance productivity by leveraging large language models and Microsoft Graph for personalized responses. With plugins and connectors, extend Copilot’s capabilities to streamline tasks and automate actions, all while maintaining context and boosting efficiency.
Abram Jackson, Principal Product Manager for Microsoft 365 shows how you can get started building Copilot extensions.
Enrich and focus Microsoft Copilot with Copilot extensions.
How to tailor the user experience with actions, knowledge, and your own copilots.
Automate tasks.
Seamless integration with external systems and tailored experiences. Check out Copilot extensions using connectors and plugins and Microsoft Graph connectors.
Integrate multiple Copilot extensions in one session.
Leverage insights for comprehensive, polished outputs. See how it works.
Watch our video here:
QUICK LINKS:
00:00 — Copilot extensions
01:08 — Types of Copilot extensions
01:59 — Microsoft Graph connectors
03:20 — Plugins
04:14 — Specialized copilot
04:54 — Multiple customized copilots working together
05:42 — How to build Copilot extensions
06:45 — Plug into data-external or inside of Microsoft 365
07:31 — IDE/Visual Studio Code
08:57 — Wrap up
Link References
To get started, check out https://copilotstudio.microsoft.com
Unfamiliar with Microsoft Mechanics?
As Microsoft’s official video series for IT, you can watch and share valuable content and demos of current and upcoming tech from the people who build it at Microsoft.
Subscribe to our YouTube: https://www.youtube.com/c/MicrosoftMechanicsSeries
Talk with other IT Pros, join us on the Microsoft Tech Community: https://techcommunity.microsoft.com/t5/microsoft-mechanics-blog/bg-p/MicrosoftMechanicsBlog
Watch or listen from anywhere, subscribe to our podcast: https://microsoftmechanics.libsyn.com/podcast
Keep getting this insider knowledge, join us on social:
Follow us on Twitter: https://twitter.com/MSFTMechanics
Share knowledge on LinkedIn: https://www.linkedin.com/company/microsoft-mechanics/
Enjoy us on Instagram: https://www.instagram.com/msftmechanics/
Loosen up with us on TikTok: https://www.tiktok.com/@msftmechanics
Video Transcript:
-You can now customize Copilot for Microsoft 365 for your own unique needs, with tailored experiences that can work with external data, while adding unique skills to accelerate the things you do every day. This is now possible with Copilot extensions. And today I’ll demonstrate the experience with Copilot extensions and how to build them.
-First, let me unpack how Copilot for Microsoft 365 works in relation to Copilot extensions. Copilot for Microsoft 365 comprises large language models, information in the Microsoft Graph to find or reference files and data in places like SharePoint, OneDrive, email, your calendar, and Teams, along with information found on the internet to personalize the Copilot experience inside the Microsoft 365 apps you use.
-For example, when you submit a prompt in Word, Copilot determines what you are trying to do, finds additional information to ground your prompt, and then returns a fully formatted, highly personalized response to you. This is what sets Copilot for Microsoft 365 apart from free generative AI experiences.
-Copilot extensions enrich and focus this already great baseline experience further. There are a few main types. The first lets you plug into information sources relevant to you that are sitting outside of Microsoft 365 in near real time, and you can interact with them, like confirming a task was completed.
-This is made possible by available plugins. You can also use connectors to extend what the Microsoft Graph indexes to sites or services also outside of Microsoft 365. The next lets you build your own Copilot, focused on a specific task requiring a specific set of files or data to guide it.
-You can also add additional instructions and workflow to scope what it generates and even automate specific actions. This specialized Copilot is then made available as a Copilot extension for others to use. Let me make this real by walking through how Copilot extensions customize your experience with Copilot for Microsoft 365.
-In this example, I’m a support technician. And one of the things I regularly have to do is write a weekly report detailing the support cases that I’ve worked on. I’m in Copilot for Microsoft Teams, and I’ll first start with my baseline Copilot experience without extensions. I’ll write a prompt to find all the emails I sent today and group them by topic.
-And that finds me all of the emails I was looking for and groups them like I asked. I now want to go beyond Microsoft 365 data and include information and knowledge base articles outside of it that are on our support site. I’ll show you the enriched experience with my Copilot extension first, and then explain what’s going on under the covers.
-I’ll use a different session, and paste in, “Summarize all the emails I sent today, group them by high level topic. For each topic, find the support wiki article that is most related.” And KB articles will come from the connected site. Once the entire response is generated, I can see the matching KB articles for each topic. And if I look at the citations, these ones are the sources using my Graph connected site.
-Here, my Copilot extension is using a Microsoft Graph connector to find information from the external sources that are connected to the Microsoft Graph. Next, I’ll use a different Copilot extension that can also perform actions with an external system on my behalf. My IT team has enabled a plugin called Doc Improvement.
-In this prompt from yesterday, I’ll paste create a doc improvement task to improve that first KB article based on the related emails I sent. This doesn’t need all of the detail from the previous prompt because Copilot gets that information from the chat history in this session. And this extension actually writes back to another system and creates a task for a content writer to update one of our KB support articles.
-After I confirm, I see a confirmation that it has created the doc improvement work item. So far I’ve shown how by using Copilot extensions, my experience as a technician was tailored with content specific to me, while enabling dynamic connections to external data and creating a ticket in my knowledge base system. Now let’s look at how I can go further by focusing in on a specific task with a specialized Copilot available as a Copilot extension.
-This is our support content author Copilot, which my team has built to help us keep our knowledge base articles up to date. You can see that it has a few suggested prompts for skills or frequent tasks. I’ll paste in update the Wiki article about remote help to add a first step of making sure that the user has logged in. This will first find the correct KB article, get its contents, understand where to insert the text, and then ask me to confirm.
-I can also suggest a modification, but let me type, go ahead, and let Copilot make the update. And one more thing I’ll show you is how you can have multiple custom Copilots work together in the same conversation. I’ll go back to the session I had with Copilot earlier. This time, I will at mention the support content author Copilot with a similar prompt.
-This performs the same job, but keeps me in this same session. Now, I’ll at mention another custom Copilot that my team has written called Support Report Writer. Because it is being used in the same session, it has Microsoft Copilot’s analysis of my email, as well as information about the KB article I just updated.
-Then after it’s finished, you’ll see that I now have a fully written draft report that I can copy into an email or a document, and make any additional changes. So, that’s how Copilot extensions work. To build them, you can choose a low-code approach with Microsoft Copilot Studio, or an IDE like Visual Studio. Let’s start with the low-code approach to build your own Copilot. You can get to Copilot Studio by going to copilotstudio.microsoft.com.
-From the Copilots tab, I just need to add a Copilot. And I can either use a prompt to describe the Copilot I want to build, or I can skip right to the configuration, which I’ll do in this case. First, I need to give it a name, so I’ll type in “Support Report Writer.” For description, I’ve enabled clipboard history here, so I’ll paste in the text to describe my Copilot. Next, instructions, give your Copilot more context about its purpose and how to respond. You can get very specific with these instructions using natural language.
-Here I’ve pasted in about 600 characters, but these can be up to 8,000 characters. Starter prompts like we saw before in our custom Copilot can also be added for frequent tasks and to help new users quickly get started. These are optional, and I’ll skip this step to save a little time. From there, I just need to hit create.
-Once complete, I can make it available to the right users and groups by publishing it. Next, you can plug into other data, which can be external to, or inside of Microsoft 365. In the Copilot from Microsoft 365 page, you can see that I already have a few actions, including a few that point to a specific SharePoint locations for content. I’ll add an action.
-Here, I can choose between a connector to link to the data I want, conversation to link to an existing solution, a prompt to link to a standard reusable prompt, and a flow containing workflow automation. I’ll choose a conversation in my case. Now, I’ll give it a name, “Support KB Docs Improvement.” I’ll leave the default solution, and you’ll see that the schema name updates itself automatically.
-Then I’ll hit create. And if you prefer to use an IDE like Visual Studio Code, let me show you the experience with the Microsoft Teams toolkit installed. I’ll start with the plugin this time. You’ll see that I have three basic JSON files open in my tabs. Swagger that JSON to connect to my API using specified operations and responses to send back when it succeeds or fails. Supportplugin.JSON describes the actions to take for users and gives more information for the model to use. Below that, the functions are defined to perform tasks.
-Then in runtimes, it points back to the swagger file and what functions are defined there. Finally, the manifest.JSON, which includes a bit more metadata including the ID, naming, developer, description, and branding details. Importantly, you’ll see that in the manifest, I’ve also defined declarative Copilots. In my case, the content Copilot I showed you earlier. So let’s jump into that JSON file to show you how to build a Copilot.
-You’ll see that this file contains essentially the same elements that we saw in Copilot Studio. Things like the name, ID, and description. The instructions, again, to provide more context for your custom Copilot. We’ve also defined capabilities, which point to our Graph connector data. Actions for a plugin that points to our open API specification, and there are also conversation starters as suggested prompts with details about what those should do.
-And with that, you can get started building Copilot extensions for more tailored experiences, capable of specialized tasks with the data you specify, even if it sits outside of Microsoft 365. These capabilities will be rolling out in the coming weeks. To learn more and get started, check out copilotstudio.microsoft.com. Keep watching Microsoft Mechanics for all the deep dives and latest updates for Copilot and more. Subscribe if you haven’t yet, and we’ll see you soon.
Microsoft Tech Community – Latest Blogs –Read More
Sharepoint template
Hi ,
Is there any one please has a sharepoint online template for employees records for HR purpose
Best regards
Hi ,Is there any one please has a sharepoint online template for employees records for HR purpose Best regards Read More
Multiple sequential vlookups
Hi!
I use Excel 2016. I have one very large excel file that I must validate several columns of data by comparing it to 3 other workbooks in a certain order. I VLOOKUP against the first workbook and then perform the second round of VLOOKUPS against the second work book for any #N/A caused by the first VLOOKUP and so on. Then I compare the data using the EXACT function. My question is – is there any way I can automate this process
Hi!I use Excel 2016. I have one very large excel file that I must validate several columns of data by comparing it to 3 other workbooks in a certain order. I VLOOKUP against the first workbook and then perform the second round of VLOOKUPS against the second work book for any #N/A caused by the first VLOOKUP and so on. Then I compare the data using the EXACT function. My question is – is there any way I can automate this process Read More
Multiple images in a cell?
Hey all –
I was wondering if there’s any way to insert multiple images in a cell?
I’d ideally love to be able to insert multiple images in 1 cell and have a drop-down arrow, where a person can click the cell and use the drop-down to scroll through different images. Like you can do with names or regular text in cells.
Not sure if this is possible, probably not, just wondering!
Hey all – I was wondering if there’s any way to insert multiple images in a cell?I’d ideally love to be able to insert multiple images in 1 cell and have a drop-down arrow, where a person can click the cell and use the drop-down to scroll through different images. Like you can do with names or regular text in cells.Not sure if this is possible, probably not, just wondering! Read More
Se pierden los perfiles de Microsoft edge
A cada reinicio de PC pierdo los perfiles en Edge, cuando trato de loguearme para sincronizar no me permite usar mi cuenta.
A cada reinicio de PC pierdo los perfiles en Edge, cuando trato de loguearme para sincronizar no me permite usar mi cuenta. Read More
PackageDependencies and RtlDosApplyFileIsolationRedirection
For security purposes, we would prefer to keep all of the VCRuntime dlls out of MSIX packages and instead replace them with Microsoft.VCLibs.xxx package dependencies.
For most applications (being repackaged), we can simply remove the files from the package and add the dependency in the AppXManifest file. LoadLibrary happily finds the files in the dependency package without need of the PSF.
There are applications, however, that have folders containing numerous managed dlls along with the VCRuntimes in a folder, and use an internal manifest in the exe that includes a
Dependency / dependentassembly / Assemblyidentity that lists the folder,
and then an external manifest in that folder that lists all of the dependent dlls to be loaded.
When the application process is launched, the internal manifest is processed and we see the dlls listed in the external manifest being located using the API RtlDosApplyFileIsolationRedirection rather than load library.
It appears that this API does not look at the location containing AppXManifest PackageDependencies thus the dlls are not found and the launch of the exe fails. The PackageDependencies should always be respected or they are useless.
I have an example package (Blender) that has this condition if you’d like to look at it.
For security purposes, we would prefer to keep all of the VCRuntime dlls out of MSIX packages and instead replace them with Microsoft.VCLibs.xxx package dependencies.
For most applications (being repackaged), we can simply remove the files from the package and add the dependency in the AppXManifest file. LoadLibrary happily finds the files in the dependency package without need of the PSF.
There are applications, however, that have folders containing numerous managed dlls along with the VCRuntimes in a folder, and use an internal manifest in the exe that includes a
Dependency / dependentassembly / Assemblyidentity that lists the folder,
and then an external manifest in that folder that lists all of the dependent dlls to be loaded.
When the application process is launched, the internal manifest is processed and we see the dlls listed in the external manifest being located using the API RtlDosApplyFileIsolationRedirection rather than load library.
It appears that this API does not look at the location containing AppXManifest PackageDependencies thus the dlls are not found and the launch of the exe fails. The PackageDependencies should always be respected or they are useless.
I have an example package (Blender) that has this condition if you’d like to look at it. Read More
Microsoft Build 2024: Resumo das Principais Novidades em IA e Tecnologia
Durante os dias 21 a 23 de Maio de 2024, aconteceu o evento Microsoft Build 2024, que foi realizado tanto de forma presencial quanto online. O evento contou com inúmeras novidades e incríveis anúncios, principalmente voltados para o uso da Inteligência Artificial em diversas áreas. Neste artigo, estarei abordando os principais destaques do evento, bem como as novidades apresentadas durante o evento.
Keynote de Abertura – Satya Nadella
O evento já começa destacando a importância e a transformação que a Inteligência Artificial está trazendo para o mundo. Sendo considerado uma das maiores revoluções tecnológicas nos últimos 30 anos.
Logo em seguida Satya Nadella entra no palco para realizar o keynote de abertura do Microsoft Build 2024. Satya Nadella destacou as inovações e lançamentos que prometem transformar a maneira como desenvolvemos e utilizamos a tecnologia com foco em Inteligência Artificial.
Caso queira assistir a keynote de abertura, podem rever abaixo:
Novidades e Anúncios
Copilot+ PCs: O Futuro da Computação com IA
Um dos anúncios mais empolgantes foi o lançamento dos Copilot+ PCs, a nova geração de computadores que integra IA em todos os níveis de hardware e software. Esses dispositivos, estarão disponíveis a partir de 18 de junho, prometem ser até 20 vezes mais poderosos e 100 vezes mais eficientes para cargas de trabalho de IA em comparação com PCs tradicionais.
Em relação a esse lançamento, Satya Nadella apresentou um vídeo demonstrando o poder e a eficiência dos novos Copilot+ PCs. Abaixo vocês podem ver algumas das principais características desses novos dispositivos:
Há uma série de recursos em relação a essa novidade. Para mais informações, acesse o link: Introducing Copilot+ PCs
Windows Copilot Runtime: Integração de IA no Coração do Windows
A Microsoft apresentou o Windows Copilot Runtime, uma plataforma que traz APIs e modelos de IA diretamente para o Windows 11. Com suporte a frameworks populares como PyTorch e a nova estrutura WebNN. Assim sendo, os desenvolvedores poderão criar aplicativos de IA mais eficientes e poderosos.
Para mais informações sobre o Windows Copilot Runtime, acesse o link: Windows Copilot Runtime
Parcerias Poderosas: NVIDIA e AMD
As parcerias da Microsoft com NVIDIA e AMD foram reforçadas, com a introdução de novas GPUs como a NVIDIA H200 e B100, além de VMs baseadas no acelerador AMD MI300X. Essas colaborações visam fornecer a melhor performance e custo-benefício para desenvolvedores que utilizam IA.
Para mais informações sobre essas parcerias, acesse os links: NVIDIA e AMD
Microsoft Fabric: Inteligência em Tempo Real
O Microsoft Fabric foi revelado como uma plataforma integrada para a gestão de dados em tempo real. Com ele, empresas poderão obter insights acionáveis de maneira rápida e eficiente, integrando dados de diversas fontes, incluindo IoT e sistemas de telemetria. Entre as novidades relacionadas ao produto:
Inteligência em Tempo Real: Solução de SaaS para análise de dados em tempo real, permitindo decisões mais rápidas e informadas.
Banco de Dados PostgreSQL no Azure: Capacidades avançadas de IA integradas ao banco de dados, permitindo chamadas para o Azure OpenAI Service e geração de embeddings diretamente no banco de dados.
Novos Recursos no Microsoft Fabric: Kit de Desenvolvimento de Workload, compartilhamento de dados em tempo real, API GraphQL e habilidades de IA integradas para experiências de dados.
Para mais informações sobre as novidades relacionadas ao Microsoft Fabric, acesse o artigo: Unlock real-time insights with AI-powered analytics in Microsoft Fabric
Expansão do Copilot: De Assistente Pessoal a Assistente de Equipe
O Microsoft 365 Copilot foi expandido para atuar como um assistente de equipe, denominado “Team Copilot“. Essa ferramenta promete melhorar a colaboração e a produtividade das equipes, facilitando a gestão de reuniões e a comunicação em grupo.
Para mais informações sobre o Team Copilot, acesse o link: Team Copilot
Copilot Studio: Personalização e Automação de Copilots
Com o Copilot Studio, desenvolvedores agora podem criar copilotos personalizados, integrando fontes de dados específicas e automatizando tarefas complexas. A ferramenta também suporta a criação de conectores personalizados, facilitando a integração com sistemas corporativos.
Para mais informações sobre o Copilot Studio, acesse o link: Copilot Studio
Família Phi-3: Modelos de Linguagem Avançados
A Microsoft ampliou sua família de modelos de linguagem, afirmando o seu compromisso em desenvolver soluções Open Source. E, como estamos vivenciando uma demanda crescente por modelos de linguagem, a Microsoft introduzindo o P**hi-3 Vision**, que combina capacidades de linguagem e visão, e novos modelos menores e mais eficientes. Esses modelos prometem ser altamente eficazes em uma variedade de aplicações.
Para mais informações sobre a Família Phi-3, acesse o link do artigo: New models added to the Phi-3 family, available on Microsoft Azure
Windows 365 e Parceria com Meta: Expansão para Novos Dispositivos
A parceria com a Meta permitirá que o Windows 365 seja utilizado em dispositivos Quest, trazendo a experiência do Windows para a realidade virtual e permitindo a criação de aplicativos volumétricos em 3D.
Keynote Dia 2 – Scott Guthrie
O segundo dia do evento foi marcado pela keynote de Scott Guthrie, que destacou a importância da nuvem e da IA especificamente para desenvolvedores. Ele apresentou várias novidades e atualizações relacionadas ao Azure e ao desenvolvimento de aplicativos relacionados à IA.
Caso queira assistir a keynote de Scott Guthrie assista abaixo:
Vamos agora conferir as principais novidades apresentadas por Scott Guthrie
GitHub Copilot Workspace: Revolucionando o Desenvolvimento de Software
Scott Guthrie anunciou o GitHub Copilot Workspace, uma evolução do GitHub Copilot que permite aos desenvolvedores brainstorm, planejamento, construção e teste de código usando linguagem natural. A ferramenta promete aumentar a produtividade e reduzir a complexidade do desenvolvimento de software.
O serviço por enquanto está em fase preview. Mas, você pode saber mais sobre o GitHub Copilot Workspace acessando o link: GitHub Copilot Workspace
AKS Automatic: Kubernetes Simplificado
A nova oferta AKS Automatic tem como proposta automatizar a configuração e gerenciamento de clusters Kubernetes, garantindo desempenho otimizado e segurança. Essa ferramenta é ideal para desenvolvedores que buscam simplicidade e eficiência na gestão de suas aplicações em contêineres.
.NET Aspire: Desenvolvimento em Nuvem Facilitado
A Microsoft lançou o como General Availability o .NET Aspire, uma ferramenta de código aberto que facilita o desenvolvimento de soluções nativas da nuvem, proporcionando segurança, confiabilidade e alto desempenho.
Se você deseja experimentar o .NET Aspire, acesse o tutorial: Quickstart: Build your first .NET Aspire app
E, se você for uma Pessoa Desenvolvedora C# e deseja saber como usar o .NET Aspire com Node.js, acesse o tutorial: Build .NET Aspire apps with Node.js
GitHub Copilot for Azure: Integração Perfeita com a Nuvem
A integração do GitHub Copilot com Azure permite que os desenvolvedores façam perguntas em linguagem natural sobre seus ambientes de nuvem Azure, aumentando a eficiência e mantendo os desenvolvedores no fluxo de trabalho.
Para saber mais sobre o GitHub Copilot for Azure, acesse o link: do artigo: Copilot in Azure Technical Deep Dive
Azure AI Studio: Hub de Desenvolvimento de IA Generativa
O Azure AI Studio é o centro de desenvolvimento para soluções de IA generativa, incluindo o novo serviço de tokens PGO Global, que oferece até 10 milhões de tokens por minuto de throughput, e um desconto de 50% para processamento de lotes fora do horário de pico.
Algumas das novidades apresentadas no Azure AI Studio:
Abordagem de Desenvolvimento Dual: Interface amigável e capacidades de desenvolvimento orientado a código
Experiências de Desenvolvimento: Integração com Azure Developer CLI (azd) e AI Toolkit para Visual Studio Code, facilitando operações de modelos de linguagem (LLMOps). (Em pré-visualização)
Modelos como Serviço (MaaS): Acesso a modelos de fundação de líderes do setor, permitindo a criação de apps de IA generativa sem necessidade de infraestrutura dedicada. (Em pré-visualização)
Ferramentas e Serviços de IA: Integração de dados, orquestração de prompts e avaliação de sistemas, suportando fluxos de trabalho multimodais. (Em pré-visualização)
Rastreamento e Depuração: Melhoria na visão e depuração de fluxos de trabalho de IA. (Em pré-visualização)
Monitoramento de Apps de IA Generativa: Monitoramento de uso de tokens, qualidade e métricas operacionais, com alertas para melhorias contínuas. (Em pré-visualização)
Agora o serviço está como General Availability. Para saber mais sobre o Azure AI Studio, acesse o link: Azure AI Studio
Modelos Frontier e Open Source: Flexibilidade e Escolha
A Microsoft está trazendo uma ampla gama de modelos de IA de código aberto para o Azure AI, incluindo mais de 1600 modelos de parceiros como Hugging Face, Meta, MSR AI e Nvidia, oferecendo flexibilidade e escolha para os desenvolvedores.
Devido a isso, a Microsoft informou que o novo modelo da OpenAI, o GPT-4o, que conta como um omni-modelo capaz de realizar tarefas de visão, texto e falas, estará disponível no Azure AI Studio.
Para saber mais sobre os modelos de IA de código aberto, acesse o link: OpenAI GPT-4o
Azure AI Search e Azure Cosmos DB: Poder para Aplicações RAG
Ferramentas como Azure AI Search e Azure Cosmos DB são essenciais para a criação de aplicações RAG (Retrieval-Augmented Generation), permitindo escalabilidade e alta qualidade nas respostas.
As novidades apresentadas sobre o Azure AI Search:
Capacidade de RAG em Escala: Suporte para tipos de vetor binário e outras funcionalidades de busca vetorial, melhorando a eficiência de armazenamento.
Relevância da Pesquisa: Melhorias na busca vetorial e híbrida, incluindo ponderação de vetores, controle de limiar de pontuação e aumento no tamanho máximo de recuperação de texto, aprimorando a precisão das respostas.
Integrações de Dados e Processamento:
Vetorização de imagens integrada via Azure AI Vision e novos modelos de embedding no catálogo do Azure AI Studio.
Conector OneLake para integração direta de dados do Microsoft Fabric ao Azure AI Search, ampliando as fontes de dados que podem ser indexadas e pesquisadas.
As novidades apresentadas sobre o Azure Cosmos DB:
Capacidades de Banco de Dados Vetorial Integradas: Indexação vetorial embutida e busca de similaridade vetorial no Azure Cosmos DB para NoSQL, eliminando a necessidade de um banco de dados vetorial separado. (Disponível em junho, em Preview)
Migração de Conta Serverless para Provisionada: Transição de contas serverless para modo de capacidade provisionada através do portal Azure ou CLI, mantendo acesso total a operações de leitura e escrita. (Em pré-visualização)
Recuperação de Desastres Entre Regiões: Recuperação de desastres no Azure Cosmos DB baseado em vCore para MongoDB, permitindo a criação de réplicas de clusters em outras regiões, com promoção automática em caso de falha. (Em Preview)
Integração com Vercel: Conexão fácil de apps Vercel a bancos de dados Azure Cosmos DB existentes ou criação de novas contas Azure Try Cosmos DB integradas aos projetos Vercel. (Em GA)
SDK Go para Azure Cosmos DB: O SDK Go permite operações em contas Azure Cosmos DB para NoSQL, suportando regiões preferidas, tentativas entre regiões e diagnósticos de solicitações. (GA)
Para saber mais sobre as novidades lançadas sobre Azure Cosmos DB, acesse o link: aqui
Conclusão
O Microsoft Build 2024 foi um evento repleto de novidades e anúncios incríveis, principalmente voltados para a Inteligência Artificial e a nuvem. As parcerias com empresas como NVIDIA e AMD, o lançamento dos Copilot+ PCs e a expansão da família Phi-3 são exemplos de como a Microsoft está investindo em soluções inovadoras e de alto desempenho.
Além disso, a integração do GitHub Copilot com Azure e as atualizações no Azure AI Studio demonstram o compromisso da Microsoft em fornecer ferramentas poderosas e flexíveis para desenvolvedores de todo o mundo.
Claro que só foi possível abordar uma pequena parte das novidades apresentadas no evento. Para saber mais sobre todas as novidades e anúncios apresentados durante o Microsoft Build, existe um book explicando detalhadamente cada uma das novidades. Vocês podem acessar o book através do link: Microsoft Build 2024 – Book of News
Espero que tenham gostado do resumo e que as novidades apresentadas possam inspirar vocês a criar soluções inovadoras e impactantes.
Nos vemos no próximo artigo!
Microsoft Tech Community – Latest Blogs –Read More
Partner Blog | What’s new for Microsoft partners: April 2024 edition
Over the past few months, we have continued to add benefits and resources to the Microsoft AI Cloud Partner Program to help you and your customers realize the most from our latest technology. These changes have been informed by partner feedback and developed with the diversity of the partner community in mind.
In this blog, you’ll find links to expert insights, redesigned learning materials, and updated benefits to accelerate your growth in the coming year.
Announcements
State of the Partner Ecosystem: Chief Partner Officer Nicole Dezen showcased the latest Microsoft partner business news, changes, updates, and momentum in her annual State of the Partner Ecosystem post on the Official Microsoft Blog. Learn about program updates, including new designations and certifications for partners. Find out how we are equipping partners through AI skilling, and read about partners delivering AI solutions around the world.
New benefits packages: In January, we launched three new benefits packages designed to help partners at various stages of growth to develop their business. Find out which package is right for you by reading more on the partner blog.
Realigning global licensing for Microsoft 365: Last year Microsoft updated the way Microsoft 365, Office 365, and Teams were licensed in the European Economic Area (EEA) and Switzerland. We have recently announced our plan to extend that approach worldwide to ensure globally consistent licensing. Learn more.
Continue reading here
Microsoft Tech Community – Latest Blogs –Read More
Protect Against OWASP API Top 10 Security Risks Using Defender for APIs
Overview
The Open Web Application Security Project (OWASP) Foundation is a nonprofit foundation dedicated to improving software security through community-led open-source projects, education, and transparency. The OWASP API Security Project focuses on strategies and solutions to understand and mitigate the unique vulnerabilities and security risks of APIs. In this post, we’ll dive into how Defender for APIs (a plan provided by Microsoft Defender for Cloud) provides security coverage for the OWASP API Top 10 security risks.
Defender for APIs offers full lifecycle protection, detection, and response coverage for APIs. Defender for APIs helps you to gain visibility into business-critical APIs. You can investigate and improve your API security posture, prioritize vulnerability fixes, and quickly detect active real-time threats.
Concepts
Security recommendations – Recommendations in Defender for Cloud are based on the Microsoft cloud security benchmark. The Microsoft cloud security benchmark is the Microsoft-authored set of guidelines for security and compliance best practices based on common compliance frameworks. This widely respected benchmark builds on the controls from the Center for Internet Security (CIS) and the National Institute of Standards and Technology (NIST) with a focus on cloud-centric security. For a complete list of API security recommendations, see Security recommendations – a reference guide
Security alerts – Security alerts are the notifications generated by Defender for Cloud’s workload protection plans when runtime threats are identified in your Azure, hybrid, or multi-cloud environments. For a complete list of API security alerts, see Security alerts – a reference guide
Attack path analysis – Defender for Cloud uses environment context to perform a risk assessment of your security issues and subsequently identifies the biggest security risk issues. Defender for Cloud then analyzes which security issues are part of potential attack paths that attackers could use to breach your environment. To learn more, see Identify and remediate attack paths
Defender for APIs – OWASP API Security Coverage Mapping
OWASP API Risk
Defender for APIs Security Coverage
Broken Object Level Authorization (API1:2023)
(Security alert) Parameter enumeration on an API endpoint – A single IP was observed enumerating parameters when accessing one of the API endpoints
(Security alert) Distributed parameter enumeration on an API endpoint – The aggregate user population (all IPs) was observed enumerating parameters when accessing one of the API endpoints.
Broken Authentication (API2:2023)
(Security recommendation) API endpoints in Azure API Management should be authenticated – API endpoints published within Azure API Management should enforce authentication to help minimize security risk.
(Security recommendation) API Management calls to API backends should be authenticated – Calls from API Management to backends should use some form of authentication, whether via certificates or credentials.
Broken Object Property Level Authorization (API3:2023)
(Security alert) Previously unseen parameter used in an API call – A single IP was observed accessing one of the API endpoints using a previously unseen parameter in the request.
(Security alert) Unusually large response payload transmitted between a single IP address and an API endpoint – A suspicious spike in API response payload size was observed for traffic between a single IP and one of the API endpoints.
Unrestricted Resource Consumption (API4:2023)
(Security alert) Suspicious population-level spike in API traffic to an API endpoint – A suspicious spike in API traffic was detected at one of the API endpoints.
(Security alert) Suspicious spike in API traffic from a single IP address to an API endpoint – A suspicious spike in API traffic was detected from a client IP to the API endpoint.
(Security alert) Unusually large request body transmitted between a single IP address and an API endpoint – A suspicious spike in API request body size was observed for traffic between a single IP and one of the API endpoints.
(Security alert) Suspicious spike in latency for traffic between a single IP address and an API endpoint – A suspicious spike in latency was observed for traffic between a single IP and one of the API endpoints.
(Security alert) API requests spray from a single IP address to an unusually large number of distinct API endpoints – A single IP was observed making API calls to an unusually large number of distinct endpoints.
(Security recommendation) API Management direct management endpoint should not be enabled – The direct management REST API in Azure API Management bypasses Azure Resource Manager role-based access control, authorization, and throttling mechanisms, thus increasing the vulnerability of your service.
Broken Function Level Authorization (API5:2023)
No coverage
Unrestricted Access to Sensitive Business Flows (API6:2023)
(Attack path analysis) Internet exposed APIs that are unauthenticated carry sensitive data
(Security alert) Suspicious spike in API traffic from a single IP address to an API endpoint – A suspicious spike in API traffic was detected from a client IP to the API endpoint.
Server-Side Request Forgery (API7:2023)
No coverage
Security Misconfiguration (API8:2023)
(Security recommendation) API endpoints that are unused should be disabled and removed from the Azure API Management service – As a security best practice, API endpoints that haven’t received traffic for 30 days are considered unused and should be removed from the Azure API Management service.
(Security recommendation) API Management APIs should use only encrypted protocols – APIs should be available only through encrypted protocols, like HTTPS or WSS. Avoid using unsecured protocols, such as HTTP or WS to ensure security of data in transit.
(Security recommendation) API Management secret named values should be stored in Azure Key Vault – Named values are a collection of name and value pairs in each API Management service.
(Security recommendation) API Management should disable public network access to the service configuration endpoints – To improve the security of API Management services, restrict connectivity to service configuration endpoints, like direct access management API, Git configuration management endpoint, or self-hosted gateways configuration endpoint.
(Security recommendation) API Management calls to API backends should be authenticated – Calls from API Management to backends should use some form of authentication, whether via certificates or credentials. Does not apply to Service Fabric backends.
Improper Inventory Management (API9:2023)
Inventory dashboard – Centralized inventory of all managed APIs and related API security findings.
External exposure – Classify which API endpoints are exposed externally.
Sensitive data classification – Classify APIs that receive or respond with sensitive data, to support risk prioritization, including integration support with Microsoft MIP Purview.
Unsafe Consumption of APIs (API10:2023)
No coverage
API Security Testing
Microsoft Defender for Cloud supports third-party tools to help enhance the existing runtime security capabilities that are provided by Defender for APIs. Defender for Cloud supports proactive API security testing capabilities in early stages of the development lifecycle (including DevOps pipelines). The support for third-party solutions helps to further streamline, integrate, and orchestrate security findings from other vendors with Microsoft Defender for Cloud.
This support enables full lifecycle API security (extending to OWASP API top 10 risks), and the ability for security teams to effectively discover and remediate API security vulnerabilities before they are deployed in production. To learn more, see the following: Partner applications in Microsoft Defender for Cloud for API security testing (preview)
Next Steps
To learn more about how Defender for APIs augments the security offered by Azure Web Application Firewall (Azure WAF) and Azure API Management, see the following: Defender for APIs Better Together with Azure Web Application Firewall and Azure API Management.
To learn more about how Azure API Management helps mitigate risks against the OWASP API risks, see the following: Recommendations to mitigate OWASP API Security Top 10 threats using API Management
Microsoft Tech Community – Latest Blogs –Read More
App Service *.azurewebsites.net TLS Cert Renewal for Web Apps, Functions, and Logic Apps (Standard)
This blog contains information about *.azurewebsites.net TLS certificate changes for Web Apps, Functions, and Logic Apps (Standard). Customers should not be impacted by this change. The scope of services affected includes Web Apps, Functions, and Logic Apps (Standard); Logic Apps (Consumption) and resources hosted on an ASE are not impacted. This change is limited to public Azure cloud; government clouds are not affected.
Every Web Apps, Functions, and Logic Apps (Standard) has its own default hostname that goes by “<resource-name>.azurewebsites.net” where App Service secures it with a wildcard *.azurewebsites.net TLS certificate. The current intermediate Microsoft PKI Subordinate CA certificates were set to expire on June 27th, 2024. App Service used these intermediate certificates in the default TLS certificate *.azurewebsites.net. On March 13th, 2024, App Service renewed the TLS certificate and used a new set of Subordinate CAs while the root certificate remained the same. Due to the distributed asynchronous nature of the renewal process, there isn’t an exact date when the new TLS certificate will be visible to individual Web Apps, Functions, and Logic Apps (Standard).
Terminology and Concepts
Certificate Authority: (CA) An entity that is responsible for the creation, issuance, revocation, and management of certificates. The term applies equally to both Roots CAs and Subordinate CAs.
Root CA: The top level Certification Authority whose Root Certificate is distributed by Application Software Suppliers and that issues Subordinate CA Certificates.
Root Certificate: The self‐signed certificate issued by the Root CA to identify itself and to facilitate verification of certificates issued to its Subordinate CAs.
Subordinate CA: (Sub CA) A Certification Authority whose certificate is signed by the Root CA or another Subordinate CA.
We expect that this change will be a non-event and will not impact customers. However, you may be impacted if an application has incorrectly taken a hard dependency on the *.azurewebsites.net TLS certificate, for example by way of “certificate pinning”. Certificate pinning is a practice where an application only allows a specific list of acceptable Certificate Authorities (CAs), public keys, thumbprints, etc. Applications should never pin to the *.azurewebsites.net TLS certificate. Applications requiring certificate stability should use custom domains in conjunction with custom TLS certificates for those domains. You can refer to the recommended best practices section of this article for more information.
Recommended best practices
Certificate pinning of *.azurewebsites.net TLS certificates is not recommended because the *.azurewebsites.net TLS certificate could be rotated anytime given the nature of App Service as a Platform as a Service (PaaS). In the event that the service rotates the App Service default wildcard TLS certificate, certificate pinned applications will break and disrupt the connectivity for applications that are hardcoded to a specific set of certificate attributes. The periodicity with which the *.azurewebsites.net TLS certificate is rotated is also not guaranteed since the rotation frequency can change at any time.
If an application needs to rely on certificate pinning behavior, it is recommended to add a custom domain to a Web Apps, Functions, and Logic Apps (Standard) and provide a custom TLS certificate for the domain which can then be relied on for certificate pinning.
Note that applications which rely on certificate pinning should also not have a hard dependency on an App Service Managed Certificate. App Service Managed Certificates could be rotated anytime, leading to similar problems for applications that rely on stable certificate properties. It is best practice to provide a custom TLS certificate for applications that rely on certificate pinning.
Refer to our documentation for best practices for Azure App Service for more information.
Microsoft Tech Community – Latest Blogs –Read More
FAQ: Marketplace private offers through CSP?
Q: is it possible for a customer procuring Azure via a CSP (Cloud Solution Provider) to make Marketplace purchases? If so, can this also be a private offer from the ISV (even if it’s likely the CSP managing the subscriptions/billing ID for the end customer)?
I am particularly interested in how the customer will get the ISV SaaS solution deployed at their end (in this case through the CSP who own the subscription).
A: It really depends on the CSP –> customer agreement. Some CSPs charge for purchasing from the marketplace, for others it is free. There are two common scenarios:
1- The customer creates a separate subscription/billing account as “pay as you go” and did the purchase of a private offer
2- The CSP purchased the offer on the behalf of the customer and here they can choose to overcharge or not
Assumed the following:
1- In order to receive a private offer, you need to “own” the billing accountID – usually in this scenario, it belongs to the CSP
2- You still need to be an Enterprise Admin or Billing Account owner to purchase (it is not always allowed by the CSP)
Overall:
The customer should get in contact with the CSP, either getting the right setup or agreeing on the “overcharge”
You should also refer to the following documentation related to this topic:
Video tutorials
Private Offers for CSP Partners Overview
Private Offer Creation by ISVs for CSP Partners
The CSP Partner Private Offer Purchase Process
Q: is it possible for a customer procuring Azure via a CSP (Cloud Solution Provider) to make Marketplace purchases? If so, can this also be a private offer from the ISV (even if it’s likely the CSP managing the subscriptions/billing ID for the end customer)?
I am particularly interested in how the customer will get the ISV SaaS solution deployed at their end (in this case through the CSP who own the subscription).
A: It really depends on the CSP –> customer agreement. Some CSPs charge for purchasing from the marketplace, for others it is free. There are two common scenarios:
1- The customer creates a separate subscription/billing account as “pay as you go” and did the purchase of a private offer
2- The CSP purchased the offer on the behalf of the customer and here they can choose to overcharge or not
Assumed the following:
1- In order to receive a private offer, you need to “own” the billing accountID – usually in this scenario, it belongs to the CSP
2- You still need to be an Enterprise Admin or Billing Account owner to purchase (it is not always allowed by the CSP)
Overall:
The customer should get in contact with the CSP, either getting the right setup or agreeing on the “overcharge”
You should also refer to the following documentation related to this topic:
Configure ISV to CSP partner private offers in Microsoft Partner Center – Marketplace publisher | Microsoft Learn
Video tutorials
Private Offers for CSP Partners Overview
Private Offer Creation by ISVs for CSP Partners
The CSP Partner Private Offer Purchase Process Read More
Running python/flask app on IIS using ASP.Net Core Module handler
Looking for insight into running/flask app using a modern/maintained method.
wfastcgi is essentially deprecated (version 3.0.0 was released 7 years ago).
HttpPlatform handler was replaced by the asp.net core module even before that (2016).
I’ve made some progress using the ASP.Net Core Module handler – but when I try to launch the app I get an error:
Application ‘/LM/W3SVC/1/ROOT’ with physical root ‘C:inetpubwwwroot’ failed to start process with commandline ‘“C:Python312python.exe” C:inetpubwwwrootapp.py’ with multiple retries. Failed to bind to port ‘11905’. First 30KB characters of captured stdout and stderr logs from multiple retries:
Nothing in the python log.
Any feedback appreciated.
Looking for insight into running/flask app using a modern/maintained method. wfastcgi is essentially deprecated (version 3.0.0 was released 7 years ago).HttpPlatform handler was replaced by the asp.net core module even before that (2016). I’ve made some progress using the ASP.Net Core Module handler – but when I try to launch the app I get an error:Application ‘/LM/W3SVC/1/ROOT’ with physical root ‘C:inetpubwwwroot’ failed to start process with commandline ‘“C:Python312python.exe” C:inetpubwwwrootapp.py’ with multiple retries. Failed to bind to port ‘11905’. First 30KB characters of captured stdout and stderr logs from multiple retries:Nothing in the python log. Any feedback appreciated. Read More
Stakeholders AI
amMicrosoft Legal international Organisation and Stakeholders partners for Cloud business.
amMicrosoft Legal international Organisation and Stakeholders partners for Cloud business. Read More
