πŸ”’ Guided

Pre-launch preview. Authorised access only.

Incorrect code

Guided by A Guide to Cloud
Explore AB-900 AI-901
Guided DP-300 Domain 5
Domain 5 β€” Module 5 of 6 83%
27 of 28 overall

DP-300 Study Guide

Domain 1: Plan and Implement Data Platform Resources

  • Choose Your Azure SQL Platform Free
  • Deploy and Configure Azure SQL Free
  • Scale, Performance, and Compression Free
  • Migration Planning: Online vs Offline Free
  • Execute and Troubleshoot Migrations Free

Domain 2: Implement a Secure Environment

  • Entra Authentication for Azure SQL
  • Security Principals, Permissions, and T-SQL
  • Encryption: TDE, Always Encrypted, and VBS Enclaves
  • Network Security: Firewalls, Private Links, and Endpoints
  • Data Classification and Auditing
  • Data Masking, Ledger, and Row-Level Security

Domain 3: Monitor, Configure, and Optimize Database Resources

  • Performance Baselines and Monitoring Tools
  • Database Watcher and Extended Events
  • Query Store: Configure and Monitor
  • Blocking, DMVs, and Execution Plans
  • Index and Query Optimization
  • Database Maintenance: Indexes, Statistics, and Integrity
  • Automatic Tuning and Performance Settings

Domain 4: Configure and Manage Automation of Tasks

  • Automation Landscape: What Runs Where
  • SQL Server Agent Jobs
  • Deploy with ARM, Bicep, PowerShell, and CLI
  • Elastic Jobs and Azure Automation

Domain 5: Plan and Configure an HA/DR Environment

  • HA/DR Strategy: RPO, RTO, and Architecture
  • Backup and Restore: Strategy and Native Tools
  • Point-in-Time Restore, LTR, and Cloud Backup
  • Geo-Replication and Failover Groups
  • Always On: Availability Groups and FCIs
  • Log Shipping and HA/DR Operations

DP-300 Study Guide

Domain 1: Plan and Implement Data Platform Resources

  • Choose Your Azure SQL Platform Free
  • Deploy and Configure Azure SQL Free
  • Scale, Performance, and Compression Free
  • Migration Planning: Online vs Offline Free
  • Execute and Troubleshoot Migrations Free

Domain 2: Implement a Secure Environment

  • Entra Authentication for Azure SQL
  • Security Principals, Permissions, and T-SQL
  • Encryption: TDE, Always Encrypted, and VBS Enclaves
  • Network Security: Firewalls, Private Links, and Endpoints
  • Data Classification and Auditing
  • Data Masking, Ledger, and Row-Level Security

Domain 3: Monitor, Configure, and Optimize Database Resources

  • Performance Baselines and Monitoring Tools
  • Database Watcher and Extended Events
  • Query Store: Configure and Monitor
  • Blocking, DMVs, and Execution Plans
  • Index and Query Optimization
  • Database Maintenance: Indexes, Statistics, and Integrity
  • Automatic Tuning and Performance Settings

Domain 4: Configure and Manage Automation of Tasks

  • Automation Landscape: What Runs Where
  • SQL Server Agent Jobs
  • Deploy with ARM, Bicep, PowerShell, and CLI
  • Elastic Jobs and Azure Automation

Domain 5: Plan and Configure an HA/DR Environment

  • HA/DR Strategy: RPO, RTO, and Architecture
  • Backup and Restore: Strategy and Native Tools
  • Point-in-Time Restore, LTR, and Cloud Backup
  • Geo-Replication and Failover Groups
  • Always On: Availability Groups and FCIs
  • Log Shipping and HA/DR Operations
Domain 5: Plan and Configure an HA/DR Environment Premium ⏱ ~13 min read

Always On: Availability Groups and FCIs

Configure Always On availability groups on Managed Instance and Azure VMs. Set up Failover Cluster Instances for SQL Server on Azure VMs.

Always On technologies

β˜• Simple explanation

Always On Availability Groups (AGs) are like having a team of scribes copying the same document. One scribe (primary) writes, and the others (secondaries) make exact copies in real time. If the primary scribe is sick, a secondary takes over immediately.

Failover Cluster Instances (FCIs) are like a shared office β€” one person works at the desk at a time, but if they leave, someone else sits down and picks up exactly where they left off. The desk (shared storage) stays the same.

AGs replicate at the database level. Each replica has its own storage and SQL Server instance. Supports synchronous (zero data loss) and asynchronous (performance over consistency) modes.

FCIs are instance-level failover. A shared storage layer (Azure Shared Disks, Storage Spaces Direct, or premium file shares) is accessed by one active node at a time.

Always On Availability Groups

AG architecture on Azure VMs

ComponentPurpose
Primary replicaHandles all read-write workloads
Secondary replicasReceive replicated data; can be readable
ListenerVirtual network name + IP β€” applications connect here
Synchronous modeZero data loss (RPO = 0), slight latency
Asynchronous modeBetter performance, possible data loss (RPO > 0)

Setting up AGs on Azure VMs

  1. Create a Windows Server Failover Cluster (WSFC) across 2+ Azure VMs
  2. Enable Always On in SQL Server Configuration Manager
  3. Create the AG β€” define primary and secondary replicas
  4. Configure the listener β€” Azure Load Balancer required for the VIP
  5. Add databases to the AG
-- Create the Availability Group
CREATE AVAILABILITY GROUP NorthStarAG
WITH (AUTOMATED_BACKUP_PREFERENCE = SECONDARY)
FOR DATABASE NorthStarERP, NorthStarHR
REPLICA ON
    'SQL-VM-1' WITH (
        ENDPOINT_URL = 'TCP://SQL-VM-1:5022',
        AVAILABILITY_MODE = SYNCHRONOUS_COMMIT,
        FAILOVER_MODE = AUTOMATIC,
        SECONDARY_ROLE (ALLOW_CONNECTIONS = READ_ONLY)),
    'SQL-VM-2' WITH (
        ENDPOINT_URL = 'TCP://SQL-VM-2:5022',
        AVAILABILITY_MODE = SYNCHRONOUS_COMMIT,
        FAILOVER_MODE = AUTOMATIC,
        SECONDARY_ROLE (ALLOW_CONNECTIONS = READ_ONLY));

-- Create the listener
ALTER AVAILABILITY GROUP NorthStarAG
ADD LISTENER 'NorthStarAGListener' (
    WITH IP ((N'10.0.1.100', N'255.255.255.0')),
    PORT = 1433);
ℹ️ Azure Load Balancer for AG listener

On Azure VMs, the AG listener requires an Azure Load Balancer (or distributed network name for Windows Server 2019+):

  • Load Balancer provides the floating virtual IP
  • Health probe on port 59999 detects which VM is the primary
  • Only the primary responds to the probe β†’ traffic routes there
  • Alternative: Windows Server 2019+ supports Distributed Network Name (DNN) β€” no load balancer needed, simpler setup

AGs on Managed Instance

MI uses AGs internally for built-in HA (Business Critical tier). For cross-region DR:

  • MI failover groups use distributed AG technology under the hood
  • You don’t configure AGs directly on MI β€” failover groups handle it
  • The MI link (to on-prem) also uses distributed AG technology

Failover Cluster Instances (FCIs)

FCIs provide instance-level failover β€” the entire SQL Server instance fails over to another node.

FCI architecture on Azure VMs

ComponentPurpose
Active nodeRuns the SQL Server instance
Passive node(s)Stand by, ready to take over
Shared storageAzure Shared Disks, Storage Spaces Direct, or Azure Premium File Share
WSFCWindows cluster manages failover detection

Shared storage options

FCI Storage Options on Azure
StoragePerformanceAvailability ZonesComplexity
Azure Shared DisksGood (Premium SSD)Limited (zone constraints)Low
Storage Spaces Direct (S2D)Excellent (local NVMe)Yes (cross-zone)High
Azure Premium File ShareGoodYes (ZRS)Low

AG vs FCI comparison

Availability Groups vs Failover Cluster Instances
FeatureAvailability GroupsFailover Cluster Instances
Failover scopeDatabase-levelInstance-level (all databases)
Shared storageNo (each replica has own storage)Yes (required)
Readable secondariesYesNo (passive nodes can't serve queries)
Multiple databasesSelected databases join the AGAll databases on the instance
System databasesNot replicatedShared (on shared storage)
Azure platformSQL on VMs (full), MI (built-in)SQL on VMs only
SQL Server editionEnterprise (Standard with 1 DB limitation)Enterprise or Standard
Question

What is the key architectural difference between AGs and FCIs?

Click or press Enter to reveal answer

Answer

AGs replicate at the database level β€” each replica has its own storage. FCIs failover at the instance level β€” all nodes share the same storage, and only one node is active.

Click to flip back
Question

Why does an AG listener on Azure VMs need an Azure Load Balancer?

Click or press Enter to reveal answer

Answer

Azure doesn't support gratuitous ARP. The Load Balancer provides the floating virtual IP and uses a health probe to detect which VM is the primary replica, routing traffic accordingly.

Click to flip back
Question

What shared storage options exist for FCI on Azure VMs?

Click or press Enter to reveal answer

Answer

Azure Shared Disks (simplest, zone constraints), Storage Spaces Direct (best performance, complex), and Azure Premium File Shares (zone-redundant, moderate performance).

Click to flip back
Knowledge Check

Kenji needs database-level HA with readable secondaries for offloading report queries on Azure VMs. Which solution should he implement?

🎬 Video coming soon

Next up: Log Shipping and HA/DR Operations β€” configure log shipping and manage HA/DR monitoring and troubleshooting.

← Previous

Geo-Replication and Failover Groups

Next β†’

Log Shipping and HA/DR Operations

Guided

I learn, I simplify, I share.

A Guide to Cloud YouTube Feedback

© 2026 Sutheesh. All rights reserved.

Guided is an independent study resource and is not affiliated with, endorsed by, or officially connected to Microsoft. Microsoft, Azure, and related trademarks are property of Microsoft Corporation. Always verify information against Microsoft Learn.