Back to all videos

Azure Update - 6th February 2026

By John Savill's Technical Training

Cloud ComputingKubernetesData StorageAI Technology
Share:

Azure Update - February 6th: Detailed Summary

Key Concepts:

  • Azure Monitor Agent Retirement: Transitioning from storage/event hub data collection to Log Analytics & native integrations.
  • Kubernetes Fleet Manager (Namespace Scoped Placement): Granular control over workload deployment across AKS & Arc-enabled Kubernetes clusters.
  • Confidential VMs (AMDv6): Encryption in use – protecting data while in memory and during processing.
  • DRS 2.2 Rule Set (App Gateway): Enhanced web application firewall with Microsoft threat intelligence.
  • X-Forwarded-For Rate Limiting (App Gateway v2): Rate limiting based on original client IP address.
  • Weak Cipher Suite Retirement (AFD & CDN): Removing outdated encryption methods for improved security.
  • Virtual Network Routing Appliance: Native Azure resource for high-performance, scalable routing.
  • Azure Container Storage v2.1 (GA) & Elastic SAN: Advanced storage options for Kubernetes, including stateful workloads.
  • Elastic ZRS (Azure NetApp Files): Zone-redundant storage for high availability and data protection.
  • Serverless Workspaces (Azure Databricks): On-demand compute for data engineering and analytics.
  • Claude Opus 46: Anthropic’s advanced reasoning model integrated into Azure services.

1. Compute Updates

The update began with a discussion of changes to the Azure Monitor Agent. The preview feature allowing data collection from virtual machines and sending it to storage accounts or event hubs is being retired. Users previously utilizing storage for low-cost data archiving are advised to switch to custom tableing in Log Analytics using the auxiliary plan, a very low-cost tier. For those using Event Hubs, increased native support for final destinations is now available, offering a more streamlined solution.

Azure Kubernetes Fleet Manager received a significant update with namespace-scoped placement capabilities. This allows for more granular control over workload deployment. Previously, deployments targeted entire clusters, potentially impacting entire namespaces. Now, deployments can be targeted based on resource name, type, and labels, crucial for scenarios with multiple workloads sharing a single namespace. This feature enhances flexibility and minimizes unintended impact during updates. The Fleet Manager supports at-scale management of AKS clusters and Arc-enabled Kubernetes clusters (any CNCF compatible Kubernetes deployment), managing workload placement, node images, Kubernetes updates, namespaces, and DNS load balancing.

AMDv6 Confidential VMs are now available in 11 new regions, expanding their coverage beyond the initial six. These VMs offer encryption in use, protecting data while it’s being processed in both memory and the CPU. This doesn’t require application changes, providing a transparent security enhancement. The speaker highlighted the three pillars of data protection: encryption at rest, encryption in transit (TLS), and now encryption in use.

2. Networking Updates

Azure Application Gateway now features the DRS 2.2 rule set in General Availability (GA). This rule set is a superset of the OWSP Core Rule Set 334, augmented with Microsoft threat intelligence rules for broader coverage. The DRS 2.2 rule set includes new protections and detections, and introduces a “paranoia level” allowing administrators to balance security with the risk of blocking legitimate traffic.

App Gateway v2 is also in preview with X-Forwarded-For (XFF) rate limiting. The XFF header reveals the original client’s IP address, even when traffic passes through proxies or Content Delivery Networks (CDNs). This enables rate limiting based on the originating IP, potentially including geolocation, to mitigate high-volume traffic attacks.

Azure Front Door (AFD) and Azure Content Delivery Network (CDN) are retiring weak cipher suites starting in April. Specifically, DHE (Diffie-Hellman Ephemeral) cipher suites are being dropped in favor of elliptic curve versions of DHE, which offer equivalent security with smaller keys, resulting in faster performance and reduced resource consumption. The speaker noted that cipher suite negotiation occurs dynamically, but origins behind the gateway supporting only DHE will require updates.

A new Virtual Network Routing Appliance is available in preview. This native Azure resource, deployed in a dedicated subnet, provides high-performance, horizontally scalable routing, addressing the potential bottleneck of traditional VM-based routing solutions in HubSpoke networks. It supports IPv4 only and offers fast east-west traffic flow (within and between VNets).

3. Storage Updates

Azure Container Storage v2.1 is now generally available (GA). Designed for Kubernetes environments, it leverages the ACStore backend, enabling access to more advanced storage options than those typically available through Container Storage Interface (CSI) drivers. The update includes General Availability of Azure Elastic SAN integration. Previously limited to ephemeral discs (local storage), users can now leverage Elastic SAN for stateful workloads with high throughput and reduced management overhead. A new modular installation process allows users to install only the necessary components, reducing the cluster footprint.

Azure NetApp Files now offers Elastic ZRS (Zone-Redundant Storage) in preview. This provides resilience and zero data loss in the event of an Availability Zone outage, utilizing synchronous replication within a region. It maintains existing features like NFSv3, NFSv4.1, SMB, snapshots, and encryption.

4. Data & AI Updates

Serverless workspaces in Azure Databricks are now GA. This allows users to spin up compute resources on demand, paying only for actual usage. The service includes a default amount of storage and leverages the Unity Catalog for centralized governance and metadata management, simplifying infrastructure management. This is particularly useful for short-lived tasks like testing or training, as well as serverless production requirements.

Claude Opus 46, Anthropic’s most advanced reasoning model, is now available in Foundry, Copilot Studio, and GitHub Copilot. It’s optimized for complex coding, knowledge work, and tasks requiring advanced reasoning, boasting a 1 million token context window (in beta) and 128,000 token output.

5. Key Argument & Perspective

The speaker strongly advocates for learning Artificial Intelligence (AI), regardless of role (C-level executive to individual contributor). The speaker’s “TL;DR” (Too Long; Didn’t Read) is a resounding “yes,” emphasizing that AI is not a future trend but a present reality. Those who don’t focus on AI today risk being left behind as the learning curve accelerates. As stated, "I think it is going to be very real. it is real today and I think those that don't focus today are going to get left behind and there there's an acceleration of this learning and you want to be on the right end of that."

Conclusion:

This Azure update highlights a broad range of improvements across compute, networking, storage, and data/AI services. The focus is on enhancing security (Confidential VMs, DRS 2.2, cipher suite retirement), improving performance and scalability (Fleet Manager, Virtual Network Routing Appliance, Elastic SAN), and simplifying management (Serverless Databricks, modular Container Storage). The strong endorsement of AI learning underscores the importance of adapting to the evolving technological landscape. The updates provide actionable insights for Azure users seeking to optimize their infrastructure and leverage the latest capabilities.

Chat with this Video

AI-Powered

Hi! I can answer questions about this video "Azure Update - 6th February 2026". What would you like to know?

Chat is based on the transcript of this video and may not be 100% accurate.

Related Videos

Ready to summarize another video?

Summarize YouTube Video