edit pass: introduction-to-migrating-gcp-to-azure

Author: ShawnJackson

learn-pr/azure/introduction-to-migrating-gcp-to-azure/4-investigate-iaas-features.yml

@@ -1,8 +1,8 @@
 ### YamlMime:ModuleUnit
 uid: learn.introduction-migrating-gcp-azure.investigate-iaas-features
-title: Investigate infrastructure-as-a-service features
+title: Investigate IaaS features
 metadata:
-  title: Investigate Infrastructure-as-a-Service Features
+  title: Investigate IaaS Features
   description: "Learn about compute, networking, and storage services available in Microsoft Azure."
   ms.date: 01/16/2025
   author: carols

learn-pr/azure/introduction-to-migrating-gcp-to-azure/8-knowledge-check.yml

@@ -22,7 +22,7 @@ quiz:
     - content: "Azure Functions"
       isCorrect: false
       explanation: "Incorrect. Azure Functions is a service that hosts custom code for serverless execution. It isn't designed to store and serve videos."
-  - content: "You regularly use the operations suite in Google Cloud to examine users and their actions so that you can spot any inappropriate permissions. You're migrating your cloud VMs to Azure. What tool can you use for the same purpose?"
+  - content: "You regularly use the operations suite in Google Cloud to examine users and their actions so that you can spot any inappropriate permissions. You're migrating your cloud virtual machines to Azure. What tool can you use for the same purpose?"
     choices:
     - content: "Azure Kubernetes Service (AKS)"
       isCorrect: false
@@ -33,14 +33,14 @@ quiz:
     - content: "Azure Monitor"
       isCorrect: true
       explanation: "Correct. By monitoring your resources and users, you can spot when permissions, roles, and policies might be incomplete or inappropriate."
-  - content: "You want to deploy containers into Kubernetes clusters hosted in both Google Kubernetes Engine (GKE) and Azure AKS. Which declarative file format can you use?"
+  - content: "You want to deploy containers into Kubernetes clusters hosted in both Google Kubernetes Engine (GKE) and AKS. Which declarative file format can you use?"
     choices:
     - content: "Bicep"
       isCorrect: false
-      explanation: "Incorrect. Bicep is a declarative deployment file format but isn't supported in GKE."
+      explanation: "Incorrect. Bicep is a declarative file format for deployment but isn't supported in GKE."
     - content: "Kubernetes manifests"
       isCorrect: true
       explanation: "Correct. Both GKE and AKS support Kubernetes manifest files."
     - content: "Terraform"
       isCorrect: false
-      explanation: "Incorrect. Terraform is a declarative deployment file format but isn't supported in AKS."
+      explanation: "Incorrect. Terraform is a declarative file format for deployment but isn't supported in AKS."

learn-pr/azure/introduction-to-migrating-gcp-to-azure/includes/1-introduction.md

@@ -1,4 +1,4 @@
-Google Cloud Platform (GCP) is similar to Microsoft Azure in that it offers a growing range of AI, compute, storage, database, and other services. Although these platforms have similarities in their capabilities, the implementations of their cloud services are often different. When you're planning a migration for some or all of your workloads, you need to understand important concepts, such as identity and access management (IAM), governance, infrastructure-as-a-service (IaaS) services, and storage.
+Google Cloud Platform (GCP) is similar to Microsoft Azure in that it offers a growing range of AI, compute, storage, database, and other services. Although these platforms have similarities in their capabilities, the implementations of their cloud services are often different. When you're planning a migration for some or all of your workloads, you need to understand important concepts, such as identity and access management (IAM), governance, infrastructure as a service (IaaS), and storage.
 
 Suppose you work for a global cycling retailer. You host most of your business-critical systems on GCP. A recent merger with a retailing competitor requires you to understand its cloud systems, which are hosted on Azure. You want to investigate the differences and similarities between Azure and GCP. And you want to determine how systems equivalent to your GCP architecture can be deployed in Azure.
 

learn-pr/azure/introduction-to-migrating-gcp-to-azure/includes/2-compare-identity-access-management.md

@@ -12,7 +12,7 @@ IAM includes user authentication, authorization, and account provisioning. Organ
 
 Google Cloud and Azure both provide mechanisms to control access to resources, and both encourage the principle of least privilege. However, there are differences in how the two platforms implement identity and access.
 
-Before we cover the details of access control, let's first compare the terminologies that the platforms use:
+Before we cover the details of access control, let's first compare the terminology that the platforms use:
 
 | Azure | Google Cloud | Comments |
 |---|---|---|
@@ -29,13 +29,16 @@ In Google Cloud, you can create user accounts and assign them permissions to clo
 
 ### Resource groups and resource hierarchies
 
-In Google Cloud, there's a hierarchy of objects that you can use to organize resources and control access. These objects include:
+Google Cloud has a hierarchy of objects that you can use to organize resources and control access:
 
-- **Organizations**: Organizations are the largest, root-level object.
-- **Folders**: Within each organization, use folders to segregate resources.
-- **Projects**: Within each folder, you can create multiple projects. Each project contains the resources that you need to address a single purpose.
+- **Organization**: An organization is the largest, root-level object.
+- **Folder**: Within each organization, use folders to segregate resources.
+- **Project**: Within each folder, you can create multiple projects. Each project contains the resources that you need to address a single purpose.
 
-In Azure, the largest object that can contain resources is the *subscription*. Within a subscription, use *resource groups* to organize resources according to the access level that you want to assign. All the resources in a group can be managed as a single unit.
+Azure has this hierarchy of objects:
+
+- **Subscription**: A subscription is the largest object that can contain resources.
+- **Resource group**: Within a subscription, use resource groups to organize resources according to the access level that you want to assign. All the resources in a group can be managed as a single unit.
 
 ### Security accounts for system components
 
@@ -52,7 +55,7 @@ Both cloud services also have types of service accounts with automatically manag
 
 ### Policies
 
-In Google Cloud, you can use policies to associate user accounts and service accounts with roles that assign permissions to resources. Policies can be applied at different levels of the hierarchy. For example, when policies are applied to a folder, the lower objects (such as the projects in that folder) inherit the policies.
+In Google Cloud, you can use policies to associate user accounts and service accounts with roles that assign permissions to resources. Policies can be applied at various levels of the hierarchy. For example, when policies are applied to a folder, the lower objects (such as the projects in that folder) inherit the policies.
 
 Azure policies aren't used for role management. Instead, they implement governance. We'll examine them in the next unit.
 

learn-pr/azure/introduction-to-migrating-gcp-to-azure/includes/3-map-governance-features.md

@@ -1,18 +1,14 @@
-Complex systems such as cloud computing platforms give users powerful functionality and a broad range of features. Meanwhile, many jurisdictions have been implementing data protection legislation that you must comply with when you handle customer data. To ensure that you operate legally and securely, you must take control of your users' actions--including the data that they store and manipulate. This control is called *governance*.
+Complex systems such as cloud computing platforms give users powerful functionality and a broad range of features. Meanwhile, many jurisdictions implement data protection legislation that you must comply with when you handle customer data. To ensure that you operate legally and securely, you must take control of your users' actions--including the data that they store and manipulate. This control is called *governance*.
 
-In the global cycling retailer, you have a set of policies for the governance of information. These policies enforce your company's requirements and relevant legislation in your Google Cloud systems. The competitor that you recently merged with has different policies implemented in its Azure subscriptions. You need to understand the Azure settings and review them to ensure continued compliance.
+Governance includes the identity and access management (IAM) that the previous unit described. But it also includes compliance, resource allocation, security, and cost management to ensure that your cloud usage aligns with organizational goals and regulatory requirements. Effective governance promotes transparency, accountability, and risk management. It enables companies to use cloud services while they maintain control over data integrity, security, and resource utilization.
+
+In your role at the global cycling retailer, you have a set of policies for the governance of information. These policies enforce your company's requirements and relevant legislation in your Google Cloud systems. The competitor that your company recently merged with has different policies implemented in its Azure subscriptions. You need to understand the Azure settings and review them to ensure continued compliance.
 
 In this unit, you examine governance tools in Azure and compare them to Google Cloud.
 
 :::image type="content" source="../media/governance-overview.png" alt-text="Diagram that shows the types of services provided by Microsoft Azure and Google Cloud, with governance highlighted." border="false":::
 
-## Compare governance in Azure and Google Cloud
-
-Governance includes the identity and access management (IAM) that the previous module described. But it also includes compliance, resource allocation, security, and cost management to ensure that your cloud usage aligns with organizational goals and regulatory requirements. Effective governance promotes transparency, accountability, and risk management. It enables companies to use cloud services while they maintain control over data integrity, security, and resource utilization.
-
-Azure and Google Cloud have governance tools with analogous features. Let's investigate and compare them.
-
-## Deploy resources
+## Resource deployment
 
 A complete custom system deployed on a cloud service often consists of various types of resources. For example, to implement a web app, you might need to deploy an HTML server, a database, several containers, and other components. Both Google Cloud and Azure have declarative deployment tools that you can use to ease the management of multiple resources and associate them into a single group of resources.
 
@@ -23,25 +19,25 @@ In Azure, you can use Azure Resource Manager templates (ARM templates) to comple
 > [!NOTE]
 > In Azure Blueprints, blueprints define a repeatable set of Azure resources that implement and adhere to an organization's standards, patterns, and requirements. However, Azure Blueprints is scheduled to be deprecated in July 2026. Consider using ARM templates or Bicep files instead.
 
-## Use policies
+## Policies
 
 In Google Cloud, you use policies in IAM to apply permissions to roles. In Azure policies, you not only enforce IAM but also enforce specific rules and regulations across cloud resources.
 
 Policies enable administrators to define and apply rules to help ensure compliance with organizational standards and regulatory requirements. Policies are defined in JSON format and can be applied to various scopes, such as subscriptions or resource groups.
 
-## Manage subscriptions
+## Subscription management
 
 In Azure, many companies have a single subscription to contain all their resources. But it's also possible to associate multiple subscriptions into a single object called a *management group*. Companies can use a management group to assign permissions and complete other governance tasks. For example, a company can apply Azure policies to all the subscriptions in a management group.
 
-## Manage costs
+## Cost management
 
 With limited budgets and tight margins, it's critical to ensure that you're getting the best value from your cloud services. You can use [Microsoft Cost Management](/azure/cost-management-billing/costs/overview-cost-management) and [Microsoft Billing](/azure/cost-management-billing/cost-management-billing-overview) to monitor and control Azure spending and optimize your resource use. These services provide detailed insights into your costs and usage to help you get the best value from your Azure investment.
 
-## Provide security
+## Security
 
-[Microsoft Defender for Cloud](/azure/defender-for-cloud/defender-for-cloud-introduction) is a cloud-native application protection platform (CNAPP) designed to prevent diverse cyberattacks and close well-known vulnerabilities. It offers unified security management and advanced threat protection across hybrid cloud workloads.
+[Microsoft Defender for Cloud](/azure/defender-for-cloud/defender-for-cloud-introduction) is a cloud-native application protection platform (CNAPP) that's designed to prevent diverse cyberattacks and close well-known vulnerabilities. It offers unified security management and advanced threat protection across hybrid cloud workloads.
 
-## Monitor activity
+## Activity monitoring
 
 In governance, it's vital to investigate what users and services are doing, and restrict their actions ahead of time. By monitoring your resources and users, you can spot when permissions, roles, and policies might be incomplete or inappropriate.
 

learn-pr/azure/introduction-to-migrating-gcp-to-azure/includes/4-investigate-iaas-features.md

@@ -1,6 +1,6 @@
 Assume that you start with an on-premises set of services, and you want to migrate those services into the cloud with the minimum amount of modification. You might choose to replicate your on-premises servers as cloud virtual machines (VMs), your networks as virtual network segments, and your disk storage as cloud storage services. Both Google Cloud and Azure can implement this approach, which is called *infrastructure as a service (IaaS)*.
 
-In the global cycling retailer, the competitor that the company recently acquired has its product database running on VMs and a set of virtual networks in its Azure subscription. The system stores product images and demonstration videos in Azure Blob Storage. You want to understand this system to assess whether to leave it in place or migrate the content to your product information store in Google Cloud.
+In the scenario of the global cycling retailer, the competitor that the company recently acquired has its product database running on VMs and a set of virtual networks in its Azure subscription. The system stores product images and demonstration videos in Azure Blob Storage. You want to understand this system to assess whether to leave it in place or migrate the content to your product information store in Google Cloud.
 
 In this unit, you compare compute, storage, and virtual network features in Google Cloud and Microsoft Azure.
 
@@ -19,14 +19,14 @@ If you choose an IaaS approach, you usually migrate on-premises servers and thei
 
 ## Compare storage options in Azure and Google Cloud
 
-Both Google Cloud and Azure provide scalable and flexible solutions for storing and managing data, so customers can access their information from anywhere. These services typically include object storage for unstructured data (like images and videos) and file storage. The services also offer specialized services for message queues, NoSQL databases for semistructured data, and archival solutions for long-term data retention at lower costs. This versatility allows businesses to optimize their data management strategies based on access patterns, performance needs, and budget considerations.
+Both Google Cloud and Azure provide scalable and flexible solutions for storing and managing data, so customers can access their information from anywhere. These services typically include object storage for unstructured data (like images and videos) and file storage. Both platforms also offer specialized services for message queues, NoSQL databases for semistructured data, and archival solutions for long-term data retention at lower costs. This versatility allows businesses to optimize their data management strategies based on access patterns, performance needs, and budget considerations.
 
 Azure storage accounts provide a range of information storage services that are optimized to common tasks. This table compares those services to services in Google Cloud:
 
 | Storage type | Azure | Google Cloud | Comments |
 |---|---|---|---|
 | Unstructured objects | Azure Blob Storage | Cloud Storage | These services are optimized for storing and serving large, unstructured files, such as images and videos. |
-| File shares | Azure Files | Filestore | These services behave as shared file storage compatible with the Server Message Block (SMB) protocol. |
+| File shares | Azure Files | Filestore | These services behave as shared file storage and are compatible with the Server Message Block (SMB) protocol. |
 | NoSQL tables | Azure Table Storage | Bigtable, Datastore | These services provide semistructured tabular data stores.  |
 | Messaging queues | Azure Queue Storage | Not applicable | Google Cloud has no precise equivalent of Queue Storage, but you might use Google Cloud Pub/Sub or Cloud Tasks for similar functionality. |
 
@@ -54,8 +54,8 @@ VMs and other services running in Azure or Amazon Web Services (AWS) must commun
 
 ## Learn more
 
-- [Virtual machine sizes overview](/azure/virtual-machines/sizes/overview)
 - [Virtual machines in Azure](/azure/virtual-machines/overview)
+- [Sizes for virtual machines in Azure](/azure/virtual-machines/sizes/overview)
 - [Linux on Azure](/training/paths/azure-linux/)
 - [Describe Azure compute and networking services](/training/modules/describe-azure-compute-networking-services/)
 - [Describe Azure storage services](/training/modules/describe-azure-storage-services/)