Turn your real-world experience into part of the show.

Microsoft Azure Podcast – Cloud Architecture, Security & Operations Episodes

Microsoft Azure is more than a collection of cloud services — it is an operating environment where identity, networking, security, and automation converge. The Azure Talk category explores how Azure behaves in real production scenarios, where architectural choices determine reliability, security posture, and long-term cost.

These episodes cover Azure fundamentals such as resource organization, subscriptions, management groups, networking design, identity integration, automation, monitoring, and cost governance. Special attention is given to how Azure services interact with Entra ID, Microsoft 365, and on-premises environments, as well as how security boundaries are enforced — or accidentally bypassed.

Azure Talk is not focused on quick-start tutorials or certification-style walkthroughs. Instead, we analyze architectural intent, failure modes, and operational consequences of design decisions made early in cloud adoption. Topics often include misconfigured identity flows, insecure automation, insufficient network segmentation, and the hidden risks of over-delegation to cloud-native services.

This category is designed for cloud architects, engineers, and IT leaders who need to understand Azure as a long-term platform rather than a collection of isolated services. If you are responsible for designing, operating, or securing Azure workloads in an enterprise environment, Azure Talk provides practical, experience-driven insight into how Microsoft Azure works in the real world.
July 7, 2026

Azure Networking Unlocked: Secure Azure Functions, Virtual Network Manager & Infrastructure as Code with Rex de Koning [MVP-MCT]

Azure networking has evolved far beyond simply connecting virtual machines. In this episode, we explore how modern Azure networking enables organizations to build secure, scalable, and fully automated cloud environments using Azure Functions, Azure Virtual Network Manager, and Infrastructure as Code.We begin by discussing how Azure Functions can securely access private resources without exposing services to the public internet. You'll learn how Virtual Network integration, private endpoints, and network isolation help organizations protect sensitive workloads while maintaining the flexibility of serverless computing. These capabilities are becoming essential for building secure cloud-native applications. We also cover the networking options available for Azure Functions across different hosting plans and the architectural decisions behind them.Next, we dive into Azure Virtual Network Manager and how it simplifies enterprise-scale networking. Instead of manually configuring hun…
July 6, 2026

The PowerShell Ceiling: Why You Need Bicep

PowerShell has become the automation standard for Microsoft environments, but it reaches its limits when managing modern cloud infrastructure at scale. In this episode, we explore why Azure Bicep has become the preferred Infrastructure as Code (IaC) language for deploying and maintaining Azure resources, and why relying solely on PowerShell can create long-term operational challenges.The discussion explains the fundamental differences between imperative and declarative automation. While PowerShell focuses on executing commands step by step, Bicep describes the desired end state of your infrastructure, allowing Azure Resource Manager to handle deployments consistently, repeatably, and idempotently.You'll learn why Bicep simplifies infrastructure management through reusable modules, parameterized deployments, and native Azure integration. The episode also covers how Bicep improves collaboration between architects, developers, and operations teams by making infrastructure easier …
Guest: Mirko Peters
July 5, 2026

How To Trick Microsoft Graph Into Securing Your Entire Tenant

Microsoft Graph is often seen as a reporting and management API—but what if it could become one of your most powerful security tools? In this episode, we explore how Microsoft Graph can be leveraged to uncover hidden risks, automate governance, and continuously improve the security posture of an entire Microsoft 365 tenant. Rather than relying solely on traditional security dashboards, Graph provides direct access to identities, permissions, groups, applications, devices, and collaboration data, enabling organizations to detect problems before they become incidents.You'll learn how to use Microsoft Graph to identify excessive permissions, orphaned resources, inactive accounts, risky application consents, external sharing, and configuration drift across Microsoft 365. The episode explains why security is ultimately a data problem and how Graph serves as the unified interface that makes tenant-wide visibility and automation possible.We also discuss practical automation scenarios…
Guest: Mirko Peters
July 5, 2026

Microsoft Graph: The Enterprise Nervous System

Microsoft Graph is far more than a REST API—it acts as the enterprise nervous system that connects people, identities, files, conversations, meetings, permissions, and business processes across Microsoft 365. In this episode, we explore why understanding these relationships is the key to building truly intelligent applications, automations, and AI experiences rather than isolated point solutions.You'll learn how Microsoft Graph creates a unified layer across services like Teams, SharePoint, Outlook, OneDrive, and Entra ID, allowing developers and architects to retrieve context instead of disconnected data. The episode explains why modern AI solutions such as Microsoft Copilot depend on Graph to understand not just where information is stored, but how users, content, and business activities are connected in real time.We also examine the shift from traditional, static data models toward relationship-driven architectures that enable smarter search, automation, security, and enter…
Guest: Mirko Peters
July 4, 2026

Beyond the Script: The Architect's Guide to Microsoft Graph Platforms

Automation is essential for digital transformation, but many organizations unintentionally create fragile, difficult-to-manage environments by relying on hundreds of disconnected PowerShell scripts and individual Power Automate flows. While each script may solve a specific problem, together they introduce technical debt, undocumented dependencies, and operational risk that become increasingly difficult to maintain as the business grows.This episode explains why modern enterprises are moving away from script-centric automation toward platform-based architectures built on Microsoft Graph, Azure Logic Apps, Azure Functions, Managed Identities, and governance-first design. Microsoft Graph serves as the central orchestration layer, providing a consistent interface across Microsoft 365 services such as Teams, SharePoint, Exchange, OneDrive, and Entra ID. Event-driven technologies like Graph Subscriptions and Delta Queries enable scalable, resilient automation that reacts in real time wh…
Guest: Mirko Peters
July 4, 2026

The Architect's Guide to Graph-Powered Agents: Moving Beyond Chat

Most organizations think they're building AI agents, but in reality they're still creating advanced chatbots. This episode explains why the future of Microsoft AI lies beyond conversational interfaces and focuses on Graph-powered, enterprise-grade agents that can understand business context, execute actions, and collaborate across multiple systems.The discussion explores how Microsoft Graph serves as the operational backbone for intelligent agents by providing secure access to Microsoft 365 data, identities, files, Teams, Outlook, SharePoint, and business applications. Rather than relying on prompts alone, successful agents combine Graph, semantic context, orchestration, memory, and governance to deliver reliable business outcomes.Listeners learn why enterprise AI requires architectural thinking instead of chatbot design. Topics include agent orchestration, delegated versus application permissions, event-driven workflows, Microsoft Graph APIs, knowledge retrieval, security bou…
Guest: Mirko Peters
July 3, 2026

The Hidden Logic of Microsoft Graph

Microsoft Graph is much more than a REST API—it is the hidden logic that connects Microsoft 365. Instead of treating Outlook, Teams, SharePoint, OneDrive, Entra ID, and other services as isolated products, Microsoft Graph exposes the relationships between people, files, meetings, messages, devices, and permissions through a single, unified platform.This episode explains that the real value of Microsoft Graph lies in its ability to understand context. A user is connected to colleagues, documents, calendars, chats, and business processes, allowing applications and AI to retrieve meaningful information instead of disconnected data. This relationship model powers experiences such as Microsoft Copilot, intelligent search, automation, and personalized insights.The discussion also explores how developers and IT professionals can use Microsoft Graph to simplify integrations, automate administrative tasks, and build applications that work consistently across the Microsoft ecosystem. To…
Guest: Mirko Peters
July 2, 2026

Beyond the Portal: The Strategic Architecture of Microsoft Graph and PowerShell

Microsoft Graph is far more than just another API—it is the operational backbone of Microsoft 365. This episode explains why relying solely on admin portals limits scalability, visibility, and automation, while Microsoft Graph provides a unified interface for managing identities, users, groups, Teams, SharePoint, security, compliance, and business data across the entire Microsoft ecosystem.The discussion explores how Microsoft Graph PowerShell enables administrators to automate repetitive tasks, manage large environments consistently, and build governance processes that simply cannot be achieved through manual portal administration. Understanding authentication, OAuth, delegated and application permissions, service principals, and least-privilege access is presented as essential for building secure enterprise automation.The episode also highlights Microsoft's AI strategy, explaining that services such as Microsoft Copilot, Copilot Studio, AI agents, and future intelligent work…
Guest: Mirko Peters
June 28, 2026

The IaC Trap:Terraform vs. Bicep – Which One Wins?

In this episode of the M365.fm podcast, we explore one of the most debated Infrastructure as Code (IaC) questions in the Azure ecosystem: should you choose Terraform or Azure Bicep? Rather than declaring a universal winner, the discussion explains why the right choice depends on your organization's architecture, cloud strategy, and operational requirements.The episode compares both technologies across key areas including multi-cloud support, Azure-native integration, state management, modularity, developer experience, governance, and long-term maintainability. You'll learn why Bicep is often the preferred choice for Azure-only environments thanks to its native ARM integration, simpler syntax, and immediate support for new Azure services. In contrast, Terraform excels in multi-cloud and hybrid scenarios where a single tool is needed to manage infrastructure across Azure, AWS, Google Cloud, and other platforms.The conversation also covers migration considerations, team skills, d…
Guest: Mirko Peters
June 26, 2026

Stop Treating Agents Like Service Accounts

AI agents are often managed like traditional service accounts—but that mindset creates serious security and governance risks. This episode explains why AI agents should be treated as autonomous digital identities with their own lifecycle, permissions, and accountability instead of static technical accounts.The discussion highlights that agents don't just authenticate to services—they make decisions, access business data, trigger workflows, and interact with multiple systems. Because of this, identity becomes the primary security boundary. Organizations should assign every agent its own identity, apply least-privilege access, enforce Zero Trust principles, and continuously monitor behavior rather than relying on broad, long-lived permissions.The episode also covers the importance of lifecycle management for non-human identities. Just like employees, AI agents require onboarding, role assignments, permission reviews, auditing, and secure decommissioning. Without proper governanc…
Guest: Mirko Peters
June 25, 2026

The Synthetic Platform Team: Operationalizing Azure Copilot Agents

Building AI agents is no longer just a development challenge—it’s an operational one. In this episode of the M365 FM Podcast, we explore the concept of the Synthetic Platform Team and how organizations can successfully operationalize Azure Copilot Agents at enterprise scale. Rather than treating AI agents as isolated applications, the discussion introduces a platform engineering approach where reusable infrastructure, governance, observability, and automation become the foundation for every agent.The episode explains how platform teams can standardize identity, security, model access, prompt management, deployment pipelines, monitoring, and cost optimization while giving development teams the freedom to build innovative AI solutions. Topics include Azure AI Foundry, Azure OpenAI, Copilot technologies, Infrastructure as Code, CI/CD, telemetry, policy enforcement, and lifecycle management for AI agents.Listeners will learn why successful enterprise AI depends less on individual …
Guest: Mirko Peters
June 22, 2026

The Death of Custom APIs: Microsoft Refine (Rayfin) as a Backend as a Service (BaaS)

In this episode of the M365.fm Podcast, Mirko Peters explores whether custom APIs are becoming obsolete and how Microsoft’s new Rayfin platform could fundamentally change the way enterprise applications are built. Traditionally, developers have spent countless hours creating backend services, authentication layers, databases, APIs, and infrastructure before delivering actual business value. Rayfin introduces a different approach by offering a Backend-as-a-Service (BaaS) model that automates much of this complexity.The episode examines how Rayfin enables developers to define data models, business logic, security policies, and APIs directly in code while Microsoft Fabric automatically provisions and manages the backend infrastructure. Instead of building and maintaining custom APIs from scratch, organizations can focus on application functionality while inheriting enterprise-grade governance, security, compliance, and scalability from the Fabric platform.Mirko discusses the broa…
Guest: Mirko Peters
June 13, 2026

The Death of the Dropdown: Why Manual Tagging is Killing Your Governance

Manual tagging is dead—and it’s quietly undermining your Microsoft 365 governance strategy.In this episode, we explore why traditional metadata management based on dropdown menus, user-selected labels, and manual classification no longer works in modern organizations. The volume of content generated across SharePoint, Teams, OneDrive, Copilot, and Microsoft 365 has grown beyond what humans can reliably classify.The problem isn’t that users are unwilling to tag content—it’s that manual tagging is inconsistent, incomplete, and impossible to scale. When metadata quality declines, governance suffers. Search results become unreliable, retention policies lose effectiveness, compliance controls weaken, and AI tools like Microsoft Copilot struggle to understand and protect organizational data.The episode examines how Microsoft Purview and AI-powered classification are changing the game. Instead of relying on users to choose the correct label, modern governance systems can analyze …
Guest: Mirko Peters
June 11, 2026

The Latency Wall: Why Your Cloud Strategy Fails at the Edge

Cloud strategies often focus on scalability, cost optimization, and centralized services, but many organizations overlook one critical factor: latency. In this episode of M365 FM, Mirko Peters explores why network latency can become a major barrier to application performance and user experience, especially as businesses increasingly rely on cloud-based services.The discussion examines the concept of the “latency wall” and explains why simply moving workloads to the cloud does not automatically guarantee better performance. For applications that require real-time processing, industrial automation, IoT, AI inference, or low-latency user interactions, the physical distance between users, devices, and cloud datacenters can create significant challenges.The episode highlights how edge computing is emerging as a solution by bringing compute and data processing closer to where data is generated. Rather than sending every request to a centralized cloud region, organizations can levera…
Guest: Mirko Peters
June 11, 2026

Infrastructure as Code, DevOps & the Future of Azure with Maik van der Gaag [MVP]

What does the future of Azure look like, and how are Infrastructure as Code and DevOps transforming the way organizations build and manage cloud solutions?In this episode of M365 FM, host Mirko Peters is joined by Microsoft Azure MVP Maik van der Gaag for an in-depth discussion about modern cloud engineering, automation, and the evolving Azure ecosystem. Maik shares insights from his extensive experience helping organizations adopt cloud technologies and modern development practices.The conversation explores why Infrastructure as Code (IaC) has become a critical foundation for scalable and reliable cloud environments. Maik explains how tools such as Terraform and Bicep enable teams to automate deployments, improve consistency, reduce configuration drift, and accelerate delivery across Azure environments.Beyond the technology, the episode highlights the cultural side of DevOps. Successful cloud transformation is not only about tools and automation but also about collaborati…
June 8, 2026

The Billion-Vector Problem: HNSW vs. DiskANN in Azure AI Search

The explosion of AI-powered applications has created a new challenge: how do you efficiently search through billions of vector embeddings without exploding infrastructure costs? In this episode, we explore the “billion-vector problem” and compare two leading vector search algorithms available in Azure AI Search: HNSW (Hierarchical Navigable Small World) and DiskANN. While HNSW has become the industry standard thanks to its fast in-memory performance and high recall, it requires significant RAM as datasets grow. DiskANN, originally developed by Microsoft Research, takes a different approach by leveraging SSD storage to dramatically reduce memory requirements while maintaining excellent search accuracy at massive scale.We break down how each algorithm works, where they shine, and the trade-offs architects need to consider when designing Retrieval-Augmented Generation (RAG), semantic search, and AI agent solutions. The discussion covers performance, scalability, operational costs, up…
Guest: Mirko Peters
June 4, 2026

I building a Synthetic Market for M365 Strategy

In this episode, Mirko Peters explores why successful Microsoft 365 strategy should be approached like building a synthetic market rather than deploying technology in isolation. The core idea is that Microsoft 365 creates an internal economy where information, collaboration, automation, governance, and AI capabilities continuously interact. Organizations that focus only on individual tools such as Teams, SharePoint, Power Platform, or Copilot often miss the larger system dynamics that drive long-term value.The discussion highlights that every platform decision creates incentives and behaviors. Poor governance can encourage content sprawl, uncontrolled workspace growth, and fragmented knowledge, while well-designed governance creates trust, discoverability, and sustainable adoption. The episode argues that strategy is not about maximizing feature usage but about shaping the conditions that allow productive behaviors to emerge naturally across the organization.A key theme is tha…
Guest: Mirko Peters
May 31, 2026

The Pro-Code Edge: Architecting Copilot Plugins with Azure Functions for Developers

This episode of The Pro Code Edge explores how developers can extend Microsoft 365 Copilot with custom plugins powered by Azure Functions. The discussion focuses on moving beyond out-of-the-box capabilities to create tailored enterprise solutions that connect Copilot with business systems, APIs, and proprietary data.Azure Functions are presented as an ideal platform for Copilot extensibility due to their serverless nature, scalability, and cost efficiency. By exposing business logic through secure APIs, developers can enable Copilot to retrieve information, execute processes, and interact with external applications using natural language.The hosts emphasize that successful Copilot plugins require strong architectural foundations. Key considerations include authentication with Microsoft Entra ID, authorization, security, monitoring, error handling, and governance. Enterprise-grade solutions must be designed with reliability, maintainability, and compliance in mind from the begi…
Guest: Mirko Peters
May 28, 2026

How Graph API Discovery Rewrites the Rules of Enterprise Semantic Search Performance

Enterprise search is no longer limited by storage capacity or indexing speed. The real challenge is the growing gap between when information is created and when it becomes discoverable. This article explores how Microsoft Graph API Discovery is changing enterprise search by shifting from traditional crawl-and-index models to a relationship-driven, real-time discovery architecture.Traditional enterprise search relies on scheduled indexing, which often creates delays, stale results, and fragmented knowledge across systems. As organizations generate data across Teams, SharePoint, Outlook, OneDrive, and other Microsoft 365 services, keeping search indexes current becomes increasingly difficult.Microsoft Graph approaches the problem differently. Instead of focusing solely on where information is stored, it understands how content, people, conversations, meetings, permissions, and business processes are connected. This graph-based model enables search experiences that are contextual…
Guest: Mirko Peters
May 25, 2026

M365 Backup Isn't Enough: The Case for Isolated Vault Architecture

Microsoft 365’s built-in redundancy keeps services running, but it does not guarantee business recovery after ransomware, insider threats, or accidental deletion. This article explains why many organizations wrongly assume synchronization equals protection, when in reality corrupted or deleted data can spread instantly across the environment.The core argument is that traditional backup strategies are no longer enough in modern cloud environments. Businesses need an isolated vault architecture — a logically separated and immutable recovery layer that cannot be compromised by the same identities, permissions, or attack paths affecting production systems.The article highlights how attackers increasingly target backup systems first, making “connected backups” a major weakness. A secure recovery strategy therefore requires isolation, immutability, strict access separation, and clean recovery points that survive tenant-wide compromise.It also emphasizes that resilience is not ju…
Guest: Mirko Peters
May 23, 2026

Inside Enterprise Security: AD Tiering & Privileged Access with Viktor Hedberg [MVP - MCT]

In this episode of the m365.fm podcast, host Mirko Peters speaks with cybersecurity expert Viktor Hedberg about the importance of securing enterprise environments through Active Directory (AD) tiering and privileged access management.The discussion explores how attackers commonly target privileged accounts to move laterally through corporate networks and why traditional “flat” admin models are no longer sufficient. Viktor explains the concept of AD tiering, where administrative privileges are separated into security tiers to reduce the blast radius of compromised credentials. He also highlights the role of privileged access workstations (PAWs), just-in-time administration, and strong identity protection practices.The episode covers real-world attack scenarios, lessons learned from incident response engagements, and practical recommendations for organizations running hybrid Microsoft environments. Key themes include reducing standing privileges, enforcing multi-factor authentic…
May 20, 2026

The Hidden Problem with AI Agents: Too Much LLM, Not Enough Engineering with Karthikeyan VK (MVP)

In this episode of the M365 FM Podcast, host Mirko Peters speaks with Microsoft AI MVP and CTO Karthikeyan VK about the biggest problem in today’s AI landscape: organizations are relying too heavily on Large Language Models (LLMs) while ignoring the engineering foundations needed for reliable enterprise AI systems.Karthikeyan explains that many companies try to make AI agents handle everything directly through prompts and LLMs, instead of combining them with deterministic engineering practices such as orchestration, validation, governance, retries, observability, and state management. He argues that LLMs should act as reasoning engines, while structured workflows and business logic remain controlled through traditional engineering systems.The discussion highlights the difference between probabilistic AI systems and deterministic enterprise processes like finance, compliance, ERP integrations, and security workflows. According to Karthikeyan, enterprise trust breaks down when A…
May 18, 2026

Inside Microsoft Foundry: Building the Next Generation of AI Apps with Jannik Reinhard [MVP]

What does it really take to build modern AI applications at scale? In this episode, we take a deep dive into Microsoft Foundry and explore how it is shaping the next generation of AI-powered apps and services.We unpack the vision behind Foundry, the developer experience it enables, and how Microsoft is bringing together AI models, orchestration, security, and enterprise-grade infrastructure into a unified platform. From rapid prototyping to production-ready deployments, Foundry is designed to help developers and organizations move faster while maintaining governance and control.The conversation covers the evolving AI stack, practical use cases, and how developers can integrate tools like copilots, agents, retrieval-augmented generation (RAG), and model customization into real-world business applications. We also discuss the growing importance of observability, responsible AI, and hybrid architectures as enterprises adopt generative AI at scale.Whether you are a developer, …
May 17, 2026

Governance at Scale: Fixing Azure Decisions Before They Break with Vladimir Stefanovic [MVP-MCT]

This episode of M365.fm explores why traditional Microsoft 365 governance approaches fail at enterprise scale and how organizations can move from manual oversight to automated, enforceable governance models. The discussion explains the difference between governance documentation and true operational governance, highlighting why policies alone are not enough in modern cloud environments.The episode introduces the concept of control planes versus data planes and explains how scalable governance depends on automation, identity management, lifecycle controls, telemetry, and policy enforcement rather than human-driven approval processes. It also covers common governance failures such as stale policies, overprivileged automation, unmanaged AI identities, and lack of monitoring.Additional topics include governance strategies for Copilot, AI agents, and Power Platform environments, along with practical ways organizations can reduce governance friction while maintaining security, compl…