United States | Azure Generation 2 VMs

Neil Hoffman - 07.12.2021

Azure Generation 2 VMs

United States | Azure Generation 2 VMs

If you have been creating Virtual Machines in Azure and avoiding using Generation 2 VMs, maybe it’s time to have another look. 

For those of you who are not familiar with Hyper-V, you may be wondering what Generation 2 means exactly. Basically, it is the newer virtual machine architecture (released with Windows Server 2012 and Windows 8) which is much more feature rich than its predecessor, Generation 1. Azure IaaS was originally built from Generation 1, so there have been some inherent limitations from there, such as lack of UEFI support.  

Truth be told, Azure is not a direct comparison of Hyper-V since Microsoft has modified how Azure works to better support a self-service public cloud. While the differences between Azure Generation 1 and Generation 2 VMs are not quite the same as on premises Hyper-V, just consider the Azure Generation 2 VMs “Next Generation” and you will be fine 🙂 

Azure has supported Generation 2 VMs for a while now, however, throughout the preview and even into the GA release there were limitations associated with them, such as lack of support for VM backup, encryption etc., which caused me to advise clients to hold off.  

Here we’ll take another look, and you will see all those limitations are now gone! Generation 2 VMs support all the standard feature sets you would expect for IaaS VMs in Azure, such as Azure Disk Encryption, Azure Site Recovery and Azure Backup. 

United States | Azure Generation 2 VMs

Generation 2 now supports all of the same features as Generation 1 and they even support gigantic OS disks, which hardly anyone would even care about. So, why should you consider Generation 2 VMs in Azure?  

Here are some of the improved features of Generation 2 VMs: 

  • Increased memory 
  • Intel Software Guard Extensions (Intel SGX) to support confidential computing 
  • Virtualized persistent memory (vPMEM) for extremely fast storage options 
  • UEFI boot architecture rather than BIOS boot architecture for more secure boot options 
  • Azure Trusted Launch currently in preview, which provides the following out of the gate: 
    • Secure Boot 
    • Virtual Trusted Platform Module (vTPM) 
    • Virtualization-based security (VBS) 

While some of these options may not apply to all your workloads currently, it would be beneficial to position yourself in a way where you can leverage them when the time comes. I can tell you from firsthand experience, once something becomes the new-er/modern way of doing things in Azure, it’s only a matter of time until it becomes the de facto way of doing things! Case in point, for all you Azure pioneers (pre-2015), remember the “new” thing called Azure Resource Manager… need I say more? 

Another thing to consider is unlike some tools which you can just plan to implement later, the generation of the VM cannot be changed after the VM is created. A good example of this would be moving from Availability Sets to Availability Zones, which can be managed with a quick re-provisioning of a VM. If you build the VM as a Generation 1, it will always be a Generation 1 – as of this writing anyway. 

Want more reasons to consider provisioning Generation 2 VMs now? How about:

  • There is no cost difference from Generation 1
  • Generation 2 VMs are available in all regions
  • There are no issues with coexistence of Generation 1 and Generation 2 VMs in your environment

Here are the OS images which are supported for Generation 2 VMs from the Azure Marketplace:

  • Windows Server 2019, 2016, 2012 R2, 2012
  • Windows 10 Pro, Windows 10 Enterprise
  • SUSE Linux Enterprise Server 15 SP1
  • SUSE Linux Enterprise Server 12 SP4
  • Ubuntu Server 16.04, 18.04, 19.04, 19.10
  • RHEL 8.1, 8.0, 7.7, 7.6, 7.5, 7.4, 7.0
  • Cent OS 8.1, 8.0, 7.7, 7.6, 7.5, 7.4
  • Oracle Linux 7.7, 7.7-CI

To summarize, there is no downside to going with Generation 2 VMs in Azure now. You will be futureproofing yourself since Generation 2 already supports several security and performance related features, with more to come. I would recommend using Generation 2 for all new deployments if possible and plan for the eventual replacement of Generation 1 VMs over time as the requirements change for your workloads. You do not want to be left behind! I recently wrote a series on business continuity and protection from cyber attacks in Azure which you may want to read next, click here to head to part 1

THANK YOU FOR YOUR SUBMISSION!

United States | Azure Generation 2 VMs

The form was submitted successfully.

Join the Insentra Community with the Insentragram Newsletter

Hungry for more?

If you’re waiting for a sign, this is it.

We’re a certified amazing place to work, with an incredible team and fascinating projects – and we’re ready for you to join us! Go through our simple application process. Once you’re done, we will be in touch shortly!

Who is Insentra?

Imagine a business which exists to help IT Partners & Vendors grow and thrive.

Insentra is a 100% channel business. This means we provide a range of Advisory, Professional and Managed IT services exclusively for and through our Partners.

Our #PartnerObsessed business model achieves powerful results for our Partners and their Clients with our crew’s deep expertise and specialised knowledge.

We love what we do and are driven by a relentless determination to deliver exceptional service excellence.

United States | Azure Generation 2 VMs

Insentra ISO 27001:2013 Certification

SYDNEY, WEDNESDAY 20TH APRIL 2022 – We are proud to announce that Insentra has achieved the  ISO 27001 Certification.