Reliability in Azure Device Registry

Azure Device Registry stores information about assets and devices in the cloud. Azure Device Registry projects assets as Azure resources in the cloud within a single registry. The single registry is a source of truth for device and asset metadata, and asset management capabilities. Device Registry can be used in conjunction with Azure IoT Operations.

This article describes reliability support in Azure Device Registry. It covers both intra-regional resiliency with availability zones and information on multi-region deployments.

Reliability is a shared responsibility between you and Microsoft. You can use this guide to determine which reliability options fulfill your specific business objectives and uptime goals.

Transient faults

Transient faults are short, intermittent failures in components. They occur frequently in a distributed environment like the cloud, and they're a normal part of operations. Transient faults correct themselves after a short period of time. It's important that your applications can handle transient faults, usually by retrying affected requests.

All cloud-hosted applications should follow the Azure transient fault handling guidance when they communicate with any cloud-hosted APIs, databases, and other components. For more information, see Recommendations for handling transient faults.

Clients interact with Device Registry by using Azure Resource Manager. Commonly, you use the Azure portal, Azure CLI, or Azure SDKs to interact with Device Registry resources, and these tools provide automatic handling of transient faults. If you use the Resource Manager APIs directly, make sure to handle transient faults.

Availability zone support

Availability zones are physically separate groups of datacenters within each Azure region. When one zone fails, services can fail over to one of the remaining zones.

Azure Device Registry is zone redundant by default, which means that it automatically replicates your data across multiple availability zones. This setup enhances the resiliency of the service by providing high availability. If there's a failure in one zone, the service can continue to operate seamlessly from another zone.

Microsoft manages setup and configuration for zone redundancy in Azure Device Registry. You don't need to perform any more configuration to enable this zone redundancy. Microsoft ensures that the service is configured to provide the highest level of availability and reliability.

Regions supported

The following list of regions support availability zones in Azure Device Registry:

Cost

There's no extra cost to use zone redundancy for Azure Device Registry.

Configure availability zone support

New resources: When you create an Azure Device Registry resource in Azure IoT Operations, it automatically includes zone-redundancy by default. There's no need for you to perform any more configuration.

Normal operations

The following information describes what happens when you have a zone-redundant device registry and all availability zones are operational:

• Traffic routing between zones: Requests are automatically spread across each availability zone. A request might go to a Device Registry instance in any availability zone.

• Data replication between zones: Device data is replicated synchronously across availability zones.

Zone-down experience

The following information describes what happens when you have a zone-redundant device registry and an availability zone experiences an outage.

• Detection and response: Because Azure Device Registry detects and responds automatically to failures in an availability zone, you don't need to do anything to initiate an availability zone failover.

• Notification: Zone failure events can be monitored through Azure Service Health. Set up alerts to receive notifications of zone-level issues.

• Active requests: Some active requests may be dropped and so may need to be retried in the same way as other transient faults. To make sure that your application is resilient to any transient faults, see transient fault handling guidance.

• Expected data loss: A zone failure isn't expected to cause any data loss.

• Expected downtime: A zone failure isn't expected to cause downtime to your resources.

Failback

When the availability zone recovers, Azure Device Registry automatically restores operations in the availability zone.

Testing for zone failures

The Azure Device Registry platform manages traffic routing, failover, and failback across availability zones. You don't need to initiate anything. Because this feature is fully managed, you don't need to validate availability zone failure processes.

Multi-region support

Device Registry is a single-region service. If the region becomes unavailable, your Device Registry resources are also unavailable.

However, your registry's data is replicated to the paired region. In the event of a prolonged region outage, Microsoft might elect to fail over to the paired region. If this happens, your registry continues to be available in the paired region.

Region support

Default replication and failover is supported in all regions that Device Registry is available in, because all of these regions are paired.

Cost

There's no extra cost for cross-region data replication or failover.

Configure replication and prepare for failover

By default, cross-region data replication is automatically configured when you create Device Registry resources in a region with a pair. This process is a default option and requires no intervention from you.

Normal operations

This section describes what to expect when a device registry is configured for cross-region replication and failover, and the primary region is operational.

• Data replication between regions: Data is replicated automatically to the paired region. Replication occurs asynchronously, which means that some data loss is expected if a failover occurs.

• Traffic routing between regions: In normal operations, traffic only flows to the primary region.

Region-down experience

This section describes what to expect when a device registry is configured for cross-region replication and failover and there's an outage in the primary region.

• Detection and response: Microsoft can decide to perform a failover if the primary region is lost. This process can take several hours after the loss of the primary region, or even longer in some scenarios. Failover of Device Registry resources might not occur at the same time as other Azure services.

• Notification: Region failure events can be monitored through Azure Service Health. Set up alerts to receive notifications of region-level issues.

• Active requests: Any requests that the primary region is processing during a failover are likely to be lost. Clients should retry requests after failover completes.

• Expected data loss: Data is replicated asynchronously to the paired region. As a result, some data loss is expected after failover. You can expect less than 15 minutes of data loss following a region failover.

• Expected downtime: Expect approximately 24 hours of downtime from when the region is lost to when the resource is available in the paired region.

• Traffic rerouting: During the failover process, Device Registry updates DNS records to point to the paired region. All subsequent requests are sent to the paired region.

  After the failover operation for the registry completes, all operations from the device and back-end applications are expected to continue working without requiring manual intervention.

Failback

When the primary region recovers, Azure Device Registry automatically restores operations in the region.

Testing for region failures

The Azure Device Registry platform manages traffic routing, failover, and failback across paired regions. You don't need to initiate anything. Because this feature is fully managed, you don't need to validate paired region failure processes.

Related content

• What is Azure IoT Operations? - Azure IoT Operations

• Reliability in Azure