Securing Applications in Microsoft Azure
This hands-on course covers powerful Azure security services including MSI, WAF, NSGs, ASGs, and App Service Environments. These services enable you to easily protect your IaaS and PaaS applications from today's sophisticated attacks.
What you'll learn
Public-facing applications are common targets for hackers and malicious users. In this course, Securing Applications in Microsoft Azure, you will gain the ability to prevent these attacks by leveraging Microsoft Azure's powerful security services. First, you will learn to eliminate sensitive service credentials from your app code by using Managed Identities (MSI). Next, you will discover how Network Security Groups (NSG) and Application Security Groups (ASG) are used to control inbound and outbound traffic for virtual networks and virtual machines. Finally, you will explore how to protect Azure app service deployments from common attacks such as SQL injection and XSS by using Web Application Firewalls (WAF) and App Service Environments (ASE). When you are finished with this course, you will have the skills and knowledge of Azure security services needed to protect your applications in Microsoft Azure.
Table of contents
- Overview 2m
- Credential-free Code 4m
- Understanding Managed Identities for Azure Services 5m
- Using Managed Identities in Code 2m
- Introducing Azure Key Vault References 5m
- Demo: Function Apps and Key Vault with Credentials in Code 6m
- Demo: Configuring MSI for Function Apps and Key Vault 4m
- Demo: Configuring MSI for App Services and Azure SQL Database 7m
- Demo: Working with Azure Key Vault References 6m
- Summary 2m
- Overview 2m
- Azure Virtual Machines and Network Threats 2m
- Protecting Azure Virtual Machines from Network Threats 5m
- Understanding Network Security Groups (NSGs) 3m
- Demo: Provisioning VMs for Web Server and SQL Database Server 9m
- Demo: Deploying a Simple Web Application to VMs 5m
- Demo: Working with NSGs to Secure VMs 8m
- Understanding Application Security Groups (ASGs) 1m
- Demo: Working with ASGs 7m
- Summary 1m
- Overview 2m
- Protecting Web Application from Common Attacks 3m
- Introduction on Azure Application Gateway 3m
- Introducing Web Application Firewall (WAF) 4m
- Demo: Provisioning an Azure Application Gateway 10m
- Demo: Working with Azure Application Gateway WAF 8m
- Creating Custom WAF Rules 3m
- Demo: Creating Custom WAF Rules 5m
- WAF and Azure Sentinel 4m
- Demo: Integrating WAF with Azure Sentinel 6m
- Introducing Azure Front Door and Integration with WAF 3m
- Demo: Configuring Azure Front Door to Protect the Web Application 7m
- Summary 2m
About the author
Reza is a cloud consultant and a Microsoft Certified Trainer alumni. He started professional software development and training over two decades ago and is passionate about cloud technologies. Reza continues to help his clients moving to the cloud and loves to share his passion for the cloud with the developers and software architects through training.