Microsoft Cloud Workshop: Securing PaaS (40534A)

This workshop is designed to provide exposure to many of Microsoft Azure’s PaaS security features. The goal is to show a secure end-to-end solution that addresses concerns around a sensitive data, controlling access to sensitive stores of information, controlling access to production systems and enabling secure processes for developers.

Audience Profile
This workshop is intended for Cloud Architects and IT professionals who have architectural expertise of infrastructure and solutions design in cloud technologies and want to learn more about Azure and Azure services as described in the ‘About this Course’ and ‘At Course Completion’ areas.  Those attending this workshop should also be experienced in other non-Microsoft cloud technologies, meet the course prerequisites, and want to cross-train on Azure.

Objectives
The architecture includes: 
  • App Service Environments
  • Application Gateway 
  • Web Application Firewall
  • Azure Web Apps
  • Azure Functions
  • Azure API Apps
  • Azure SQL DB and corresponding security features 
  • Azure Storage 
  • Cosmos DB
  • Azure Search
  • Azure Monitor
  • Log Analytics
  • App Insights
  • Azure Security Center
  • Azure Key Vault Integrations 
  • Azure Web Application Gateway
  • Azure Active Directory
Mostra dettagli
Course Outline

Module 1: Whiteboard Design Session - Securing PaaS

Lessons
  • Review the customer case study
  • Design a proof of concept solution
  • Present the solution

Module 2: Hands-On Lab - Securing PaaS
Lessons
  • Creating and securing Azure Active Directory accounts
  • Securing Azure Key Vault with Azure IAM
  • Azure deployments using Azure Key Vault
  • Securing the web application and database
  • Migrating web.config settings to azure key vault
  • Securing PaaS web applications with app service environment and web application firewalls
  • Securing Azure Functions with Managed Service Identities
  • Creating PaaS Audit and Compliance Power BI Reports