Recent Posts

What’s new with Cross-tenant access with Azure AD External Identities

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 27/05/2022 0 Comments on What’s new with Cross-tenant access with Azure AD External Identities
Posted in Azure

Microsoft has released Cross-tenant access settings and it’s still in preview. I wrote an article in February about this feature and let’s see what has been changed. And how to use to it with Teams Teamsplaining it more Difference between…

Continue Reading What’s new with Cross-tenant access with Azure AD External Identities

Section 14 – Secure data and applications – Configure security for databases

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 22/05/2022 0 Comments on Section 14 – Secure data and applications – Configure security for databases
Posted in Azure, Azure AD, Azure Firewall, Defender, Identity, Microsoft Purview, Security, SQL

In this section I will cover the following: Enable database authentication by using Azure AD Enable database auditing Configure dynamic masking on SQL workloads Implement database encryption for Azure SQL Database Implement network isolation for data solutions, including Azure Synapse…

Continue Reading Section 14 – Secure data and applications – Configure security for databases

Section 13 – Secure data and applications – Configure security for storage

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 15/05/2022 0 Comments on Section 13 – Secure data and applications – Configure security for storage
Posted in Azure, Defender, Hybrid, Identity, Onpremise, Security, Storage

Configure access control for storage accounts Configure storage account access keys Configure Azure AD authentication for Azure Storage and Azure Files Different Storage Accounts types The Azure Storage platform includes the following data services: Azure Blobs A massively scalable object…

Continue Reading Section 13 – Secure data and applications – Configure security for storage

Section 12 – Manage security operations – Configure and manage security monitoring solutions

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 11/05/2022 0 Comments on Section 12 – Manage security operations – Configure and manage security monitoring solutions
Posted in Azure, Identity, KQL, Microsoft Sentinel, Security

AZ-500 is continuing with the following: Create and customize alert rules by using Azure Monitor Configure diagnostic logging and log retention by using Azure Monitor Monitor security logs by using Azure Monitor Create and customize alert rules in Azure Sentinel…

Continue Reading Section 12 – Manage security operations – Configure and manage security monitoring solutions

Section 11 – Manage security operations – Configure and manage threat protection – Defender for SQL and Threat Model Tool

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 09/05/2022 0 Comments on Section 11 – Manage security operations – Configure and manage threat protection – Defender for SQL and Threat Model Tool
Posted in Azure

Configure Azure Defender for SQL Use the Microsoft Threat Modeling Tool Configure Azure Defender for SQL Availability Aspect Details Release state: Microsoft Defender for Azure SQL database servers – Generally available (GA)Microsoft Defender for SQL servers on machines – Generally available (GA)…

Continue Reading Section 11 – Manage security operations – Configure and manage threat protection – Defender for SQL and Threat Model Tool

Microsoft authenticator password generator and couple of other new features

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 06/05/2022 0 Comments on Microsoft authenticator password generator and couple of other new features
Posted in Azure, Azure AD, Conditional access, Identity, Security

Hi all, Wanted to share some news on Microsoft Authenticator new features for this Friday. Generating Strong passwords Cool feature, that wasn’t there before. Yep, it wasn’t. See the screenshots for more insights. Enable Autofill with Authenticator How do I…

Continue Reading Microsoft authenticator password generator and couple of other new features

Section 10 – Manage security operations – Configure and manage threat protection

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 04/05/2022 0 Comments on Section 10 – Manage security operations – Configure and manage threat protection
Posted in Azure, Defender, Identity, Security

And time for next section for my AZ-500 study guide, continuing with the following. Configure Azure Defender for Servers (not including Microsoft Defender for Endpoint) Evaluate vulnerability scans from Azure Defender Configure Azure Defender for Servers What is inside Defender…

Continue Reading Section 10 – Manage security operations – Configure and manage threat protection

Section 9 – Manage security operations – Configure centralized policy management

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 01/05/2022 0 Comments on Section 9 – Manage security operations – Configure centralized policy management
Posted in Azure, Azure AD, Azure Policy, Identity, Security

And this time AZ-500 study guide covers: Configure a custom security policy Create a policy initiative Configure security settings and auditing by using Azure Policy Configure a custom security policy Elements The policy definition policyRule schema is found here: https://schema.management.azure.com/schemas/2020-10-01/policyDefinition.json You use JSON…

Continue Reading Section 9 – Manage security operations – Configure centralized policy management

Key auto-rotation in Azure Key Vault now GA!

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 29/04/2022 0 Comments on Key auto-rotation in Azure Key Vault now GA!
Posted in Azure

Automated key rotation in Key Vault allows users to configure Key Vault to automatically generate a new key version at a specified frequency. You can use rotation policy to configure rotation for each individual key. Our recommendation is to rotate…

Continue Reading Key auto-rotation in Azure Key Vault now GA!

Section 8 – Implement platform protection – Configure advanced security for compute – Serverless, App service and encryption

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 27/04/2022 0 Comments on Section 8 – Implement platform protection – Configure advanced security for compute – Serverless, App service and encryption
Posted in Azure, Azure AD, Identity, Identity Platform, Security

And the next section for AZ-500 study guide will cover the following topics: Configure security for serverless compute Configure security for an Azure App Service Configure encryption at rest Configure encryption in transit Configure security for serverless compute Serverless computing…

Continue Reading Section 8 – Implement platform protection – Configure advanced security for compute – Serverless, App service and encryption