Manage identity and access

Azure Active Directory

es
u
ig
r
d
o
R
an

The Azure AD tenant and the subscription

Al
 es
u
ig
r
Application Registration
d
o
R
an
Al

Lab - Application Registration

 es
u
ig
Azure AD Privileged Identity Management
r
d
o
R
an
Al
Administrative Units

es
u
ig
r
d
o
R

Lab - Administrative Units

an
Al
 es
u
ig
r
d
o
R
an

What is Azure AD Connect

Al
 es
u
ig
r
d
Implement platform protection
o

Review of virtual networks and machines

R
an
Al
 es
u
ig
r
d
o
R

Network Security Groups

an
Al
 es
u
ig
r
d
o

Lab - Network Security Groups

R
an
Al
Lab - Network Security Groups - Subnet Considerations

es
u
Application Security Groups

ig
r
d
o
R
an
Al

The Azure Application Gateway Service

 es
u
ig
Lab - Azure Application Gateway - URL Routing – Setup
r
d
o
R
an
Al

Azure Front Door

 es
u
ig
Virtual Network Peering
r
d
o
R
an
Al

Point to Site VPN Connection

Al
an
R
o
d
r
ig
u
es
 es
u
ig
r
d
o
R
an
Al

Site to Site VPN Connection

Al
an
R
o
d
r
ig
u
es
 es
User Defined Routes

u
ig
r
d
o
R
an
Al
User Defined Routes - What are we going to do

es
u
ig
r
d
o
R
an
Al

Azure Bastion Service

 es
u
ig
r
Azure Firewall
d
o
R
an
Al
Al
an
R
o
d
r
ig
u
es
 es
u
Lab - Azure Firewall – Deployment

ig
r
d
o
R
an
Al
Hub and Spoke Architecture

es
u
ig
r
Update Management for Azure Virtual Machines
d
o
R
an
Al

The need for containers

Al
an
R
o
d
r
ig
u
es
Lab - Azure Container Registry

es
u
ig
r
d
o
R
an

Azure Container Groups

Al
 es
u
ig
r
d
o
R
an
Al

Primer on Azure Kubernetes

 es
u
ig
r
d
o

Manage security operations

R

What is the Azure Monitor Service?

an
Al
What is a Log Analytics Workspace?

es
u
Management Groups
ig
r
d
o
R
an
Al

Azure Blueprints
 es
u
ig
r
Microsoft Defender - Just-in-Time VM Access
d
o
R
an
Al

Microsoft Defender - Deploying the Log Analytics agent

 es
u
ig
Secure data and applications r
The Azure Key vault service
d
o
R
an
Al
 es
u
ig
r
d
o
R
an

Service Endpoints
Al
 es
u
ig
r
d

Encryption at rest and transit

o
R
an
Al
Managed Service Identity

es
u
ig
r
d
o

Clarification on service principal

R
an
Al
 es
u
ig
r
d
Lab - Creating an Azure SQL Database
o
R
an
Al
 es
u
ig
r
d
o

What are Azure Storage Accounts

R
an
Al
Azure Blob service

es
u
ig
r
d
o
R

Azure Storage Accounts - Different authorization techniques

an
Al
 es
u
ig
r
d
o
R
an

Private Endpoints
Al
Al
an
R
o
d
r
ig
u
es
Note on Managed Identity for Function Apps

es
u
ig
r
d
Deploying an Azure Web App
o
R
an
Al