Create Storage Account Storage Accounts are one of the 3 basic cloud technologies along with VMs and virtual networks. Storage can be used for 2 purposes: Store files just as you would on a hard disk There are number of services in Azure that need a storage account. EG: The backend for a virtual machine, storing log files, NOTE: VMs…
Month: June 2021
8. Manage Subscriptions and Governance
Accounts, Subscriptions and Resource Groups Account: this is a user or an application. This is the basis for authentication. Tenant: this is the organisation or the company – Usually a domain name is related to this. – a dedicated instance of Azure Active Directory – every Azure account is part of at least one tenant Subscription: an agreement with Microsoft…
7. Manage RBAC (Role Based Access Control)
Overview of RBAC Access Control (IAM) This is where we can set access for resources. You will find this option at the “resource group” level and the resource level. Checking Access Go to the resource you want to check -> Access Control Click on Check Access Assigning Access Go to the resource you want to check -> Access Control…
6. Implement Multi Factor Authentication
AD Multi Factor Authentication MFA is included in the P2 plan, otherwise it costs round $1 per month per user You can only enable MFA for users that are part of your domain, not invited guests. You can have a local MFA server (you download the software and install it your environment) or a cloud MFA server Turning on and…
5. Manage Azure Objects
Manage Users and Groups Creating a Group From Azure AD, go to Groups -> New group Group Type: O365 or security Name Description Membership type: assigned , dynamic user (you can set a rule that will auto add people to the group based on a rule EG: everyone who has 2012 in their name put them in the 2021 group),…
4. Managing Azure Active Directory
What is Azure AD? Azure Active Directory (Azure AD) is Microsoft’s enterprise cloud-based identity and access management (IAM) solution. Azure AD is the backbone of the Office 365 system, and it can sync with on-premise Active Directory and provide authentication to other cloud-based systems via OAuth. https://www.varonis.com/blog/azure-active-directory/#:~:text=Azure%20Active%20Directory%20(Azure%20AD,cloud%2Dbased%20systems%20via%20OAuth. Azure AD – Free Vs Premium Free: You get a lot with the…
3. PowerShell & CLI
There is no programming on the exam (.NET, APIs, Java etc…), but there are questions on scripting using Powershell and CLI How is this tested? You do not get to choose the scripting language, EG: they will tell you to use Powershell or Bash Method 1: Performance based testing (note this is not common on the exam…) You are given…