Azure Key Vault Overview Part 3

Video Activity
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or

Already have an account? Sign In »

Time
14 hours 28 minutes
Difficulty
Intermediate
CEU/CPE
15
Video Transcription
00:00
>> Quiz question number 1: What is Azure Key Vault?
00:00
Option 1, secrets management service.
00:00
>> Option 2, key management service.
00:00
>> Option 3, certificate management service.
00:00
>> Option 4, all of the above.
00:00
If you selected all of the above, you would be correct.
00:00
Azure Key Vault is a secret management service,
00:00
a key management service,
00:00
and also a certificate management service.
00:00
Quiz question number 2:
00:00
You're working with a development team
00:00
that needs to enable their applications
00:00
to access Azure Key Vault
00:00
and retrieve keys for use in code.
00:00
What option will you recommend?
00:00
Option 1, Azure AD user.
00:00
>> Option 2, managed identity.
00:00
>> Option 3, Azure AD group.
00:00
>> Option 4, Azure AD roles.
00:00
If you selected managed identity,
00:00
you would be correct.
00:00
They'll be the best way to give
00:00
an application code access
00:00
into resources or items in Azure Key Vault.
00:00
You have 20 web applications that
00:00
run on different Azure Web Apps.
00:00
You need to design
00:00
an authentication solution that ensures the following:
00:00
The applications can authenticate only when
00:00
they are running in the designated web apps.
00:00
The applications use the same Azure AD identity.
00:00
The administrative effort is minimal.
00:00
What will you recommend?
00:00
Option 1, create
00:00
a single user account and assign
00:00
>> to the web applications.
00:00
>> Option 2, system assigned managed identity.
00:00
>> Option 3, user assigned managed identity.
00:00
>> Option 4, Azure service principals.
00:00
If you selected Option 3,
00:00
user assigned managed identity, you would be correct.
00:00
Because that allows us to be able to use
00:00
a single identity to authenticate across
00:00
multiple resources that are
00:00
running our code in Azure and to be able
00:00
to use that to give them permission
00:00
into other Azure resources,
00:00
including items in Azure Key Vault.
00:00
This brings me to the end of this lesson.
00:00
Thanks very much for watching
00:00
and I'll see you in the next lesson.
Up Next