Microsoft Azure AZ-500 info David Papkin

This David Papkin page has info about Microsoft Azure AZ-500 course

License requirements to use Privileged Identity Management (PIM)

Administrator role permissions in Azure Active Directory

Multi-Factor Authentication pricing

How to get Azure Multi-Factor Authentication

Dynamic membership rules for groups in Azure Active Directory

Custom roles for Azure resources

Azure Active Directory Connect FAQ

Azure Active Directory documentation

Identity Synchronization to Azure Active Directory – Is It Secret? Is It Safe?

Announcing the preview of Microsoft Azure Bastion

Privileged Access Workstations

AZURE FUNCTIONS AND SERVERLESS PLATFORM SECURITY

Azure Blueprints

Azure Blueprints Overview

Quickstart: Define and assign a blueprint in the portal

Tutorial: Create an environment from a blueprint sample

Development

Secure development best practices on Azure

Develop a secure web app

Azure Front Door

Azure Front Door Overview

Quickstart: Create a Front Door for a highly available global web application

Azure Key Vault

Manage storage account keys with Key Vault and the Azure CLI

Import HSM-protected keys to Key Vault

Azure Key Vault soft-delete overview

Azure Security Center

Secure your management ports with just-in-time access (with Demos)

JIT explained

Microsoft Azure – Just-in-time (JIT) Deep Dive

Azure Sentinel

Azure Sentinel Overview

Quickstart: On-board Azure Sentinel (1)

Quickstart: Get started with Azure Sentinel (2)

Tools

Microsoft Security Code Analysis

Threat Modeling Tool

Exercises

Add or remove group members using Azure Active Directory

Create a basic group and add members using Azure Active Directory

Add or update a user’s profile information using Azure Active Directory

Grant a user access to Azure resources using RBAC and the Azure portal

Manage access to Azure resources using RBAC and the Azure portal

Create a custom role for Azure resources using Azure PowerShell

Create, change, or delete a virtual network

Create a policy assignment to identify non-compliant resources

Get compliance data of Azure resources

Quickstart: Create Apache Hadoop cluster in Azure HDInsight using Azure portal

Security Playbook in Azure Security Center

SQL

Quickstart: Create a single database in Azure SQL Database using the Azure portal, PowerShell, and Azure CLI

Quickstart: Create a server-level firewall rule for single and pooled databases using the Azure portal

Configure and manage Azure Active Directory authentication with SQL

Azure SQL Database and Azure SQL Data Warehouse IP firewall rules

Get started with SQL database auditing

Advanced data security for Azure SQL Database

AZ-500 Labfiles

Azure lab setup procedure

1) Create NEW MICROSOFT email account (hotmail or outlook)   xxxaz500ddmmyy@outlook.com suggested password Pa55w.rd1234 where ddmmyy = starting date of your course and xxx = your initials at https://outlook.live.com/owa/

Ex: cyfaz50021322@outlook.com

The new Microsoft account is needed for the Azure Pass used for the labs in this course. The use of any other account is not supported for this class.  Appreciate your understanding.

2) Make a new folder C:\Labfiles using File Explorer

or from Powershell or Cmd prompt

Md C:\Labfiles (command line)

3) Download and extract into C:\Labfiles

AZ500-AzureSecurityTechnologies-master

4 ) Download and install Visual Studio Code  Visual Studio Code

Make sure you are logged out of all other email accounts (except the new email account you have created) in ALL browsers before proceding to #5

5)Redeem Azure pass   https://www.microsoftazurepass.com/

6) Link to labs (HTML format)

 Lab information. Helpful links listed below to assist with any lab issues

Lab4)

To disable security defaults in your directory:

  1. Sign in to the Azure portal as a security administrator, Conditional Access administrator, or global administrator.
  2. Browse to Azure Active Directory > Properties.
  3. Select Manage security defaults.
  4. Set the Enable security defaults toggle to No.
  5. Select Save.

Lab 13)

Log Analytics Agent doesnt connect. Stays in “Connecting “state

  1. Open PowerShell prompt as Administrator on the machine where Log Analytics Agent is installed.
  2. Navigate to the directory where the tool is located.
    • cd "C:\Program Files\Microsoft Monitoring Agent\Agent\Troubleshooter"
  3. Execute the main script using this command:
    • .\GetAgentInfo.ps1
    • Select 1) Agent not reporting data or heatbeat data missing
    • Select 3) Repair
    • Answer Y when prompted
    • Powershell Window will close

Troubleshoot issues with Log Analytics agent for Windows – Azure Monitor | Microsoft Docs

End of David Papkin page info about Microsoft AZ-500 course

Helpful Azure  learning links

Microsoft Azure Forums  The Azure forums are very active. You can search the threads for a
specific area of interest. You can also browse categories like Azure Storage, Pricing
and Billing, Azure Virtual Machines, and Azure Migrate.

Azure Architecture Center  Gain access to the Azure Application Architecture Guide,
Azure Reference Architectures, and the Cloud Design Patterns.

Microsoft Learning Community Blog  Get the latest information the certification
tests and exam study groups.

https://channel9.msdn.com/  Channel 9 provides a wealth of informational videos, shows, and
events.

Azure Tuesdays With Corey  Corey Sanders answers your questions about
Microsoft Azure – Virtual Machines, Web Sites, Mobile Services, Dev/Test etc.

Azure Fridays  Join Scott Hanselman as he engages one-on-one with the engineers
who build the services that power Microsoft Azure as they demo capabilities,
answer Scott’s questions, and share their insights.

Microsoft Azure Blog  Keep current on what’s happening in Azure, including what’s
now in preview, generally available, news & updates, and more.

End of David Papkin Microsoft Azure AZ-500 page.