Learn how to secure your Azure web app by implementing authentication and authorization using Azure Active Directory.
- [Instructor] You can control access to your Azure web app using Azure Active Directory or another service provider. And this is a very simple process to configure. As you can see I've already logged into Azure, I happen to be in the resource group AzureWebApp, and we have our LILWebApp already deployed. I'm going to go ahead and click on that, and it'll open up the blade for our web app. Next under Settings click on Authentication / Authorization. By default your app service authentication will be turned off.
And anonymous access is already enabled and users are not prompted to log in. We need to go ahead and turn on the service, and then we can configure it. The first thing we need to do is select the action to take when request is not authenticated. Going to go ahead and click down, and you'll notice here that we have a variety of options, it's not just Azure Active Directory. We could use Facebook, Google, Microsoft, Twitter. For our demonstration we're using Azure Active Directory, and now I can go ahead and configure Azure Active Directory. I'm going to go ahead and select it, and next in Management mode, I'm going to go ahead and click Express.
When we use the Express mode, this will create the Azure Active Directory application in the current Azure Active Directory. If the tenant that you sign into is different than the tenant that you wish to use, you'll need to use the Advanced mode and manually configure the settings, and you'd do that from here. For our demo I'm going to go ahead and use the Express mode. As I've already stated, this will be for our current active directory, so our current active directory is already listed for us and as you'll notice, we can not change it.
If we had an existing Azure Active Directory application, we could go ahead and select Existing. In our case we don't. This is a brand new Azure Active Directory app, so we'll leave it as Create. You'll go ahead and provide the app name. By default it will be populated with the name of your web app. Next you have the option to Grant Graph Permissions, and the last option Grant Common Data Service Permissions. This is used to securely store and manage data. Microsoft PowerApps can then use this data to build applications.
Both of these topics are out of scope for this course. I'm going to go ahead and click OK, and then click Save, and that's all there is to it. When users access your web app, they'll be prompted for their Azure Active Directory credentials. If they do not have those, they will not be able to use your web app.
Learn the intermediate-level skills needed to design Azure web and mobile apps for any organization, using the Azure Web Apps and Mobile Apps services. Instructor Sharon Bennett, a Microsoft Certified Solutions Expert, covers securing mobile and web apps with Azure Active Directory, creating WebJobs to script tasks such as queue processing and file maintenance, and extending mobile apps with custom code. Plus, learn how to update, back up, and restore your Azure apps.
As an intermediate-level course, an existing understanding of the Azure platform is required. After completing the training, IT professionals will also be better prepared for Microsoft exam 70-534: Architecting MS Azure Solutions.
- Create Azure web apps
- Create WebJobs
- Using Traffic Manager
- Adding a CDN to web apps
- Updating, backing up, and restoring Azure Web Apps
- Deploying Azure mobile apps