In this video, Sharon discusses the options to encrypt storage data in both transit and at rest, including the Microsoft best practice for regenerating Azure Storage Keys.
- [Instructor] Next, let's take a look at how we…can secure our Azure storage.…First of all, we can encrypt our storage, which protects…our data at rest,…and it uses Storage Server Encryption, or SSE.…Your data is automatically encrypted,…before persisting to storage.…And then your data is automatically…decrypted before retrieving.…And when our data is in transit, we can go ahead…and enable client-side encryption:…we can configure HTTPs, or even SMB 3.0…to protect our data in transit.…
You can also secure your storage…by using RBAC, or role-based access control.…With an Azure active directory, you could allow…the owner, contributor, or reader, to access storage.…You can also fine-tune this, and only allow…a storage account contributor to manage that storage,…or the uses access administrator.…So these are the five roles that you can choose from,…if you're going to use RBAC.…Ane let's talk a little bit about…your Storage Service Encryption.…You can encrypt both standard and premium storage,…your Blobs storage accounts,…
Author
Sharon Bennett
Released
7/24/2017Studying for Microsoft certification? Topics covered here map to objectives on exam 70-534, Architecting Microsoft Azure Solutions.
- Securing with managed identities
- Securing with hybrid identities
- Security with identity providers
- Identifying the right solution
- Designing a role-based Azure security solution
- Managing security risks
Skill Level Intermediate
Duration
Views
-
Introduction
-
Welcome47s
-
-
1. Secure Resources Using Managed Identities
-
Azure AD Graph4m 47s
-
OAuth and OpenID Connect4m 53s
-
2. Secure Resources Using Hybrid Identities
-
SAML 2.0 protocol4m 1s
-
-
3. Secure Resources Using Identity Providers
-
Azure Active Directory B2B7m 21s
-
Azure Active Directory B2C8m 16s
-
-
4. Identify an Appropriate Data Security Solution
-
Azure Key Vault3m 44s
-
Securing Azure Storage4m 8s
-
5. Design a Role-Based Access Control Strategy
-
Azure locks and policies9m 12s
-
Azure RBAC standard roles4m 44s
-
-
6. Manage Security Risks Using an Appropriate Security Solution
-
Conclusion
-
Next steps33s
-
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.
Share this video
Embed this video
Video: Securing Azure Storage