Secure your VSTS Release Management Azure VM deployments with NSGs and PowerShell

One of the neat features of VSTS' Release Management capability is the ability to deploy to Virtual Machine hosted in Azure (amongst other environments) which I previously walked through setting up. One thing that you need to configure when you use this deployment approach is an open TCP port to the Virtual Machines to allow … Continue reading Secure your VSTS Release Management Azure VM deployments with NSGs and PowerShell →

Azure Functions: Access KeyVault Secrets with a Cert-secured Service Principal

Azure Functions is one of those services in Azure that is seeing a massive amount of uptake. People are using it for so many things, some of which require access to sensitive information at runtime. At time of writing this post there is a pending Feature Request for Functions to support storing configuration items in … Continue reading Azure Functions: Access KeyVault Secrets with a Cert-secured Service Principal →

Azure Security Fundamentals: Azure SQL Database

I'm continuing my Kloud blog series on the security fundamentals for various Microsoft Azure services with my most recent post being for Azure SQL Database. Please go and have a read!

Azure Security Fundamentals: Moving Co-Admins to RBAC

I've been working on some engagements recently where we've been reviewing the current state of security capabilities in Azure, and with the recent General Availability of RBAC support in Azure I thought I'd write a quick overview on Kloud's blog of how you can move from the traditional Administrator / Co-Adminstrator setup to leveraging RBAC.