Secure your Azure DevOps Release Management Azure VM deployments with NSGs and PowerShell

Note: since originally authoring this piece Microsoft has built secure deployments into the platform using Deployment Groups which you should go and read about. Read on if you're interested in how you can do this without that feature. One of the neat features of Azure Pipelines Release capability is the ability to deploy to Virtual … Continue reading Secure your Azure DevOps Release Management Azure VM deployments with NSGs and PowerShell →

Azure Functions: Access KeyVault Secrets with a Cert-secured Service Principal

Azure Functions is one of those services in Azure that is seeing a massive amount of uptake. People are using it for so many things, some of which require access to sensitive information at runtime. At time of writing this post there is a pending Feature Request for Functions to support storing configuration items in … Continue reading Azure Functions: Access KeyVault Secrets with a Cert-secured Service Principal →

Azure Security Fundamentals: Azure SQL Database

I'm continuing my Kloud blog series on the security fundamentals for various Microsoft Azure services with my most recent post being for Azure SQL Database. Please go and have a read!

Azure Security Fundamentals: Moving Co-Admins to RBAC

I've been working on some engagements recently where we've been reviewing the current state of security capabilities in Azure, and with the recent General Availability of RBAC support in Azure I thought I'd write a quick overview on Kloud's blog of how you can move from the traditional Administrator / Co-Adminstrator setup to leveraging RBAC.