Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

Microsoft

AZ-500: Secure networking

Microsoft via Microsoft Learn

Overview

  • Module 1: This module is designed to provide administrators with the knowledge and skills needed to plan and implement robust security measures for Azure virtual networks, ensuring the confidentiality, integrity, and availability of network resources.
    • Implement security measures for Azure virtual networks to safeguard data and resources.
    • Utilize NSGs and ASGs for network traffic security, and manage UDRs for optimal traffic routing.
    • Establish secure network connectivity through Virtual Network peering, VPN gateways, and Virtual WAN.
    • Enhance network security with VPN configurations, ExpressRoute encryption, PaaS firewall settings, and Network Watcher monitoring.
  • Module 2: This module is designed to empower administrators with the knowledge and skills required to plan and implement robust security measures for public access to Azure resources, ensuring the confidentiality, integrity, and availability of applications and services.
    • Develop strategies for secure public access to Azure resources, preventing unauthorized access and breaches.
    • Implement TLS for Azure App Service and API Management to encrypt data in transit.
    • Protect network traffic with Azure Firewall and Application Gateway for optimized web application security and delivery.
    • Enhance web app performance with Azure Front Door and CDN, and deploy WAF and DDoS Protection for robust defense against attacks.

Syllabus

  • Module 1: Module 1: Plan and implement security for virtual networks
    • Introduction
    • Plan and implement Network Security Groups (NSGs) and Application Security Groups (ASGs)
    • Plan and implement User-Defined Routes (UDRs)
    • Plan and implement Virtual Network peering or gateway
    • Plan and implement Virtual Wide Area Network, including secured virtual hub
    • Secure VPN connectivity, including point-to-site and site-to-site
    • Implement encryption over ExpressRoute
    • Configure firewall settings on PaaS resources
    • Monitor network security by using Network Watcher, including NSG flow logging
    • Knowledge check
    • Summary
  • Module 2: Module 2: Plan and implement security for public access to Azure resources
    • Introduction
    • Plan and implement Transport Layer Security (TLS) to applications, including Azure App Service and API Management
    • Plan, implement, and manage an Azure Firewall, Azure Firewall Manager and firewall policies
    • Plan and implement an Azure Application Gateway
    • Plan and implement an Azure Front Door, including Content Delivery Network (CDN)
    • Plan and implement a Web Application Firewall (WAF)
    • Recommend when to use Azure DDoS Protection Standard
    • Knowledge check
    • Summary

Reviews

Start your review of AZ-500: Secure networking

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.