- Module 1: This module is designed to provide administrators with the knowledge and skills needed to plan and implement robust security measures for Azure virtual networks, ensuring the confidentiality, integrity, and availability of network resources.
- Implement security measures for Azure virtual networks to safeguard data and resources.
- Utilize NSGs and ASGs for network traffic security, and manage UDRs for optimal traffic routing.
- Establish secure network connectivity through Virtual Network peering, VPN gateways, and Virtual WAN.
- Enhance network security with VPN configurations, ExpressRoute encryption, PaaS firewall settings, and Network Watcher monitoring.
- Module 2: This module is designed to empower administrators with the knowledge and skills required to plan and implement robust security measures for public access to Azure resources, ensuring the confidentiality, integrity, and availability of applications and services.
- Develop strategies for secure public access to Azure resources, preventing unauthorized access and breaches.
- Implement TLS for Azure App Service and API Management to encrypt data in transit.
- Protect network traffic with Azure Firewall and Application Gateway for optimized web application security and delivery.
- Enhance web app performance with Azure Front Door and CDN, and deploy WAF and DDoS Protection for robust defense against attacks.
Overview
Syllabus
- Module 1: Module 1: Plan and implement security for virtual networks
- Introduction
- Plan and implement Network Security Groups (NSGs) and Application Security Groups (ASGs)
- Plan and implement User-Defined Routes (UDRs)
- Plan and implement Virtual Network peering or gateway
- Plan and implement Virtual Wide Area Network, including secured virtual hub
- Secure VPN connectivity, including point-to-site and site-to-site
- Implement encryption over ExpressRoute
- Configure firewall settings on PaaS resources
- Monitor network security by using Network Watcher, including NSG flow logging
- Knowledge check
- Summary
- Module 2: Module 2: Plan and implement security for public access to Azure resources
- Introduction
- Plan and implement Transport Layer Security (TLS) to applications, including Azure App Service and API Management
- Plan, implement, and manage an Azure Firewall, Azure Firewall Manager and firewall policies
- Plan and implement an Azure Application Gateway
- Plan and implement an Azure Front Door, including Content Delivery Network (CDN)
- Plan and implement a Web Application Firewall (WAF)
- Recommend when to use Azure DDoS Protection Standard
- Knowledge check
- Summary
Tags
Related Courses
-
AZ-104: Configure and manage virtual networks for Azure administrators
4.8 -
Configure secure access to your workloads using Azure virtual networking
-
Implement network security in Azure
-
AZ-700 Designing and Implementing Microsoft Azure Networking Solutions
-
Configure and manage virtual networks for Azure administrators
-
Azure: Network Security
