book

Azure Architecture Explained

Name: Azure Architecture Explained
ISBN: 9781837634811

by David Rendón, Brett Hargreaves

September 2023

Intermediate to advanced

446 pages

10h 35m

English

Packt Publishing

Read now

Unlock full access

Azure Architecture Explained
ForewordContributorsAbout the authorsAbout the reviewers
Preface
Who this book is forWhat this book coversTo get the most out of this bookDownload the example code filesConventions usedGet in touchShare Your ThoughtsDownload a free PDF copy of this book
Part 1 – Effective and Efficient Security Management and Operations in Azure
Chapter 1: Identity Foundations with Azure Active Directory and Microsoft Entra
Protecting users’ identities and securing the value chain – the importance of IAM in decentralized organizationsAuthentication and authorization in AzureEngaging and collaborating with employees, partners, and customersThe significance of digital identities in the modern IT landscapeModernizing your IAM with Microsoft Azure ADLife cycle managementLeveraging the Microsoft Cloud Adoption FrameworkAzure AD terminology, explainedSecuring applications with the Microsoft identity platformSecuring cloud-based workloads with Microsoft Entra’s identity-based access controlAzure ADMicrosoft Entra Permissions ManagementMicrosoft Entra Verified IDMicrosoft Entra workload identitiesMicrosoft Entra Identity GovernanceMicrosoft Entra admin centerSummary
Chapter 2: Managing Access to Resources Using Azure Active Directory
Understanding the need for IAMUnderstanding Azure AD (now Microsoft Entra ID)Exploring the Microsoft Entra ID editionsMicrosoft Entra ID Premium P2Understanding the capabilities of Microsoft Entra IDTask 1 – creating a new Azure AD tenant using the Azure portalTask 2 – creating and configuring Azure AD usersTask 3 – creating an Azure AD group with dynamic membershipHybrid identity – integrating your on-premises directories (Azure AD Connect sync and cloud sync)Azure AD Connect syncAzure AD Connect cloud syncAzure AD Application ProxyAzure AD Conditional AccessAzure AD PIMAssigning roles in PIMSummary
Chapter 3: Using Microsoft Sentinel to Mitigate Lateral Movement Paths
Understanding the Zero Trust strategyUnderstanding lateral movementLeveraging Microsoft Sentinel to improve your security postureCollecting dataDetecting threatsInvestigating anomaliesResponding to incidentsEnabling Microsoft SentinelGlobal prerequisitesEnabling Microsoft Sentinel using the Bicep languageEnabling Microsoft Sentinel using the Azure portalSetting up data connectorsMitigating lateral movementsAn Office 365 impersonation following a suspicious Azure AD sign-inSuspicious inbox manipulation rules set following suspicious Azure AD sign-inSummary
Part 2 – Architecting Compute and Network Solutions
Chapter 4: Understanding Azure Data Solutions
Technical requirementsUnderstanding Azure storage typesStructured dataUnstructured dataSemi-structured dataAzure storage accountsUnderstanding Azure database optionsAzure SQLAzure Cosmos DBCreating a Cosmos DB accountSummary
Chapter 5: Migrating to the Cloud
Technical requirementsUnderstanding migration optionsManaging serversUpdate managementVM backupsModernizing applicationsScale setsAzure App Service/Web AppsFurther modernizationMigrating dataSummary
Chapter 6: End-to-End Observability in Your Cloud and Hybrid Environments
Understanding the importance of a monitoring strategyWorking on an effective monitoring strategyAzure Monitor – a comprehensive solution for observability and efficiencyComponentsData sourcesConsumptionSummary

Chapter 7: Working with Containers in Azure
Understanding cloud-native applicationsUnderstanding the difference between virtual machines and containersTerminologyAzure Container InstancesWorking with Azure Container InstancesCreating the Azure Container Registry instancePushing a container image to ACRCreating an Azure Container InstanceDeploying Azure Container Instance for web app Creating Azure Container AppsSummaryFurther reading
Chapter 8: Understanding Networking in Azure
Connectivity in AzureDesign considerations for VNetsExercise 1 – design and implement a virtual network in AzureEnabling cross-virtual-network connectivityUsing service chaining to direct traffic to a gatewayThe hub-spoke network topology in AzureAzure virtual NATHybrid networkingAzure VPN GatewaySite-to-site VPN connectionsPoint-to-site VPN connectionsAzure Virtual WANExpressRouteDecision tree on network topologyLoad balancingLoad balancing non-HTTP(S) trafficLoad balancing HTTP(S) trafficNetwork securityAzure DDoS protectionAzure FirewallExercise 2 – Azure Firewall – implement secure network access using the Bicep languageAzure WAFSummary
Chapter 9: Securing Access to Your Applications
Technical requirementsDesigning for securitySecuring trafficSQL database firewallsWeb application VNet integrationAzure FirewallApplication GatewayAzure Front DoorWhat to use and when?Configuring network-level securityTesting and securing the appCreating an Azure application gatewaySecuring keys and secretsUsing managed identitiesSummary
Part 3 – Making the Most of Infrastructure-as-Code for Azure
Chapter 10: Governance in Azure – Components and Services
Planning a comprehensive cloud governance strategyUnderstanding Azure governanceAzure governance – components and servicesManagement groupsAzure PolicyAzure BlueprintsAzure Resource GraphMicrosoft Cost ManagementMicrosoft Cost Management componentsSummary
Chapter 11: Building Solutions in Azure Using the Bicep Language
Unlocking the benefits of IaC with Azure Resource ManagerAuthoring Bicep filesBicep file structureWorking with parametersParameter data typesBicep modulesPreviewing Azure deployment changes using what-ifSummary
Chapter 12: Using Azure Pipelines to Build Your Infrastructure in Azure
Understanding the relationship between continuous integration, continuous delivery, and pipelinesUnderstanding Azure PipelinesConfiguring Azure DevOpsConfiguring Azure ReposImporting a repository into Azure ReposConfiguring a build pipeline in Azure DevOps using the Classic EditorConfiguring a release pipeline in Azure DevOps using the Classic EditorConfiguring Azure Pipelines with YAMLSummary
Chapter 13: Continuous Integration and Deployment in Azure DevOps
DevOps transformation – achieving reliable and efficient software development through CI and CD practicesCI in Azure DevOps using the Classic EditorCD in Azure DevOpsCI/CD baseline architecture using Azure PipelinesBuilding a multistage YAML pipelineConfiguring a new project in Azure DevOpsConfiguring CI/CD pipelines with YAMLSummary
Chapter 14: Tips from the Field
Azure governanceAzure monitoringIdentity management and protectionAzure networkingAzure containersSummary
Index
Why subscribe?
Other Books You May EnjoyPackt is searching for authors like youShare Your ThoughtsDownload a free PDF copy of this book

Content preview from Azure Architecture Explained

3 Using Microsoft Sentinel to Mitigate Lateral Movement Paths

This chapter explains Microsoft Sentinel’s capabilities to detect and investigate advanced security threats, compromised identities, and potentially malicious actions in our organization.

Lateral movement is a technique used by cyber attackers to move across a network once they have gained access to one device. Microsoft Sentinel is a tool that helps to detect and respond to cyber threats.

In this chapter, we will review how organizations can identify suspicious activity and prevent lateral movement by setting up alerts and automated responses to potential threats using Microsoft Sentinel, helping to protect a network from cyberattacks and keep sensitive information safe.

By using ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

The Azure Cloud Native Architecture Mapbook

Publisher Resources

ISBN: 9781837634811

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills

Azure Architecture Explained

by David Rendón, Brett Hargreaves

3

Using Microsoft Sentinel to Mitigate Lateral Movement Paths

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.