Key Vault, managed identities, zero trust, and least-privilege patterns for securing Azure workloads.
Azure Security & Identity
How does Azure Key Vault help me secure my data?
Azure Key Vault safeguards encryption keys & secrets for secure data access. It offers isolated storage, AD integration, RBAC, and access policies.
Using Azure Key Vault for Encryption in C# - A Simple Tutorial
Learn to encrypt data in your app using C# and Azure SDK libraries, and secure keys with Azure Key Vault. Discover the easy setup process in this blog.
Managing applications using Azure AD, service principals and managed identities: A permissions story
Explore Azure Active Directory's key concepts: AAD apps, service principles, managed identities, with setup examples.
Secure Azure Function-to-Function authentication without the need for credentials
Explore how to build secure solutions on Azure using Azure Functions and Managed Identities, eliminating the need for storing credentials.
Using Cloud CI/CD in Zero Trust Environments
Performing certain deployment operations from a cloud-based CI/CD agent against resources that are only accessible via private networking are problematic. The often-cited solution is to use your own hosted agents that are also connected to the same private networks, however, this introduces additional costs and maintenance overhead. This post discusses an approach that combines the use of cloud-based CI/CD agents with 'just-in-time' allow-listing as an alternative to operating your own private agents.
Adventures in Least Privilege: When an owner isn't an owner
A troubleshooting journey through Microsoft Entra ID that reveals the subtle but critical distinction between App Registration ownership and Service Principal ownership - and why it matters for least-privilege automation.