Secure your cloud applications in Azure

Beginner
Intermediate
Advanced
Solutions Architect
Developer
Security Engineer
Azure
Policy
Key Vault
Azure Active Directory
API Management

Learn how to secure your Azure apps and associated data with encryption, certificates, and policy.

Prerequisites

None

Modules in this learning path

Learn how to incorporate security into your architecture design, and discover the tools that Azure provides to help you create a secure environment through all the layers of your architecture.

Secure your web applications on Azure and protect your apps against the most common and dangerous web application attacks.

Create security baselines

Your application requires service passwords, connection strings, and other secret configuration values to do its job. Storing and handling secret values is risky, and every usage introduces the possibility of leakage. Azure Key Vault, in combination with managed identities for Azure resources, enables your Azure web app to access secret configuration values easily and securely without needing to store any secrets in your source control or configuration.

There's a tradeoff between security and ease-of-access. The conditional-access feature of Azure Active Directory helps you implement a good balance between the two. Learn how to implement a conditional-access policy using Azure Active Directory.

Add authentication and authorization to an ASP.NET Core web app using the Identity framework.

Discover how to protect your APIs from unauthorized use with API keys and client certificate authentication.