Microsoft DevOps Solutions: Designing a Sensitive Information Strategy
Keeping sensitive information secure requires storing it outside of application code and deployment scripts. This course will teach you a sensitive information strategy for DevOps.
What you'll learn
Keeping sensitive information secure during development and deployment requires central management and restricting administrative access. In this course, Microsoft DevOps Solutions: Designing a Sensitive Information Strategy, you’ll learn to manage certificates and secrets securely outside of your scripts and code. First, you’ll explore secure vault storage options. Next, you’ll discover storing secrets as pipeline variables. Finally, you’ll learn how to retrieve secrets to use within your Azure DevOps Pipelines and GitHub actions. When you’re finished with this course, you’ll have the skills and knowledge of sensitive information management needed to securely configure release management values. Additionally, this course covers objectives from the AZ-400 certification exam.
Table of contents
- Introduction and Objectives 1m
- Demo Project Overview 4m
- Secrets in Azure Pipelines 5m
- Understanding Azure Key Vault 4m
- Creating and Configuring Key Vault 5m
- Using Key Vault with Azure Resources 3m
- Using Key Vault in Azure Pipelines 4m
- Storing Secret Files in Azure Pipelines 4m
- Managing Certificates with Azure Key Vault 4m
- Using Certificates with Azure Resources and Pipelines 2m
- GitHub Secrets 4m
- Understanding Hashicorp Vault 4m
- Managing Hashicorp Vault 3m
About the author
Neil has worked on everything from early mobile .NET compact framework apps to modern Azure based web apps during his years in IT. As a developer and architect, he has focused on .NET and JavaScript application development, security, and hosting across a variety of Microsoft platforms, including ASP.NET, SharePoint, and Dynamics CRM. Neil has several Microsoft Certifications, including MCPD, MCSA, and MCSD.