You're reading from Exam Ref AZ-104 Microsoft Azure Administrator Certification and Beyond Master Azure administration and pass the AZ-104 exam with confidence

Product type Paperback

Published in Sep 2024

Publisher Packt

ISBN-13 9781805122852

Length 824 pages

Edition 3rd Edition

Tools

Azure Containers

Concepts

Cloud Computing

Author (1):

Donovan Kelly

View More author details

Table of Contents (25) Chapters

Preface

1. Chapter 1: Managing Microsoft Entra ID Objects

2. Chapter 2: Devices in Microsoft Entra ID FREE CHAPTER

3. Chapter 3: Managing Role-Based Access Control in Azure

4. Chapter 4: Creating and Managing Governance

5. Chapter 5: Managing Governance and Costs

6. Chapter 6: Understanding Storage Accounts

7. Chapter 7: Copying Data To and From Azure

8. Chapter 8: Securing Storage

9. Chapter 9: Storage Management and Replication

10. Chapter 10: Azure Resource Manager Templates

11. Chapter 11: Azure Bicep

12. Chapter 12: Understanding Virtual Machines

13. Chapter 13: Managing Virtual Machines

14. Chapter 14: Creating and Configuring Containers

15. Chapter 15: Creating and Configuring App Service

16. Chapter 16: Implementing and Managing Virtual Networking

17. Chapter 17: Securing Access to Virtual Networks

18. Chapter 18: Configuring Load Balancing

19. Chapter 19: Integrating On-Premises Networks with Azure

20. Chapter 20: Monitoring and Troubleshooting Virtual Networking

21. Chapter 21: Monitoring Resources with Azure Monitor

22. Chapter 22: Implementing Backup and Recovery Solutions

23. Chapter 23: Accessing the Online Practice Resources

24. Other Books You May Enjoy

Configuring Network Access to Storage Accounts

One of the first security concepts you should consider when securing your storage account is to consider how and where your storage account is accessed. You can secure your storage account to a specific set of supported networks, which are granted access by configuring network rules so that only applications that request data over the specific set of networks can access the storage account. When these network rules are effective, the application needs to use proper authorization on the request. This authorization could be through either Entra ID credentials for blobs and queues, a SAS token, or a valid account access key.

In this section, you will explore the various methods of connectivity to your storage. You will learn about how each supports different objectives for your storage and how they introduce security within different boundaries. The first connection type you will explore is public endpoints. This topic explores how your...