You're reading from Learn Azure Administration Explore cloud administration concepts with networking, computing, storage, and identity management

Product type Paperback

Published in Dec 2023

Publisher Packt

ISBN-13 9781837636112

Length 346 pages

Edition 2nd Edition

Tools

Azure

Concepts

Cybersecurity

Author (1):

Kamil Mrzygłód

View More author details

Table of Contents (23) Chapters

Preface

1. Part 1:Introduction to Azure for Azure Administrators

2. Chapter 1: Azure Fundamentals FREE CHAPTER

3. Chapter 2: Basics of Infrastructure as Code

4. Part 2: Networking for Azure Administrator

5. Chapter 3: Understanding Azure Virtual Networks

6. Chapter 4: Exploring Azure Load Balancer

7. Part 3: Administration of Azure Virtual Machines

8. Chapter 5: Provisioning Azure Virtual Machines

9. Chapter 6: Configuring Virtual Machine Extensions

10. Chapter 7: Configuring Backups

11. Chapter 8: Configuring and Managing Disks

12. Part 4: Azure Storage for Administrators

13. Chapter 9: Configuring Blob Storage

14. Chapter 10: Azure Files and Azure File Sync

15. Chapter 11: Azure Storage Security and Additional Tooling

16. Part 5: Governance and Monitoring

17. Chapter 12: Using Azure Policy

18. Chapter 13: Azure Monitor and Alerts

19. Chapter 14: Azure Log Analytics

20. Chapter 15: Exploring Network Watcher

21. Index

Why subscribe?

22. Other Books You May Enjoy

Using Azure AD for authorization

When interacting with Azure Storage, you may use three different options when it comes to authenticating and authorizing each request:

Access key
Shared access token
Azure AD token

While the former two are the native ways of connecting with Azure Storage and are the simplest options, Azure AD authentication and authorization is a feature that gives you the most flexibility and improved security. Let’s discuss it further to have a better understanding of its capabilities.

Azure AD authorization benefits

Both access keys and shared access tokens are simple mechanisms for securing access to Azure Storage. The access flow for them looks like this, starting with the access key: