You're reading from Exam Ref AZ-104 Microsoft Azure Administrator Certification and Beyond Master Azure administration and pass the AZ-104 exam with confidence

Product type Paperback

Published in Sep 2024

Publisher Packt

ISBN-13 9781805122852

Length 824 pages

Edition 3rd Edition

Tools

Azure Containers

Concepts

Cloud Computing

Author (1):

Donovan Kelly

View More author details

Table of Contents (25) Chapters

Preface

1. Chapter 1: Managing Microsoft Entra ID Objects

2. Chapter 2: Devices in Microsoft Entra ID FREE CHAPTER

3. Chapter 3: Managing Role-Based Access Control in Azure

4. Chapter 4: Creating and Managing Governance

5. Chapter 5: Managing Governance and Costs

6. Chapter 6: Understanding Storage Accounts

7. Chapter 7: Copying Data To and From Azure

8. Chapter 8: Securing Storage

9. Chapter 9: Storage Management and Replication

10. Chapter 10: Azure Resource Manager Templates

11. Chapter 11: Azure Bicep

12. Chapter 12: Understanding Virtual Machines

13. Chapter 13: Managing Virtual Machines

14. Chapter 14: Creating and Configuring Containers

15. Chapter 15: Creating and Configuring App Service

16. Chapter 16: Implementing and Managing Virtual Networking

17. Chapter 17: Securing Access to Virtual Networks

18. Chapter 18: Configuring Load Balancing

19. Chapter 19: Integrating On-Premises Networks with Azure

20. Chapter 20: Monitoring and Troubleshooting Virtual Networking

21. Chapter 21: Monitoring Resources with Azure Monitor

22. Chapter 22: Implementing Backup and Recovery Solutions

23. Chapter 23: Accessing the Online Practice Resources

24. Other Books You May Enjoy

Working with SAS Tokens

SAS tokens are secure access tokens that provide delegated access to resources on your storage account. The storage service confirms the SAS token is valid in order to grant access. The construct of a SAS token includes the permissions granted on the token, the date validity, and the signing key for the storage account. When creating a SAS token, several items that govern the process of granting access at a granular level need to be considered. They are as follows:

Resource types that the client might use
Permissions on the resource types that are required
The period the SAS key should function for

Types of SAS

There are three types of SAS supported by Azure Storage:

User-delegated SAS: This is a SAS token that is secured by Entra ID credentials.
Account SAS: An account SAS is created and secured using a storage key. The permissions granted can span several services (blob, file, queue, and table), as well as accessing permissions...