Accelerate Governance with Deployment Environments

I am super excited to explore and learn this new Azure capability: Azure Deployment Environment.   Azure Deployment Environments empowers development teams to quickly and easily spin-up app infrastructure with project-based templates that establish consistency and best practices while maximizing security, compliance, and cost efficiency. This on-demand access to secure environments accelerates the different stages … Continue reading Accelerate Governance with Deployment Environments

Azure AD Pod Identity – password-less app-containers in AKS

Background I like Azure Managed Identity since its advent. The concept behind Managed Identity is clever, and it adds observable value to any DevOps team. All concerns with password configurations in multiple places, life cycle management of secrets, certificates, and rotation policies suddenly irrelevant (OK, most of the cases).Leveraging managed identity for application hosted in … Continue reading Azure AD Pod Identity – password-less app-containers in AKS

Secure Azure Web sites with Web Application Gateway wtih end-to-end SSL connections

The Problem In order to met higher compliance demands and often as security best practices, we want to put an Azure web site behind an Web Application Firewall (aka WAF). The WAF provides known malicious security attack vectors mitigation's defined in OWASP top 10 security vulnerabilities. Azure Application Gateway is a layer 7 load balancer that provides WAF out of the box. However, … Continue reading Secure Azure Web sites with Web Application Gateway wtih end-to-end SSL connections