Implement security through a pipeline using Azure DevOps (AZ-2001)

 

Course Overview

Implement security through a pipeline using Azure DevOps

Course Content

Configure a project and repository structure to support secure pipelines

  • Introduction
  • Organize project and repository structure
  • Configure secure projects and repositories
  • Lab - Configure a project and repository structure to support secure pipelines
  • Module assessment
  • Summary

Configure secure access to pipeline resources

  • Introduction
  • Configure agent pools
  • Use secret variables and variable groups
  • Understand secure files
  • Configure service connections
  • Manage environments
  • Secure repositories
  • Lab - Configure agents and agent pools for secure pipelines
  • Module assessment
  • Summary

Manage identity for projects, pipelines, and agents

  • Introduction
  • Configure a Microsoft-hosted pool
  • Configure agents for projects
  • Configure agent identities
  • Configure the scope of a service connection
  • Understand and convert to a Managed Identity
  • Lab - Manage identity for projects and pipelines
  • Module assessment
  • Summary

Configure and validate permissions

  • Introduction
  • Configure and validate user permissions
  • Configure and validate pipeline permissions
  • Configure and validate approval and branch checks
  • Manage and audit permissions
  • Lab - Configure and validate permissions
  • Module assessment
  • Summary

Extend a pipeline to use multiple templates

  • Introduction
  • Create a nested template
  • Rewrite the main deployment pipeline
  • Configure the pipeline and the application to use tokenization
  • Remove plain text secrets
  • Restrict agent logging
  • Identify and conditionally remove script tasks
  • Lab - Extend a pipeline to use multiple templates
  • Module assessment
  • Summary

Configure secure access to Azure Repos from pipelines

  • Introduction
  • Configure pipeline access to packages
  • Configure pipeline access to credential secrets
  • Configure pipeline access to secrets for services
  • Use Azure Key Vault to secure secrets
  • Explore and secure log files
  • Lab - Integrate Azure Key Vault with Azure Pipelines
  • Module assessment
  • Summary

Configure pipelines to securely use variables and parameters

  • Introduction
  • Ensure parameter and variable types
  • Identify and restrict insecure use of parameters and variables
  • Move parameters into a YAML file
  • Limit queue time variables
  • Validate mandatory variables
  • Lab - Configure pipelines to securely use variables and parameters
  • Module assessment
  • Summary

Prerequisites

  • An Azure Subscription. You need to bring your own subscription.
  • Basic knowledge of Azure DevOps.
  • Basic knowledge of security concepts like identities and permissions.
  • Experience using the Azure portal to create resources like Azure Key Vault and set permissions.

Prices & Delivery methods

Online Training

Duration
1 day

Price
  • US $ 675
Classroom Training

Duration
1 day

Price
  • United States: US $ 675

Click on town name or "Online Training" to book Schedule

This is an Instructor-Led Classroom course
Instructor-led Online Training:   This is an Instructor-Led Online (ILO) course. These sessions are conducted via WebEx in a VoIP environment and require an Internet Connection and headset with microphone connected to your computer or laptop. If you have any questions about our online courses, feel free to contact us via phone or Email anytime.
This is a FLEX course, which is delivered simultaneously in two modalities. Choose to attend the Instructor-Led Online (ILO) virtual session or Instructor-Led Classroom (ILT) session.

United States

Online Training 09:00 Pacific Daylight Time (PDT) Enroll
Online Training 09:00 Central Daylight Time (CDT) Enroll
Online Training 09:00 Eastern Daylight Time (EDT) Enroll
Online Training 09:00 Central Standard Time (CST) Enroll
Online Training 09:00 Pacific Standard Time (PST) Enroll

Canada

Online Training 09:00 Pacific Daylight Time (PDT) Enroll
Online Training 09:00 Central Daylight Time (CDT) Enroll
Online Training 09:00 Eastern Daylight Time (EDT) Enroll
Online Training 09:00 Central Standard Time (CST) Enroll
Online Training 09:00 Pacific Standard Time (PST) Enroll