Enforcing security controls right from CI/CD pipeline with AzSK – Deep Dive

Azure Security Kit  aka AzSK is a framework that is used internally by Microsoft to control & govern their Azure Subscriptions. While some features are overlapping with Azure Security Center, I find a lot of value in the Kit, mostly in the following areas: The attestation module allowing for a full traceability of security controls…

2

Working with signed JWTs (OAuth with certificates)

How do I use certificates for authenticating against an ADFS server while using OAuth as a trusted client? Simple question right? Yes, but unfortunately it still took me a little work to land on the relevant pages in an Internet search, and subsequently getting it all to work. (Actually most things here apply to Azure…

4

Azure Content Spotlight – Cognitive Service Containers

Welcome to another Azure Content Spotlight! These articles are used to highlight items in Azure that could be more visible to the Azure community. This weeks content spotlight is about Cognitive Service Containers, which is released in preview last week. There was a high demand for the flexibility to deploy AI applications in a variety of environments. By deploying…

0

Windows Server 2019 and Containers

After a bit of noise around the October release of Windows 10 the corresponding server release, Windows Server 2019, was also removed from the download sites Microsoft provides. Just last week it was finally re-released and made available on MSDN. “Whatever. This is IT Pro stuff and I’m a dev…” Well, it is true that…

1

Azure Content Spotlight – Get started with developing AI applications

Welcome to another Azure Content Spotlight! These articles are used to highlight items in Azure that could be more visible to the Azure community. This weeks content spotlight is all for developers that want to get started with developing AI applications or more experienced AI developers that want expand their knowledge. AI is a set of technologies that enable…

0

Enhancing the security of Azure Automation Webhooks in an Azure DevSecOps context

Hi,   Webhooks are a very convenient way to integrate APIs in general and to call Azure Automation runbooks but while they are very useful and easy to work with, they raise some security concerns. To give a concrete example, if you create a webhook against a runbook that leverages Azure Automation Hybrid Workers, causing…


Implementing Multiple Identities in your .NET Core Web App – Part 2

Last week we got started implementing multiple identities in a .NET Core web app by using Azure AD B2C: https://blogs.msdn.microsoft.com/azuredev/2018/09/03/implementing-multiple-identities-in-your-net-core-web-app-part-1/ We were able to very quickly get going logging in with both social and corporate identities by clicking through guided wizards. However this approach fell short when we decided to support multiple Azure AD tenants…

5

Docker in Azure VM

Getting started in a new technology can be frustrating when things go wrong, and Docker is no exception. The purpose of this post is to highlight some common issues faced when getting started with Docker in Azure. Choose the right VM for the job It is hard to put into words regarding the feeling you…

2

Azure Content Spotlight – Where is the market opportunity for developers of IoT solutions?

Welcome to another Azure Content Spotlight! These articles are used to highlight items in Azure that could be more visible to the Azure community. This weeks content spotlight is Diego Tamburini’s post Where is the market opportunity for developers of IoT solutions?. Diego, Principal Manufacturing Industry Lead – Azure Industry Experiences Team, discusses opportunities for developers arising from IoT. The article…

0

Implementing Multiple Identities in your .NET Core Web App – Part 1

Software developers have been dealing with the concept of users in their apps for many years, and many of us have implemented simple schemes for computing a hash of the password and rolling our own mechanisms and identity stores to support this. I don’t think I have seen anyone recommend as a best practice that…

7