How to securely connect to Azure from C# and run REST APIs

Three things that got me here.  First, I learned about creating a Service Principle in Azure and that the credentials for that those can be used to login to Azure, for a given Tenant/Directory ID.  See here “Create an Azure service principal with Azure PowerShell”, also here if you want to see how to create…


Microsoft Security Code Analysis (Private Preview)

Run security analysis tools in Azure DevOps Pipelines The Secure Development Lifecycle (SDL) Guidelines recommend that teams perform static analysis during the implementation phase of your development cycle. The Microsoft Security Code Analysis extension empowers you to do so, easily integrating the running of static analysis tools in your Azure DevOps pipelines. The private preview…


SQL Vulnerability Assessment now supports Azure SQL Data Warehouse and Azure SQL Database Managed Instance

SQL Vulnerability Assessment is now available for Azure SQL Data Warehouse and for Azure SQL Database Managed Instance. The assessment functionality and experience are similar to that of SQL Vulnerability Assessment for Azure SQL Database, while exposing vulnerabilities and security best practices covering the surface area of each particular service. SQL Vulnerability Assessment is an…


Meetup replay: Future of Gov Security – Automated ATOs, Revamped TIC & Beyond

I recently had the opportunity to host a dynamic discussion among leading IT security and compliance experts at our latest Microsoft Azure Government DC Meetup, Future of Gov Security – Automated ATOs, Revamped TIC and Beyond, at 1776 in Crystal City, Virginia. With government accelerating its IT modernization efforts, the focus on strengthening security remains…


How can partners add permission sets?

Microsoft partners who build solutions based on Business Central need a way to expose access to their custom objects through so-called System permission sets. These permission sets are read-only, but users can copy them to create User-Defined permission sets with different permissions. All permission sets released by Microsoft are also of type System. Note that…


SQL Audit logs in Azure Log Analytics and Azure Event Hubs

We are pleased to announce that Azure SQL Database Audit logs can now be written directly to Azure Log Analytics or Azure Event Hubs. This ability, now available in public preview, provides SQL Database Auditing customers with an easy way to centrally manage all of their log data, along with a rich set of tools…

2

A decision tree for Azure Networking

Whether you are planning to use Express Route or VPN tunnels to connect your data centers to Azure, and you want to use a co-location provider in your region to reach Azure or extend your MPLS network to Microsoft. Are you also thinking what is the optimal route to connect your regions? These are the…


Microsoft Threat Modeling Tool GA Release

Microsoft Threat Modeling Tool GA Release We are excited to announce the Microsoft Threat Modeling Tool is now available to download as a supported generally available (GA) release. This release contains important privacy and security updates as well as bug fixes, feature updates, and stability improvements. Existing users of the 2017 Preview version will be…


How to create a read only user for a SQL Azure database

I am updating, or should I say, re-coding a website I have from ASP.NET Web Forms (aspx) to ASP.NET Core Razor Pages (chtml).  The database it connects to only has a global admin, full access user identity.  So I thought that I would fix that and create a need account for read only access.  This…