Originally published at https://adamtheautomator.com on October 8, 2020.
Hackers are continually scanning and actively hunting for accessible virtual machines with open management ports. If you’re VMs are in Azure though, you have a tool at your disposal called Azure Just-in-Time Access (JIT).
Originally published at https://adamtheautomator.com on October 7, 2020.
You may have already heard the term serverless-computing. Many cloud service providers offer this service, including Microsoft. With Microsoft’s Azure Functions, you can create function apps that support many languages, including Azure PowerShell.
Suppose you want to automate issuing software licenses to customers. When the customer paid, your website sends an HTTP request to your Azure Function App. The app then validates payment and automatically sends the license to the customer’s email address.
That’s just one scenario where an Azure Function App can be used. There are more usage scenarios from e-commerce to monitoring and reporting where Azure Function Apps can fit in. …
Originally published at https://adamtheautomator.com on September 9, 2020
When you need to automate tasks in Azure with scripts and tools, would you consider using service accounts or Azure service principals? It is not uncommon for some to just create a new service account, slap it with all the admin roles you want, and exclude it from MFA.
I know what you’re thinking — “that is a horrible idea”. Of course, it is! And for sure, your IT Sec will give you a lot of grief if you did all that.
But what’s the alternative? How can you use a privileged credential with a limited scope that doesn’t have to be excluded from multi-factor authentication? You’re in luck because that’s what this article will teach you. …