AZ-304 - Microsoft Azure Architect Design: Storage Account Security Planning


Overview/Description
Expected Duration
Lesson Objectives
Course Number
Expertise Level


Overview/Description

Azure provides mechanisms for securing storage account data. In this course, you'll explore storage account encryption, static web sites, access keys, and shared access signatures. Next, you'll learn about storage account failover, blob immutability, and container access levels. Lastly, you'll examine blob soft deletion and storage account network access. This course is one of a collection of courses that prepares learners for the AZ-304: Microsoft Azure Architect Design certification exam.



Expected Duration (hours)
1.0

Lesson Objectives

AZ-304 - Microsoft Azure Architect Design: Storage Account Security Planning

  • discover the key concepts covered in this course
  • identify methods of securing Azure storage accounts
  • configure storage encryption using the portal
  • configure storage encryption using PowerShell
  • configure a static web site
  • use storage account keys
  • refresh storage account keys in the portal
  • use the CLI to refresh access keys
  • use PowerShell to refresh access keys
  • generate and use a shared access signature
  • set a legal hold policy on a blob container
  • set the access level for a storage container
  • generate a SAS for an individual blob
  • use the blob soft delete feature
  • limit VNet access to a storage account
  • limit storage account access with a private endpoint
  • summarize the key concepts covered in this course

    • Course Number:
    it_clmaad2020_05_enus

    Expertise Level
    Intermediate