How to prepare to collect security log data from your Azure Windows virtual machines. You require two things: Log Analystics Workspace to be created The agent to be installed on…
Azure – Access Control and Role Assignment
This example shows how to assign a user/group a role to admin virtual machines in a resource group. How to steps.. Select "Resource Group" > IAM > Add > Select…
Azure – Configure Management Locks – Prevent Accidental Deletion Of Core Resources
Locking prevents the accidental deletion or modifying of critical resources. Example Azure Subscription, Resource Group, Network, Files, VMs. How to configure Management locks to prevent the accidental deletion of core…
Simple SQL Injection Example – Review Security and Remediate
Something I regularly do, is review security against attacks and remediate if required. This example is a simple SQL injection attack. There is a few things in addition to code…
AZURE – Control Storage Access by Networks
We have a storage account, "StorageV2 (general purpose v2)" and its can be accessed initially from all networks. We now want to restrict the storage access to an approved network…
Azure – Update Management
How to maintain the patch status of your Windows and Linux machines "You can use Update Management in Azure Automation to manage operating system updates for your Windows and Linux…
Azure – Monitoring Alert On Virtual Machine CPU Usage
Create a monitoring alert on virtual machine CPU spike/usage. Prep work you will need a virtual machine to monitor. An action group set to send emails to admins For this…
Azure – Register An Application in AD and Generate App Password
How to guide, in Azure register an application in AD and generate app password In the Azure portal, browse to Azure Active Directory > App Registrations New Registration Enter Application…
Azure – Activity Log
Example of what you can see in an Azure Activity Log Event Initiated by Subscription Operation Status Time
Azure – Route Tables – How To Force Traffic Down A Specific Route
"Create a route table when you need to override Azure's default routing." Why? To force internet traffic via the on-prem network Route via a NGFW (Next Generation Fire Wall) Scenario…