Earlier today, Camila Martins joined the latest episode Unsung Heroes of the Cloud. She did an amazing job explaining how to manage Azure diagnostics settings at scale: She did such a great job explaining things, that I actually want to try out what she showed. The goal of this blog post is to explore how […]
Tag: security
Image security scanning in Azure Container Registry
I was chatting with a customer last week about the Azure Container Registry. One of the questions that came up was image scanning. There is an integration between the Azure Container Registry and Azure Defender that will perform image scanning. The goal of this blog post is to explore these capabilities and have a look […]
Key Vault CSI driver integrated with AAD-managed pod identities
Tomorrow I’m joining the 425 show on Twitch for a discussion on AAD-managed pod identities and how to integrate them with Key Vault. This blog post is both a sneak preview of what we’ll be discussing tomorrow as well as a review of the episode if you want to study things more in-depth after it […]
Connect Azure Functions securely to Key Vault using VNET integration and Private Link
I did some work with a customer last week to integrate Functions with Key Vault without using the public IP of the Key Vault. This setup worked perfectly, although there were a couple of steps involved. To document those steps, I decided to write this post. In this post we’ll build a new Azure Function […]
Accessing Key Vault Secrets in Kubernetes using the Key Vault CSI driver
Note: There’s a new post available combining CSI driver + AAD pod identity. When you store secrets in a Kubernetes cluster, by default those are stored in the etcd database within the master nodes. The same is true for secrets stored in an AKS cluster on Azure. The best practice for storing secrets is to […]