Excellent vid once again. John, do you know any case studies/white papers or any reference that you may personally use to assist with architectural decision making in Azure cloud? Not for certification but real world examples with architectural decisions other than what is shown in the Azure architecture center as that lacks context.
Hi John and thanks for a great video! I am trying to do an unattended authentication to Exchange Online through an Azure Function App and I'm having problems translating you video over to that type of authentication. Do you have any clues as to how to go forward with this?
Thanks for the great video John. However, I have a query on the Key Vault access. I understand the concept that we should store our secrets in the key vault, but in order to access these secrets, I first need to login (with password #1). Where do you recommend I store this password #1?
If you are in azure you use managed identity to get permission to the vault to get the secrets. If outside azure I didn’t say key vault I said vault ie some on premises option.
Thanks for the great content. Is there is a way to store private key in Azure Key-Vault and access that key from function app to SSH to remote machines.
Great coverage John! Thanks to your videos spending every day 30 min is adding to our knowledge/skills like magic!
Awesome
enjoying this video for today learning, thanks a lot!
Excellent vid once again.
John, do you know any case studies/white papers or any reference that you may personally use to assist with architectural decision making in Azure cloud? Not for certification but real world examples with architectural decisions other than what is shown in the Azure architecture center as that lacks context.
i don't use anything like that. the well architected framework and CAF would be best bet.
@@NTFAQGuy Thanks John
Hi John and thanks for a great video!
I am trying to do an unattended authentication to Exchange Online through an Azure Function App and I'm having problems translating you video over to that type of authentication. Do you have any clues as to how to go forward with this?
Use a managed identity. Function is azure service and exchange inline uses aad so you need to give the managed identity the exchange online role.
Ok, thanks. I will give that a go :)
Thanks for the great video John. However, I have a query on the Key Vault access. I understand the concept that we should store our secrets in the key vault, but in order to access these secrets, I first need to login (with password #1). Where do you recommend I store this password #1?
If you are in azure you use managed identity to get permission to the vault to get the secrets. If outside azure I didn’t say key vault I said vault ie some on premises option.
@@NTFAQGuy thanks for clarifying!
Hey John, cool video as always :-)
Do you know if somehow we can use Unattended Authentication to sign-in to Exchange Online?
I don’t focus on exchange but it uses aad so I don’t see why you can’t use same approach and the account has exchange role but you would have to test.
merci John. Great and interesting.
Thanks for the great content
Thanks for the great content.
Is there is a way to store private key in Azure Key-Vault and access that key from function app to SSH to remote machines.
Bastion has that integration
@@NTFAQGuy Thanks for the heads up :)
Thank you!
You're welcome!
Thanks!
No problem!
System assigned managed identify is a nice way to do RBAC to KeyVault in a WebApp without the need for managing credentials.
yep, common pattern if you still need a secret for something from an Azure resource. I talk about that pattern in my video on secrets in Azure.
but ideally remove the secret altogether and use the AAD RBAC which is becoming more common.