- Course overview
- Course details
- Prerequisites
Course overview
About this course
This course helps learners who plan to demonstrate the ability to implement secure Azure Pipelines, as well topics such as secure resource access, permissions validation, project structuring, pipeline extension, and secure variable usage which empowers participants to manage identities across projects, pipelines, and agents. This course acts as a pivotal step from foundational to intermediate IT skills, essential for roles in development, infrastructure, and security. Participants will gain hands-on experience in configuring and securing pipelines through Azure DevOps.
Audience profile
The audience for this course includes Future & Current Azure DevOps engineer working in CI/CD pipelines.
Course details
Module 1: Configure a Project and Repository Structure to Support Secure Pipelines
• Organize project and repository structure
• Configure secure projects and repositories
• Lab - Configure a project and repository structure to support secure pipelines
Module 2: Configure Secure Access to Pipeline Resources
• Configure agent pools
• Use secret variables and variable groups
• Understand secure files
• Configure service connections
• Manage environments
• Secure repositories
• Lab - Configure agents and agent pools for secure pipelines
Module 3: Manage Identity for Projects, Pipelines, and Agents
• Configure a Microsoft-hosted pool
• Configure agent identities
• Configure the scope of a service connection
• Understand and convert to a Managed Identity
• Lab - Manage identity for projects and pipelines
Module 4: Design and Implement Continuous Deployment using Azure Pipelines
• Introduction to continuous delivery
• Create a release pipeline
• Explore release strategy recommendations
• Provision and test environments
• Manage and modularize tasks and templates
• Multi-stage YAML
• Automate inspection of health
• Lab: Controlling Deployments using Classic Release Gates
• Lab: CI/CD on Azure Data Factory using Azure DevOps and GitHub
• Lab: CI/CD on Azure Databricks using Azure DevOps
Module 5: Configure and Validate Permissions
• Configure and validate user permissions
• Configure and validate pipeline permissions
• Configure and validate approval and branch checks
• Manage and audit permissions
• Lab - Configure and validate permissions
Module 6: Extend a Pipeline to use Multiple Templates
• Create a nested template
• Rewrite the main deployment pipeline
• Configure the pipeline and the application to use tokenization
• Remove plain text secrets
• Restrict agent logging
• Identify and conditionally remove script tasks
• Lab - Extend a pipeline to use multiple templates
Module 7: Configure Secure Access to Azure Repos from Pipelines
• Configure pipeline access to packages
• Configure pipeline access to credential secrets
• Configure pipeline access to secrets for services
• Use Azure Key Vault to secure secrets
• Explore and secure log files
• Lab - Integrate Azure Key Vault with Azure Pipelines
Module 8: Configure Pipelines to Securely use Variables and Parameters
• Ensure parameter and variable types
• Identify and restrict insecure use of parameters and variables
• Move parameters into a YAML file
• Limit queue time variables
• Validate mandatory variables
• Lab - Configure pipelines to securely use variables and parameters
Prerequisites
- Basic knowledge of Azure DevOps CI/CD tools, including Azure Pipelines.
- Basic knowledge of Azure Portal to create resources.
- Basic knowledge of security concepts like identities and permissions.
- Experience using the Azure portal to create resources like Azure Key Vault and set permissions.
Enquiry
Course : AZ-2001: Implement security through a pipeline using Azure DevOps (1)
Enquiry
request for : AZ-2001: Implement security through a pipeline using Azure DevOps (1)
