Author Archives: seolito2014

Microsoft’s Response to CVE-2021-44228 Apache Log4j 2

Posted on by
Reply

SUMMARY

Microsoft continues our analysis of the remote code execution vulnerability (CVE-2021-44228) related to Apache Log4j (a logging tool used in many Java-based applications) disclosed on 9 Dec 2021. As we and the industry at large continue to gain a deeper understanding of the impact of this threat, we will publish technical information to help customers detect, investigate, and mitigate attacks, as well as guidance for using Microsoft security solutions to increase resilience against related attacks. We will update this blog with information and protection details as they become available.

In addition to monitoring the threat landscape for attacks and developing customer protections, our security teams have been analyzing our products and services to understand where Apache Log4j may be used and are taking expedited steps to mitigate any instances. If we identify any customer impact, we will notify the affected party. Our investigation to date has identified mitigation steps customers could take in their environments as well as on our services.

Microsoft’s Response to CVE-2021-44228 Apache Log4j 2 – Microsoft Security Response Center

AZ-305: Design identity, governance, and monitor solutions Design authentication and authorization solutions

Posted on by
Reply

Design authentication and authorization solutions

Azure Architects design and recommend authentication and authorization solutions.

Learning objectives

In this module, you’ll learn how to:

· Design for identity and access management.

· Design for Azure Active Directory.

· Design for Azure Active Directory Business to Business.

· Design for Azure Active Directory Business to Customer.

· Design for conditional access.

· Design for identity protection.

· Design for access reviews.

· Design for service principals for applications

· Design for Azure Key Vault

Prerequisites

· Working experience creating, assigning, and securing corporate identities.

· Conceptual knowledge of identity assignment solutions, role-based access control, and identity protection methods.

This module is part of these learning paths

· AZ-305: Design identity, governance, and monitor solutions

· Introduction3 min

· Design for identity and access management3 min

· Design for Azure Active Directory3 min

· Design for Azure Active Directory Business to Business3 min

· Design for Azure Active Directory Business to Customer3 min

· Design for conditional access3 min

· Design for identity protection3 min

· Design for access reviews3 min

· Design service principles for applications3 min

· Design for Azure Key Vault3 min

· Knowledge check3 min

· Summary and resources3 min

Design authentication and authorization solutions – Learn | Microsoft Docs