Skip to content

Services

Azure Active Directory

  • Azure identity system used to define users and groups and provide them permissions to your resources
  • External users who can have access to resources in Azure can also be defined here
  • Create conditions in Conditional Access policies to allow or deny users to log into Azure

Azure Blueprints

  • Define a repeatable set of Azure resources, that can adhere to an organization’s standards, patterns and requirements
  • Orchestrate deployment of resources such as role assignments, policy assignments, Azure resource manager templates and resource groups

Azure Security Center

  • Infrastructure security management system, to improve the security of Azure based and on-premise resources
  • Support for services such as Azure virtual machines , Function Apps, Azure SQL Server databases
  • Give recommendations on what to do for on-premise Windows and Linux servers, provided Microsoft Monitoring agent is installed
  • Can also helps detect and prevent threats at an infrastructure layer

Azure AD Identity Protection

  • Help detect suspicious actions related to user identities
    • Users with leaked credentials
    • Impossible travel to atypical locations
    • Sign-ins from infected devices, anonymous IP addresses, IP addresses with suspicious activity, unfamiliar locations

Azure AD Privileged Identity Management

  • Help manage, control and monitor access to important resources
  • Provide just-in-time privileged access to Azure AD and Azure resources
  • Provide time-bound access to resources using start and end dates
  • Enforce multi-factor authentication to activate any role
  • Get notifications when privileged roles are activated
  • Conduct access reviews to ensure users still require the roles

Azure Firewall

  • Cloud-based network security service to protect network resources
  • Can filter incoming requests and alert or deny traffic from/to malicious IP addresses and domains
  • With built-in high availability, and can scale automatically based on network traffic flows

Azure DDoS protection

  • Protect against Distributed denial of service (DDoS) attacks

Role-based access control

  • Assign access to resources in Azure based on roles