- Lab
- A Cloud Guru
Configuration and Security of Azure Storage Accounts
This hands-on lab provides some experience with configuring and securing an Azure storage account. We log in to the Azure portal and create a storage account, and then get familiar with the configuration options for it, including replication options, access tiers, and secure transfers. We RDP into a Windows VM and use Microsoft Azure Storage Explorer to connect to the storage account. We use Blob storage and attempt to upload and retrieve data from the blob. Using the Azure portal, we use access policies and shared access signatures to both permit access to the storage account and deny access to blob data. Subsequent attempts to upload and retrieve data from Blob storage should fail. Completing the lab provides the experience required to configure and secure an Azure storage account. **Scenario** As you walk through the lab, consider the following scenario: You are an Azure Cloud Engineer. You’ve been asked to spend some time getting familiar with the capabilities of Azure storage accounts, including: * The different replication options, access tiers, and configuration of secure transfers. * How to upload and download blobs: * Firstly using Storage account keys. * And then with the configuration of granular shared access signatures and storage access policies.
Path Info
Table of Contents
-
Challenge
Create and Configure a Storage Account
-
Challenge
Log In to the VM with RDP
Log in to the virtual machine that was provisioned for this lab using the username/password provided in the lab credentials.
Note: There may be an issue with the Connect option in the Azure portal. If this occurs for you, you can still RDP using your favorite RDP client and the public IP address of the VM.
-
Challenge
Open Azure Storage Explorer, Connect to the Azure Account, and Upload Image Files
- In the VM, open Azure Storage Explorer and connect to the Azure account using the provided credentials.
- Create a new Blob Storage container and upload sample images to the storage account using the files stored in
C:\imageson the VM.
-
Challenge
Upload Storage Account Files in Azure Storage Explorer Using Access Keys and Revoke Storage Account Access
- In the Azure portal, copy the
key1access key for the Storage Account. - Within Azure Storage Explorer, connect to the Storage Account using the
key1access key. - Upload images to the
imagescontainer. - In the Azure portal, rotate the
key1access key. - In Azure Storage Explorer on the virtual machine, refresh the connection and attempt to view the containers.
- In the Azure portal, copy the
What's a lab?
Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.
Provided environment for hands-on practice
We will provide the credentials and environment necessary for you to practice right within your browser.
Guided walkthrough
Follow along with the author’s guided walkthrough and build something new in your provided environment!
Did you know?
On average, you retain 75% more of your learning if you get time for practice.
