Azurecloud~30 mins

Security pillar principles in Azure - Mini Project: Build & Apply

Choose your learning style9 modes available

Learn Why Deep Visual Try Challenge Project Recall Time

Understanding Azure Security Pillar Principles

📖 Scenario: You are starting a new cloud project on Microsoft Azure. To keep your project safe, you need to understand the basic security principles that protect your cloud resources.

🎯 Goal: Build a simple Azure Resource Manager (ARM) template that includes key security configurations following the Azure Security Pillar principles.

📋 What You'll Learn

Create a resource group variable

Add a security configuration variable for network security group

Define a network security group resource with basic security rules

Complete the ARM template with the resource group and security group

💡 Why This Matters

🌍 Real World

This project models how cloud engineers define security settings in Azure to protect resources from unauthorized access.

💼 Career

Understanding and applying Azure security pillar principles is essential for roles like cloud security engineer, cloud architect, and DevOps engineer.

Progress0 / 4 steps

Create a resource group variable

Create a variable called resourceGroupName and set it to the string "MySecureResourceGroup".

Azure

# Your code here

Need a hint?

Use var to declare the variable and assign the exact string.

Add a network security group configuration variable

Create a variable called nsgConfig that holds an object with the property name set to "MyNetworkSecurityGroup".

Azure

var resourceGroupName = "MySecureResourceGroup";
# Your code here

Need a hint?

Define an object with the exact property and value.

Define a network security group resource

Create a variable called networkSecurityGroup that is an object representing an Azure network security group resource. It must have type set to "Microsoft.Network/networkSecurityGroups", name set to nsgConfig.name, and a properties object with a securityRules array containing one rule object with name set to "AllowSSH" and access set to "Allow".

Azure

var resourceGroupName = "MySecureResourceGroup";
var nsgConfig = { name: "MyNetworkSecurityGroup" };
# Your code here

Need a hint?

Follow the Azure resource structure with type, name, and properties including security rules.

Complete the ARM template with resource group and security group

Create a variable called armTemplate that is an object with resourceGroup set to resourceGroupName and resources set to an array containing networkSecurityGroup.

Azure

var resourceGroupName = "MySecureResourceGroup";
var nsgConfig = { name: "MyNetworkSecurityGroup" };
var networkSecurityGroup = {
  type: "Microsoft.Network/networkSecurityGroups",
  name: nsgConfig.name,
  properties: {
    securityRules: [
      {
        name: "AllowSSH",
        access: "Allow"
      }
    ]
  }
};
# Your code here

Need a hint?

Combine the resource group and resources into one ARM template object.