AZ-2001T00 Implement security through a pipeline using Azure DevOps

Introduction:

This learning path helps you prepare for the Implement security through a pipeline assessment using Azure DevOps. Learn how to configure and secure Azure Pipelines. You’ll also get opportunities to practice hands-on skills. These skills include configuring secure access to pipeline resources, configuring, and validating permissions, configuring a project and repository structure, extending a pipeline, configuring pipelines to use variables and parameters securely, and managing identity for projects, pipelines, and agents.

Objectives:

Configure secure access to pipeline resources
Configure and validate permissions
Configure a project and repository structure to support secure pipelines
Extend a pipeline to use multiple templates
Manage identity for projects, pipelines, and agents

Course Outline:

1 – Configure a project and repository structure to support secure pipelines

  • Organize project and repository structure
  • Configure secure projects and repositories

2 – Manage identity for projects, pipelines, and agents

  • Configure a Microsoft-hosted pool
  • Configure agents for projects
  • Configure agent identities
  • Configure the scope of a service connection
  • Understand and convert to a Managed Identity

3 – Configure secure access to pipeline resources

  • Configure agent pools
  • Use secret variables and variable groups
  • Understand secure files
  • Configure service connections
  • Manage environments
  • Secure repositories

4 – Configure and validate permissions

  • Configure and validate user permissions
  • Configure and validate pipeline permissions
  • Configure and validate approval and branch checks
  • Manage and audit permissions

5 – Extend a pipeline to use multiple templates

  • Create a nested template
  • Rewrite the main deployment pipeline
  • Configure the pipeline and the application to use tokenization
  • Remove plain text secrets
  • Restrict agent logging
  • Identify and conditionally remove script tasks

6 – Configure secure access to Azure Repos from pipelines

  • Configure pipeline access to packages
  • Configure pipeline access to credential secrets
  • Configure pipeline access to secrets for services
  • Use Azure Key Vault to secure secrets
  • Explore and secure log files

7 – Configure pipelines to securely use variables and parameters

  • Ensure parameter and variable types
  • Identify and restrict insecure use of parameters and variables
  • Move parameters into a YAML file
  • Limit queue time variables
  • Validate mandatory variables

Enroll in this course

Need Help Finding The Right Training Solution?

Our training advisors are here for you.

CAD Canadian dollar