The following are the recommended training modules for Zero Trust.

Azure management and governance

 
Training Describe Azure management and governance
The Microsoft Azure Fundamentals training is composed of three learning paths: Microsoft Azure Fundamentals: Describe cloud concepts, Describe Azure architecture and services, and Describe Azure management and governance. Microsoft Azure Fundamentals: Describe Azure management and governance is the third learning path in Microsoft Azure Fundamentals. This learning path explores the management and governance resources available to help you manage your cloud and on-premises resources.
This learning path helps prepare you for Exam AZ-900: Microsoft Azure Fundamentals.

配置Azure策略

 
Training Configure Azure Policy

Learn how to configure Azure Policy to implement compliance requirements.
In this module, you learn how to:

  • Create management groups to target policies and spending budgets.
  • Implement Azure Policy with policy and initiative definitions.
  • Scope Azure policies and determine compliance.

管理安全操作

 
Training Manage Security operation
Once you have deployed and secured your Azure environment, learn to monitor, operate, and continuously improve the security of your solutions.
This learning path helps prepare you for Exam AZ-500: Microsoft Azure Security Technologies.

配置存储安全

 
Training Configure Storage security

Learn how to configure common Azure Storage security features like storage access signatures.
In this module, you learn how to:

  • Configure a shared access signature (SAS), including the uniform resource identifier (URI) and SAS parameters.
  • Configure Azure Storage encryption.
  • Implement customer-managed keys.
  • Recommend opportunities to improve Azure Storage security.

配置Azure防火墙

 
Training Configure Azure Firewall

You will learn how to configure the Azure Firewall including firewall rules.
After completing this module, you will be able to:

  • Determine when to use Azure Firewall.
  • Implement Azure Firewall including firewall rules.

For more training on security in Azure, see these resources in the Microsoft catalog:
Security in Azure | Microsoft Learn

接下来的步骤

See these additional articles for applying Zero Trust principles to Azure:

See these additional articles for applying Zero Trust principles to Azure networking:

技术说明

本海报提供了Azure IaaS组件的单页概览,作为参考和逻辑架构,以及确保这些组件应用零信任模型的“永不信任,始终验证”原则的步骤。

 
Item Related solution guides
Thumbnail figure for the Apply Zero Trust to Azure IaaS infrastructure poster.


PDF | Visio
Updated March 2024

此下载提供了Azure IaaS零信任的参考和逻辑架构以及单独组件的详细配置。请将此下载的页面用于单独的IT部门或专业,或者使用该文件的Microsoft Visio版本,为您的基础架构自定义图表。

 
Item Related solution guides
Thumbnail figure for the Diagrams for applying Zero Trust to Azure IaaS infrastructure poster.


PDF | Visio
Updated March 2024

For additional technical illustrations, click here.

References

Refer to the following links to learn about the various services and technologies mentioned in this article.