Cart 0

Implement security through a pipeline using Azure DevOps (AZ-2001)

Course Outline

This course acts as a pivotal step from foundational to intermediate IT skills, essential for roles in development, infrastructure, and security. Participants will gain hands-on experience in configuring and securing pipelines through Azure DevOps.

Covering topics such as secure resource access, permissions validation, project structuring, pipeline extension, and secure variable usage, this course empowers learners to manage identities across projects, pipelines, and agents.

Implement security through a pipeline using Azure DevOps (AZ-2001) Benefits

  • In this course, you will learn how to:

    • Gain foundational knowledge transitioning to intermediate IT skills.
    • Hands-on practice in configuring secure project and repository structures.
    • Proficiency in managing identity across projects, pipelines, and agents.
    • Practical experience in configuring secure access to pipeline resources.
    • Understand permissions configuration and validation.
    • Learn how to extend pipelines using multiple templates for enhanced functionality.

  • Training Prerequisites

    • Basic knowledge of Azure DevOps CI/CD tools, including Azure Pipelines.
    • Basic knowledge of Azure Portal to create resources.
    • Basic knowledge of security concepts like identities and permissions.
    • Experience using the Azure portal to create resources like Azure Key Vault and set permissions.

Azure DevOps Pipeline Security Training Outline

Learning Objectives

Configure a project and repository structure to support secure pipelines

  • Separate a project into team projects and repositories.
  • Separate secure files between projects.
  • Move the security repository away from a project.
  • Assign project and repository permissions.
  • Organize a project and repository structure.

Manage identity for projects, pipelines, and agents

  • Configure a Microsoft-hosted pool.
  • Configure agents for projects.
  • Configure agent identities.
  • Configure the scope of a service connection.
  • Convert to a managed identity in Azure DevOps.

Configure secure access to pipeline resources

  • Identify and mitigate common security threats.
  • Configure pipeline access to specific agent pools.
  • Manage secret variables and variable groups.
  • Secure files and storage.
  • Configure service connections.
  • Manage environments.
  • Secure repositories.

Configure and validate permissions

  • Configure and validate user permissions.
  • Configure and validate pipeline permissions.
  • Configure and validate approval and branch checks.
  • Manage and audit permissions in Azure DevOps.

Extend a pipeline to use multiple templates

  • Create nested templates.
  • Rewrite the main deployment pipeline.
  • Configure the pipeline and the application to use tokenization.
  • Remove plain text secrets.
  • Restrict agent logging.
  • Identify and conditionally remove script tasks in Azure DevOps.
Course Dates - North America
Course Dates - Europe
Attendance Method
Additional Details (optional)