{"id":61379,"date":"2021-03-29T05:21:18","date_gmt":"2021-03-29T13:21:18","guid":{"rendered":"https:\/\/devblogs.microsoft.com\/devops\/?p=61379"},"modified":"2021-03-30T07:46:17","modified_gmt":"2021-03-30T15:46:17","slug":"intro-to-service-principals-with-peter-de-tender","status":"publish","type":"post","link":"https:\/\/devblogs.microsoft.com\/devops\/intro-to-service-principals-with-peter-de-tender\/","title":{"rendered":"Intro to Service Principals with Peter De Tender"},"content":{"rendered":"<p>AzureFunBytes is a weekly opportunity to learn more about the fundamentals and foundations that make up Azure. It&#8217;s a chance for me to understand more about what people across the Azure organization do and how they do it. Every week we get together at 11AM Pacific on <a href=\"https:\/\/cda.ms\/226\">Microsoft LearnTV<\/a> and learn more about Azure.<\/p>\n<p>This time Microsoft Technical Trainer <a href=\"https:\/\/twitter.com\/pdtit\">Peter de Tender<\/a> joins me for a conversation about Azure Identity and Service Principals. Peter recently wrote a <a href=\"https:\/\/cda.ms\/225\">blog post on the Azure DevOps blog<\/a> that really made me think it was time to dig into managed identity and access management a bit more.<\/p>\n<p>We&#8217;ll learn that rather than using passwords or sending connection strings over the wire, we can use IAM tools within Azure to secure and simplify your deployments credentials.<\/p>\n<p><iframe title=\"AzureFunBytes Episode 35 - Azure Identity and Service Principals with @pdtit\" width=\"500\" height=\"281\" src=\"https:\/\/www.youtube.com\/embed\/ax1cG_Fk6Xw?feature=oembed\" frameborder=\"0\" allow=\"accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture; web-share\" referrerpolicy=\"strict-origin-when-cross-origin\" allowfullscreen><\/iframe><\/p>\n<p><a href=\"https:\/\/youtu.be\/ax1cG_Fk6Xw?t=200\">03:20 &#8211; Intro<\/a><br \/>\n<a href=\"https:\/\/youtu.be\/ax1cG_Fk6Xw?t=395\">06:35 &#8211; Peter&#8217;s role at Microsoft<\/a><br \/>\n<a href=\"https:\/\/youtu.be\/ax1cG_Fk6Xw?t=761\">12:41 &#8211; Identity and Access Management<\/a><br \/>\n<a href=\"https:\/\/youtu.be\/ax1cG_Fk6Xw?t=879\">14:39 &#8211; Whiteboarding Service Principals<\/a><br \/>\n<a href=\"https:\/\/youtu.be\/ax1cG_Fk6Xw?t=1080\">18:00 &#8211; VM Management<\/a><br \/>\n<a href=\"https:\/\/youtu.be\/ax1cG_Fk6Xw?t=1485\">24:45 &#8211; AKS with Service Principal<\/a><br \/>\n<a href=\"https:\/\/youtu.be\/ax1cG_Fk6Xw?t=2069\">34:39 &#8211; Service Management<\/a><br \/>\n<a href=\"https:\/\/youtu.be\/ax1cG_Fk6Xw?t=2308\">38:28 &#8211; Role Assignment<\/a><br>\n<a href=\"https:\/\/youtu.be\/ax1cG_Fk6Xw?t=2827\">47:07 &#8211; Managed Identities<\/a><br \/>\n<a href=\"https:\/\/youtu.be\/ax1cG_Fk6Xw?t=3403\">56:43 &#8211; Secrets Management<\/a><\/p>\n<p>Learn about Azure fundamentals with me! You can also find the recordings here as well:<\/p>\n<p><a href=\"https:\/\/twitch.tv\/azurefunbytes\">AzureFunBytes on Twitch<\/a><br \/>\n<a href=\"https:\/\/twitter.com\/azurefunbytes\">AzureFunBytes on Twitter<\/a><br \/>\n<a href=\"https:\/\/aka.ms\/jaygordononyoutube\">AzureFunBytes on YouTube<\/a><br \/>\n<a href=\"https:\/\/www.youtube.com\/channel\/UC-ikyViYMM69joIAv7dlMsA\">Azure DevOps YouTube Channel<\/a><\/p>\n<p>Useful docs:<\/p>\n<p><a href=\"https:\/\/github.com\/jaydestro\/aks-acr-all-in-one\">AKS ACR Script (GitHub)<\/a><br \/>\n<a href=\"https:\/\/cda.ms\/21V\">Introduction to Azure fundamentals<\/a><br \/>\n<a href=\"https:\/\/cda.ms\/21W\">Create your Azure free account today<\/a><br \/>\n<a href=\"https:\/\/cda.ms\/21R\">Azure Active Directory<\/a><br \/>\n<a href=\"https:\/\/cda.ms\/21T\">Microsoft Learn: Protect identity and access with Azure Active Directory<\/a><br \/>\n<a href=\"https:\/\/cda.ms\/21L\">Create an Azure service principal with Azure PowerShell<\/a><br \/>\n<a href=\"https:\/\/cda.ms\/21N\">What is Azure Active Directory?<\/a><br \/>\n<a href=\"https:\/\/cda.ms\/21P\">Azure Identity Management and access control security best practices<\/a><br \/>\n<a href=\"https:\/\/cda.ms\/21M\">Identity and access management (IAM)<\/a><br \/>\n<a href=\"https:\/\/cda.ms\/21Z\">Azure Container Registry Documentation<\/a><br \/>\n<a href=\"https:\/\/cda.ms\/220\">Assign Azure roles using the Azure portal<\/a><br \/>\n<a href=\"https:\/\/cda.ms\/221\">Assign Azure AD roles to users<\/a><br \/>\n<a href=\"https:\/\/cda.ms\/224\">Application and service principal objects in Azure Active Directory<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>AzureFunBytes is a weekly opportunity to learn more about the fundamentals and foundations that make up Azure. It&#8217;s a chance for me to understand more about what people across the Azure organization do and how they do it. Every week we get together at 11AM Pacific on Microsoft LearnTV and learn more about Azure. This [&hellip;]<\/p>\n","protected":false},"author":39313,"featured_media":61380,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[224,1,251],"tags":[],"class_list":["post-61379","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-azure","category-devops","category-security"],"acf":[],"blog_post_summary":"<p>AzureFunBytes is a weekly opportunity to learn more about the fundamentals and foundations that make up Azure. It&#8217;s a chance for me to understand more about what people across the Azure organization do and how they do it. Every week we get together at 11AM Pacific on Microsoft LearnTV and learn more about Azure. This [&hellip;]<\/p>\n","_links":{"self":[{"href":"https:\/\/devblogs.microsoft.com\/devops\/wp-json\/wp\/v2\/posts\/61379","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/devblogs.microsoft.com\/devops\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/devblogs.microsoft.com\/devops\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/devops\/wp-json\/wp\/v2\/users\/39313"}],"replies":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/devops\/wp-json\/wp\/v2\/comments?post=61379"}],"version-history":[{"count":0,"href":"https:\/\/devblogs.microsoft.com\/devops\/wp-json\/wp\/v2\/posts\/61379\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/devops\/wp-json\/wp\/v2\/media\/61380"}],"wp:attachment":[{"href":"https:\/\/devblogs.microsoft.com\/devops\/wp-json\/wp\/v2\/media?parent=61379"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/devops\/wp-json\/wp\/v2\/categories?post=61379"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/devops\/wp-json\/wp\/v2\/tags?post=61379"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}