In this learning path, you practice storing business data securely by using Azure Blob Storage and Azure Files. The skills validated include creating storage accounts, storage containers, and file shares. Also, configuring encryption and networking to improve the security posture.

Prerequisites

• Experience using the Azure portal to create resources.
• Basic knowledge of unstructured data like blobs and files.
• Basic knowledge of security concepts like identities, permissions, and encryption.
• Basic knowledge of networking concepts like virtual networks and subnetting.

Modules in this learning path

Create an Azure Storage account

Create an Azure Storage account with the correct options for your business needs

• Introduction
• Decide how many storage accounts you need
• Choose your account settings
• Choose an account creation tool
• Exercise - Create a storage account using the Azure portal
• Knowledge check - Create a storage account
• Summary

Configure Azure Blob Storage

Learn how to configure Configure Azure Blob Storage, including tiers and object replication.

• Introduction
• Implement Azure Blob Storage
• Create blob containers
• Assign blob access tiers
• Add blob lifecycle management rules
• Determine blob object replication
• Upload blobs
• Determine Blob Storage pricing
• Interactive lab simulation
• Knowledge check
• Summary and resources

Configure Azure Files

Learn how to configure Azure Files and Azure File Sync.

• Introduction
• Compare storage for file shares and blob data
• Manage Azure file shares
• Create file share snapshots
• Implement soft delete for Azure Files
• Use Azure Storage Explorer
• Consider Azure File Sync
• Knowledge check
• Summary and resources

Configure Azure Storage security

Learn how to configure common Azure Storage security features like storage access signatures.

• Introduction
• Review Azure Storage security strategies
• Create shared access signatures
• Identify URI and SAS parameters
• Determine Azure Storage encryption
• Create customer-managed keys
• Apply Azure Storage security best practices
• Interactive lab simulation
• Knowledge check
• Summary and resources

Secure and isolate access to Azure resources by using network security groups and service endpoints

Network security groups and service endpoints help you secure your virtual machines and Azure services from unauthorized network access.

• Introduction
• Use network security groups to control network access
• Exercise - Create and manage network security groups
• Secure network access to PaaS services with virtual network service endpoints
• Exercise - Restrict access to Azure Storage by using service endpoints
• Summary

Guided Project - Azure Files and Azure Blobs

In this module, you practice storing business data securely by using Azure Blob Storage and Azure Files. The lab combines both learning and hands-on practice.

• Introduction
• Exercise - Provide storage for the IT department testing and training
• Exercise - Provide storage for the public website
• Exercise - Provide private storage for internal company documents
• Exercise - Provide shared file storage for the company offices
• Exercise - Provide storage for a new company app
• Knowledge check
• Summary and resources