Securing Virtual Machines with Azure Key Vault

Keeping encryption keys safe, available, and controlled is a challenge. In this course, you'll learn how to use the Azure key vault to encrypt your virtual machine VHDs and distribute certificates.
Course info
Rating
(20)
Level
Intermediate
Updated
Nov 22, 2016
Duration
2h 1m
Table of contents
Description
Course info
Rating
(20)
Level
Intermediate
Updated
Nov 22, 2016
Duration
2h 1m
Description

One of the problems with having virtual machines in Microsoft Azure has been the inability to encrypt the hard drives. In this course, Securing Virtual Machines with the Azure Key Vault, you will discover how to heighten the security of your cloud VMs by encrypting the hard drives and distributing certificates. First, you will learn how to use and deploy the key vault. Next, you'll explore encryption with the VHDs on a virtual machine. Finally, you'll learn how to deploy certificates from the key vault. When you're finished with this course, you will have the skills and knowledge of Azure key vault needed to secure your VMs in the cloud.

About the author
About the author

Gary has been working in Information Technology for over 15 years. He has worked with Exchange Server since version 5.5 and has experience in both training and hands on implementations. His energetic delivery and passion for technology makes him a popular trainer. He has developed many online courses and delivers training all over the world.

More from the author
Implementing Microsoft Azure Backup
Intermediate
1h 55m
13 Sep 2018
Using Microsoft Azure Resource Groups
Beginner
1h 26m
27 Aug 2018
More courses by Gary Grudzinskas
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
Hi there. My name is Gary Grudzinskas, and welcome to my course Securing Virtual Machines with the Azure Key Vault. I am an Azure architect, and I've been working with Azure for several years. Most of my work these days is with cloud computing. More and more, IT infrastructure is moving to Microsoft Azure. This course will help you secure any of your virtual machines that you have running or will have running on Azure. In this course, we're going to build an Azure Key Vault and then use it to secure Windows and Linux virtual machines. Some of the major topics that we will cover include what a key vault is and how to deploy it and how to use it, how to use disk encryption for virtual machines in Azure, and how to deploy certificates via the Azure Key Vault. By the end of this course, you will know how to encrypt and decrypt VHDs and deploy certificates to Azure VMs. Before beginning this course, you should be familiar with Azure and disk encryption. So, I hope you'll join me on this journey to learn how to add an extra layer of security to your cloud VMs through the Securing Virtual Machines with the Azure Key Vault course here at Pluralsight.

What Is the Azure Key Vault?
This is the course Securing Virtual Machines with Azure Key Vault. In this module, we call it What is the Azure Key Vault? These are the questions that we're going to provide answers to. What is the key vault? We'll explain that. Why should you know how to use it? And how do you set up an Azure Key Vault? And finally, how do you secure your Azure VMs with the key vault?

Deploying the Azure Key Vault
Deploying the Azure Key Vault. Here are the questions we're going to answer. How do you set up your portal? We have a special setup for our portal that I'd like to show you. How is the key vault created? Naturally, we're going to create one. What is involved with setting up the app that does the cryptographic tasks? And finally, what are the properties inside of a key vault?

Encrypting a Running Azure VHD
Encrypting a Running Azure VHD. Here are the questions we're going to answer. How do you encrypt an OS drive, and how do you encrypt a data drive?

Using the Portal for Key Vault
Using the Portal for Key Vault. Here are the questions that we're going to answer. How can you use the key vault portal in order to do some of the things that we've already done? The portal, using key vault, is very, very new. And what templates do you use to deploy a VM with an already encrypted drive?

Using Key Encryption Keys
Using Key Encryption Keys. Here are our questions. What are key encryption keys? How do you set up a key encryption key? How do you backup and restore a key encryption key? And finally, how do you encrypt a VHD with using a key encryption key?

Using Linux with Key Vault
Using Linux with Key Vault. Here are the questions that we're going to answer. How do you encrypt a running Linux VM through the key vault? What templates should you use? And finally, how do you deploy a brand new Linux VM with an already encrypted operating system drive?

Deploying Certificates Through the Key Vault
Deploying Certificates Through the Key Vault. Here are our questions now. How do you install a certificate into the key vault in order to deploy it? And once it is installed, how do you deploy a new VM with a certificate installed inside of that virtual machine?

Maintaining the Azure Key Vault
Maintaining the Azure Key Vault. Here are our final questions. How do you control who can use the key vault? What monitoring can you do with the key vault? How do you decrypt a VHD once it's been encrypted? And then finally, how do you delete the key vault once you're done using it?