Reading Time: 3 minutes Microsoft protects our AKS clusters by applying OS security and/or kernel updates automatically to the nodes in our cluster. You will find some of the updates will need a reboot to complete. As part of this patching, Microsoft does not reboot our nodes. You could do an AKS upgrade, this Read more…
Reading Time: 4 minutes In this article, I am going to show you how to Install Secure DevOps Kit for Azure (AzSK), do a scan against as subscription and then fix an issue using the recommendation. What is AzSK? Below is an overview of what AzSK is from their website. https://azsk.azurewebsites.net/README.html#overview The “Secure DevOps Read more…
Reading Time: 3 minutes Recently at work I have been playing with Azure virtual machine scale sets (VMSS). On 03/04/2019 encryption of VMSS finally went GA! Using PowerShell and the Azure CLI you can now encrypt virtual machine scale sets. Prerequisites To be able to encrypt a VMSS you need to have a Key Read more…
Reading Time: 1 minute If you are using RBAC on your AKS cluster you will probably see a screen like the one below when you try to access the Kubernetes Dashboard. This is because you do not have access to the dashboard. Luckily its an easy fix. In your bash windows type the following. Read more…
Reading Time: 7 minutes In this article I am going to show you how to build a Role Based Access Controlled (RBAC) Azure Kubernetes Services (AKS) cluster using Terraform and Azure Active Directory. At the time of writing this article, when you create an AKS cluster using the portal or terraform RBAC is disabled Read more…
Reading Time: 4 minutes Azure is constantly improving, and one area that has improved is the encryption of Azure Virtual Machines. You may have read a previous article of mine called Encrypt an Azure Virtual Machine by using Key Encryption Key, in this article I showed you how to encrypt the VM using a Read more…
Reading Time: 2 minutes Recently the Azure Security Center (ASC) team have released a preview of a new PowerShell module they have been working on, AzureRM.Security. This module is designed to allow you to manage the ASC automatically. You can view the module on the PowerShell gallery here. Below I will show you how Read more…
Reading Time: 4 minutes In this article, I am going to walk through how to setup an Azure Load Balancer to allow you to connect to multiple VM’s using just one public IP address. The benefits of this, are not only the small cost saving but it also gives us better security due to Read more…
Reading Time: 6 minutes In this blog post, I am going to walk you through how to Install, Configure and use Microsoft LAPS. But first, let’s explain what Microsoft LAPS is. Local Administrator Password Solutions (LAPS) is a solution provided by Microsoft to manage the local administrator account on domain joined computers and servers. Read more…
Reading Time: 1 minute Recently at work, I have been involved on a project that has used GPO to lock down End User Devices and also deploy shortcuts to the users desktops. As we wanted the shortcuts to display for all users we decided to publish the shortcuts to the public desktop. All was Read more…