Renewing the Azure App Service SSL Certificate in an Application Gateway HTTP Listener

Scenario: The SSL certificate used in my Azure Application Gateway has expired and needs to be replaced. This SSL certificate was bought through the Azure Portal. Background: The certificate was provisioned through the App Service Certificate service in Azure. The certificate is store in my Azure Key Vault. The App Gateway is used as an …

Continue reading Renewing the Azure App Service SSL Certificate in an Application Gateway HTTP Listener

First Glance of Microsoft Search in Bing.com

In my previous article I gave a first glance of Microsoft Search from an Administrator’s point of view. Let’s turn to the end user’s point of view for the Microsoft Search experience that is through Bing.com To search against your Office 365, you must login with your 0365 account. Enter your search terms in the …

Continue reading First Glance of Microsoft Search in Bing.com

First Glance at Microsoft Search Admin Portal

At Microsoft Ignite 2018, the new Microsoft Search has been announced for a more enterprise search across some key Office 365 services. You can read the official announcement in this blog post: https://www.microsoft.com/en-us/microsoft-365/blog/2018/09/24/microsoft-search-cohesive-search-that-intelligently-helps-you-find-discover-command-and-navigate/ More often than not, when I’m in requirements, strategy or solution planning meetings with large organizations, stakeholders desire a “Google-like” experience that searches across all Office 365 services and even …

Continue reading First Glance at Microsoft Search Admin Portal

Penetration Testing Your Web App with Azure Application Gateway WAF Part 3: Log Analytics

Continuing from the previous post Penetration Testing Your Web App with Azure Application Gateway WAF Part 2: OWASP ZAP Tool, I will show how to query the WAF logs using Azure Log Analytics as it provides near real-time monitoring. To get a more comprehensive implementation of Log Analytics you can read my other blog series …

Continue reading Penetration Testing Your Web App with Azure Application Gateway WAF Part 3: Log Analytics

Penetration Testing Your Web App with Azure Application Gateway WAF Part 2: OWASP ZAP Tool

Continuing from my last post Penetration Testing Your Web App with Azure Application Gateway WAF Part 1: Intro, I will demonstrate a very simple penetration test. Thanks to Tanya Janca (@shehackspurple), an OWASP specialist, who suggested I try out the OWASP ZAP tool. “The OWASP Zed Attack Proxy (ZAP) is one of the world’s most popular free …

Continue reading Penetration Testing Your Web App with Azure Application Gateway WAF Part 2: OWASP ZAP Tool

Penetration Testing Your Web App with Azure Application Gateway WAF Part 1: Intro

In setting up an application with appliances that provide protections from cyber threats, it is always necessary to have penetration testing and monitoring throughout the solution's lifecycle management. I will demonstrate the following scenario: Protect your web app using Azure Application Gateway’s Web Application Firewall features. Enable and configure the WAF The web app is …

Continue reading Penetration Testing Your Web App with Azure Application Gateway WAF Part 1: Intro

Performance Monitoring Azure Virtual Machines with Log Analytics Part 5: Alerting

To continue in building upon the scenarios of this blog series, I will show how to create an Azure Alert for a VMs that have an average CPU utilization greater than 90% over a 10 minute period. And continuing to leverage Log Analytics. Specifications Summary Alert on any VM that has an average CPU utilization …

Continue reading Performance Monitoring Azure Virtual Machines with Log Analytics Part 5: Alerting