Microsoft Azure Managed Identity Deep Dive

  Рет қаралды 90,830

John Savill's Technical Training

John Savill's Technical Training

Күн бұрын

Пікірлер
@NTFAQGuy
@NTFAQGuy 2 жыл бұрын
Hey everyone, welcome to this video all about managed identities! Please make sure to read the description for the chapters and key information about this video and others. ⚠ P L E A S E N O T E ⚠ 🔎 If you are looking for content on a particular topic search the channel. If I have something it will be there! 🕰 I don't discuss future content nor take requests for future content so please don't ask 😇 Thanks for watching! ☁🤙💪
@maneesh981
@maneesh981 2 жыл бұрын
You are Marvellous Super Genius
@_rmc
@_rmc 2 жыл бұрын
The best bit about studying Azure isn’t only the curated learn cert paths but also that John somehow manages to bring out a new view about a month or two ahead of my learning curve; the deep dive videos are the best way to get ahead quickly and then read the docs and get hands on at a slower pace. Excellent as always John. Always looking forward to what comes next ;)
@robadobdob
@robadobdob 2 жыл бұрын
I've literally just picked up a task to convert our apps to use Managed Identity so this video has been a godsend for explaining the ins and outs of it.
@TheCuriousCat07
@TheCuriousCat07 7 күн бұрын
I have had trouble understanding the MI today. Found this video and gosh you made learning so simple and fun, John!!
@expat64
@expat64 2 жыл бұрын
Outstanding session John! I knew a fair bit of this already, but you clarified the picture, as you always do, and filled the remaining gaps for me. This will also be invaluable training for my team! 🙂
@NTFAQGuy
@NTFAQGuy 2 жыл бұрын
Awesome to hear! 🤙
@JeevarajanKumar
@JeevarajanKumar 2 жыл бұрын
+1
@rgulamhussein
@rgulamhussein 2 жыл бұрын
Thank you for such a clear explanation John. Your video is worth a thousand pages of docs!
@lltagged
@lltagged 9 ай бұрын
Great way to spend a saturday evening: Watching John explain stuff you did not know before.
@Semtx552
@Semtx552 2 жыл бұрын
incredibly valuable info, cheers! Especially the start where you articulate the ent app / reg app / SP interaction. i still struggle with that bit. I will rewatch your video dedicated to that subject.
@niraj7616
@niraj7616 2 жыл бұрын
Excellent, watching this with a cup of tea in cold England 🥶 👍
@yasimatech9769
@yasimatech9769 Жыл бұрын
Many thanks John, really learnt a lot from this session on managed identities in Entra ID (aka Azure). You've really nailed it in my head 💯
@robannmateja5000
@robannmateja5000 2 жыл бұрын
Listened to this again for the second time (refresher). As usual, awesome content and presentation. Thank you!
@lj7894
@lj7894 2 жыл бұрын
"Simplicity is Intelligence " Jiddu Krishnamurti - thank you John for makings things in Azure simple again! :)
@NTFAQGuy
@NTFAQGuy 2 жыл бұрын
My pleasure! Thank you!
@gwcooley
@gwcooley 2 жыл бұрын
Great overview, excellent engaging teaching style. Thank you. Onward and upward!
@NTFAQGuy
@NTFAQGuy 2 жыл бұрын
Glad you enjoyed it!
@amirjsayes
@amirjsayes Жыл бұрын
Simply outstanding! Very clear and very informative and enjoyable to watch 💪🏼 Keep up the great work
@robbrinkkemper1702
@robbrinkkemper1702 Жыл бұрын
I'm really thankful for the lessons learned from Azure Managed Identities. They've been incredibly valuable.😊📚🙏
@NTFAQGuy
@NTFAQGuy Жыл бұрын
Happy to hear that!
@s3999
@s3999 2 жыл бұрын
John, that video is simply brilliant. Kudos to you.
@cma9br
@cma9br 2 жыл бұрын
I am a big fan of managed identities and you make things easy to learn
@wolkwijs324
@wolkwijs324 2 жыл бұрын
Again a gem of a video! Thanks for another great deep dive!
@NTFAQGuy
@NTFAQGuy 2 жыл бұрын
Very welcome 🤙
@TechChefMM
@TechChefMM 2 жыл бұрын
Absolutely Excellent Azure Managed Identity lesson/explanation! John Savill, you are an Azure evangelist Super Hero!!! I truly appreciate you! MM
@NTFAQGuy
@NTFAQGuy 2 жыл бұрын
Thank you
@amirjsayes
@amirjsayes Жыл бұрын
Amazing 48 minutes of great content! Great work John 🎉
@timurkalizhanov5281
@timurkalizhanov5281 10 ай бұрын
Very clear, structured and detailed explanation! Thank you very, very much for what you are doing!!!!
@NTFAQGuy
@NTFAQGuy 10 ай бұрын
You're very welcome!
@gunknown370
@gunknown370 2 жыл бұрын
I'm studying for the az-500 and your content is just the best out there! thanks for this
@a29miller
@a29miller 2 жыл бұрын
Great Video! Gave me a much better understanding of this managed identity topic!!
@naveenkumarn9917
@naveenkumarn9917 2 жыл бұрын
Good content and delivery.Well prepared commands. Really helped me to visualize. Thanks John
@ehickeytube
@ehickeytube 2 жыл бұрын
Thanks John. Great content and better delivery
@wesleygyger1210
@wesleygyger1210 2 жыл бұрын
Good stuff. I didn't know what I didn't know until I watched this. Thanks for helping me understand this.
@michield6812
@michield6812 Жыл бұрын
Outstanding presentation. A lot of information in a short time.
@agostinopugliese5288
@agostinopugliese5288 2 жыл бұрын
John, this video is amazing as always. Kudos to you
@atulpatel8708
@atulpatel8708 2 жыл бұрын
Fantastic video on Azure Managed Identities, thank-you so much !
@NTFAQGuy
@NTFAQGuy 2 жыл бұрын
You are welcome
@toddhu2498
@toddhu2498 Жыл бұрын
I struggle a long time how MI magically dealt all the headache in SP. read all type of docs but always the information is here and there. The IMDS AND MIRP is really the key, surprisingly this video can use 40min to explain all my question that I researched like 1 week..
@cnchandroo
@cnchandroo 2 жыл бұрын
Thank you John for yet another wonderful session. It helped me to understand better how MI works internally and used with Azure resources for access management.
@NTFAQGuy
@NTFAQGuy 2 жыл бұрын
Wonderful!
@RonaldoCorrea-v2j
@RonaldoCorrea-v2j Ай бұрын
Excellent! thanks for sharing so much details about identities.
@NTFAQGuy
@NTFAQGuy Ай бұрын
Glad you liked it!
@chouaibhelmi
@chouaibhelmi 10 ай бұрын
John the way you explain is just amazing ; that whiteboard is the best i have ever seen, it has a true Power 😁>>>>>>>> thanks for these series
@NTFAQGuy
@NTFAQGuy 10 ай бұрын
Welcome!
@ravikumarmistry
@ravikumarmistry 6 ай бұрын
Great as always
@rupeshchoudhary9237
@rupeshchoudhary9237 Жыл бұрын
Great teaching skills. .loved the whole explanation Bit . I would love enroll for a course on whole azure series if any.
@christianibiri
@christianibiri 2 жыл бұрын
I learned a lot with this video! thank you sir!
@NTFAQGuy
@NTFAQGuy 2 жыл бұрын
Welcome
@matthewmarquis4266
@matthewmarquis4266 Жыл бұрын
Thank you so much for this break down
@islamtoghuj
@islamtoghuj Жыл бұрын
Thank you our brother.
@michaelwaterman3553
@michaelwaterman3553 Жыл бұрын
This is freaking brilliant!!! Thanks 🙏
@NTFAQGuy
@NTFAQGuy Жыл бұрын
Glad you like it!
@va55ag0
@va55ag0 2 жыл бұрын
Thanks again for another great video. Quick question about my scenario: My app is an API and, and therefore has its own App Registration (an identity!). It accesses Azure Storage accounts plus makes calls other APIs using Oauth 2.0 client credentials flows (I.e. I have to grant my app registration permission to the scopes of the other app registrations). In this scenario, would you still recommend using the managed identity to access the Azure resources? To me, it seems strange for my app to have multiple identities.
@NTFAQGuy
@NTFAQGuy 2 жыл бұрын
like all consulting i think it depends :-) there are resiliency benefits as i talked about but maybe the complexity not worth it for you to have multiple.
@olegshalnov1028
@olegshalnov1028 2 жыл бұрын
Great article! Thank you for doing this!
@JeremyTBradshaw
@JeremyTBradshaw 2 жыл бұрын
That was really great! Thanks very much.
@expat64
@expat64 2 жыл бұрын
So John, am I right in thinking that, in your VM scenario, anybody who can log into the VM implicitly has permission to use any of the MIs assigned to the VM, meaning you need to be aware that when granting somebody access to the VM, you are also granting them permission to use the MI, and if so, is this something that should be highlighted?
@NTFAQGuy
@NTFAQGuy 2 жыл бұрын
Right anything within that vm can use the MIs associated with it.
@sylviawylie9218
@sylviawylie9218 7 ай бұрын
Generic comment to show my appreciation. Keep winning John!
@ranajitjana4030
@ranajitjana4030 2 жыл бұрын
Too good. Thank you for the video
@James-sc1lz
@James-sc1lz 2 жыл бұрын
I needed this and you explained it really well as usual so thank you
@wreadd
@wreadd 3 ай бұрын
Make sure to use powershell 7 and not 5! powershell 7 natively uses higher tls versions that are needed and we experiences tls/cipher issues because powershell 5 couldnt negotiate to azure to match tls versions. once we installed powershell 7 it worked great.
@chaddoyle6911
@chaddoyle6911 2 жыл бұрын
Super Cool Stuff! I’ve just started learning these concepts and your teaching style is quite good. I have a question that came out of this video and that is that recently I decided to use a system mi even though there were multiple resources that could benefit from a user mi. I think I did it because there were trade off(s). Is there a simple answer and if not would you consider talking about the differences or sending me a link where you have talked about them?
@NTFAQGuy
@NTFAQGuy 2 жыл бұрын
I talked about why use UA-MI in the video. Don't really have anythign beyond what I explained.
@oliviermalfroidt6405
@oliviermalfroidt6405 2 жыл бұрын
Thank you for this amazing content.
@omartin2009
@omartin2009 2 жыл бұрын
Excellent as always!! How do apps, once IMDS (in the example of the VM), gets the refreshed token? I guess as a dev (or a user of the VM), I'd have to manually get a refresh token (or code that to refresh the token every now and depending on the kind of resource) by doing some kind of CURL request (or PS or other method) because the token I downloaded at t=0 will become invalid at t=12h, right?
@NTFAQGuy
@NTFAQGuy 2 жыл бұрын
There is no refresh token. As I said in videos its app only flow with long lived access token. MSAL etc will take care.
@cdoex1
@cdoex1 2 жыл бұрын
Thank you, this was a very good MI deep dive. But is it possible to have an even deeper dive? Regarding the IMDS endpoint in the example there were no authentication to that service present, so I guess that is handled some other way? The AppService MI sidecar uses some sort of internally injected private key for that) (In certain situations using the C# libraries for this, the proactive token refresh seems to not start after 12h, or half the token lifetime, but rather 5m before expiry, resiliency effectively defeated...)
@NTFAQGuy
@NTFAQGuy 2 жыл бұрын
I don't think a deeper dive would be of interest to most. I gave detail on how it works but really all you care about is in your service/language how to request it.
@cdoex1
@cdoex1 2 жыл бұрын
@@NTFAQGuy Thank you, I managed to find the documentation that told the story on how IMDS worked and even posted the link here in a response to my comment above, but now that response seems to be missing.
@NTFAQGuy
@NTFAQGuy 2 жыл бұрын
@@cdoex1 I did include in the video description the link to the MS how it works. Links in comments are disabled so thats likely why not showing.
@cdoex1
@cdoex1 2 жыл бұрын
@@NTFAQGuy Ah, of course, but who reads the description 🤦‍♂🤦‍♂ sorry...
@NTFAQGuy
@NTFAQGuy 2 жыл бұрын
@@cdoex1 lol
@fxylk
@fxylk 2 жыл бұрын
Amazing 🤩
@NTFAQGuy
@NTFAQGuy 2 жыл бұрын
Thanks 🤙
@hutchm92
@hutchm92 10 ай бұрын
Great explanation!
@NTFAQGuy
@NTFAQGuy 10 ай бұрын
Glad it was helpful!
@Mo-iu3jf
@Mo-iu3jf 2 жыл бұрын
Awesome video, thanks a lot for sharing
@BhanuPratap88
@BhanuPratap88 2 жыл бұрын
Thanks a lot great explanation of a very complex topic 👏👏
@lawrencecroft1580
@lawrencecroft1580 4 ай бұрын
That was a very helpful video
@lightyagami0ben
@lightyagami0ben 2 жыл бұрын
Great content !
@StarvedForTime
@StarvedForTime 2 жыл бұрын
This video saved my ass. Liked and subbed
@MrZakiHaider
@MrZakiHaider 2 жыл бұрын
Great. thank you :)
@antoniemerks1375
@antoniemerks1375 Жыл бұрын
Thanks
@AleksandarIvanov69
@AleksandarIvanov69 2 жыл бұрын
For the algorithm! 😁
@HenryBuild-sp6or
@HenryBuild-sp6or 2 жыл бұрын
your biceps as a load balancer :)
@NTFAQGuy
@NTFAQGuy 2 жыл бұрын
lol
@hyrog7795
@hyrog7795 24 күн бұрын
is he wearing two watches?
@NTFAQGuy
@NTFAQGuy 24 күн бұрын
No
@RonaldPostelmans
@RonaldPostelmans 2 жыл бұрын
create explanation of managed identities, thanks
@jatinnandwani6678
@jatinnandwani6678 2 жыл бұрын
Hey John thanks so much Can I buy you a coffee or can you please enable some method of contributing back to this channel
@NTFAQGuy
@NTFAQGuy 2 жыл бұрын
That’s very kind but I don’t want to earn money from this channel. It’s my way of giving back to the community which is why I have no adverts etc. Just help spread word of the channel and help it grow would be awesome 🤙
@enlgn7050
@enlgn7050 4 ай бұрын
Its absolutely illegal that all of this content is for free.
@jean-baptistelasselle4562
@jean-baptistelasselle4562 Жыл бұрын
"some people" 😂🤣
Active Directory Domain Service Deep Dive
1:00:09
John Savill's Technical Training
Рет қаралды 76 М.
Microsoft Azure AD Identity Protection Deep Dive
56:26
John Savill's Technical Training
Рет қаралды 42 М.
It’s all not real
00:15
V.A. show / Магика
Рет қаралды 20 МЛН
coco在求救? #小丑 #天使 #shorts
00:29
好人小丑
Рет қаралды 120 МЛН
Quilt Challenge, No Skills, Just Luck#Funnyfamily #Partygames #Funny
00:32
Family Games Media
Рет қаралды 55 МЛН
Managed Identities with Azure AD (Active Directory) Tutorial
31:54
Adam Marczak - Azure for Everyone
Рет қаралды 150 М.
Microsoft Azure Application Gateway Deep Dive
1:03:29
John Savill's Technical Training
Рет қаралды 121 М.
AZ-305 Designing Microsoft Azure Infrastructure Solutions Study Cram - Over 100,000 views
3:38:35
John Savill's Technical Training
Рет қаралды 473 М.
Microsoft Azure Front Door Deep Dive
40:21
John Savill's Technical Training
Рет қаралды 82 М.
Azure Managed Identities - explained in plain English in 5 mins with a step by step demo
7:33
cloud-monk - cloud in plain english
Рет қаралды 99 М.
Azure Key Vault Deep Dive (AZ-500)
1:07:43
John Savill's Technical Training
Рет қаралды 83 М.
Picking which Azure AD Synchronization Technology! AAD Connect vs Cloud Sync
35:27
John Savill's Technical Training
Рет қаралды 44 М.
SC-300 Microsoft Identity and Access Administrator Study Cram
2:43:29
John Savill's Technical Training
Рет қаралды 214 М.
Azure Bastion Deep Dive
39:49
John Savill's Technical Training
Рет қаралды 34 М.
It’s all not real
00:15
V.A. show / Магика
Рет қаралды 20 МЛН