AZ-400 - Develop a Security and Compliance Plan - Section 4.1
Design and implement authentication and authorization methods, including Microsoft Entra service principals, managed identities, GitHub Apps, and Azure DevOps service connections and permissions.
Design authentication and authorisation for pipelines using managed identities and Microsoft Entra service principals to avoid stored credentials, and configure GitHub Apps and Azure DevOps service connections with least-privilege permissions. Recognise when personal access tokens are appropriate and their limitations compared to credential-free identity options.
managed identitiesMicrosoft Entra service principalsGitHub AppsAzure DevOps service connectionspersonal access tokens
More in this domain
Back to all Develop a Security and Compliance Plan objectives, or the AZ-400 cert hub.
Examworthy is not affiliated with or endorsed by Microsoft. Original, blueprint-aligned practice material only.