1. Home
  2. Training Library
  3. Microsoft Azure
  4. Courses
  5. Configuring Azure Application and Data Security

AIP Custom Rule

The course is part of this learning path

Start course
Microsoft Azure offers a wide range of options to secure and protect your data, regardless of the format. Whether you're dealing with documents, SQL databases or big data, there are multiple solutions ranging from authentication to virtual networks.
In this course, we will cover the protection of your data from external and internal threats, whether those threats be malicious or accidental. We will see how good design combined with the right configuration can secure your organization's most precious asset: its data.

Learning Objectives

  • Configure security policies to classify, protect, and manage data
  • Configure data retention for storage and databases
  • Set up Azure SQL security features and auditing
  • Learn how to configure storage account security and access
  • Learn how to secure HDInsight clusters
  • Configure Cosmos DB security
  • Configure Data Lake security
  • Learn good design features of an Azure application
  • See how Azure App Services can secure your app
  • See how a governance policy can help formalize security requirements

Intended Audience

  • People preparing for Microsoft’s AZ-500 exam
  • System administrators
  • App developers


  • Experience with Microsoft Azure
  • Experience with Office 365
  • Basic knowledge of computer security principles
  • Basic networking knowledge



You have the ability to set up your own custom labels. You can do this by going into Azure Information Protection and clicking on the labels tag, and clicking Add new label. Give the label a name and a description. You can then select a color for the label, and also whether you want to enable automatic protection. When you set up the protection, you can either set permissions, which allows you to configure the file expiration date, and whether or not to allow offline access. Or you can allow the user to set the permissions on the document at the time of creation. You then set the conditions that will activate the protection rule associated with the label.

There are a large number of predefined conditions, but you can also create your own custom condition. The custom condition will be activated when the text pattern you've specified appears in a document. After you have created your label and any associated protection conditions and rules, you must associate it with a policy. Do this by selecting a policy from information protection policies. Go into the policy and add the newly created label. To enable data classification and protection on client machines, you must install the AzInfoProtection software. With this installed, applications like Office 365 will get the information protection toolbar. When a phrase is typed that matches one of the conditions in your rules, the user will be prompted to apply the associated label. Information protection can also be applied through the context menu of Windows Explorer by selecting a file, right-clicking and selecting Classify and protect.

About the Author
Learning Paths

Hallam is a software architect with over 20 years experience across a wide range of industries. He began his software career as a  Delphi/Interbase disciple but changed his allegiance to Microsoft with its deep and broad ecosystem. While Hallam has designed and crafted custom software utilizing web, mobile and desktop technologies, good quality reliable data is the key to a successful solution. The challenge of quickly turning data into useful information for digestion by humans and machines has led Hallam to specialize in database design and process automation. Showing customers how leverage new technology to change and improve their business processes is one of the key drivers keeping Hallam coming back to the keyboard.