Start course

This course will focus on how to create and configure Azure service endpoints so that PaaS services can be made available from within your virtual network. The course will also discuss service tags, their association with service endpoints, and how to use them within the scope of your Network Security Groups and Azure Firewalls to allow/deny traffic to Azure PaaS services. The course will help to put all of this information into perspective.

Learning Objectives 

  • Create service endpoints
  • Configure service endpoint policies
  • Configure service tags
  • Configure access to service endpoints

Intended Audience

  • Azure Network Engineers who will be recommending networking solutions and managing them for performance, resiliency, scale, and security
  • Azure Network Engineers who will be working with solution architects, cloud administrators, security engineers, and application developers to deliver Azure solutions


  • Subject matter expertise in planning, implementing, and maintaining Azure networking solutions, including hybrid networking, connectivity, routing, security, and private access to Azure services
  • Azure administration skills
  • Experience and knowledge of networking, hybrid connections, and network security

Hi there and welcome back. I just want to do a quick wrap-up of what we covered here in this course by looking at the objectives that we talked about at the very beginning. We looked at how to create service endpoints, what are service endpoints, and then how to actually configure endpoint policies for things like storage accounts, whereby allowing you to limit which storage accounts are actually going to be accessible through the service endpoints? We talked about how to configure service tags and actually leverage those service tags throughout numerous areas of your networking architecture. 

And then we talked even more thoroughly about how to configure access to service endpoints using both service tags as well as other mechanisms that are available inside of your Azure networking. As well as even touched on some of the additional features that the past services provide for themselves to limit access. 

So, with that I hope that you've enjoyed this particular content and that you've enjoyed the course. If you are looking for any other Azure topics, Cloud Academy has an entire Azure training library that you can take advantage of. And if you happen to be interested, I've created a number of additional courses as well. So, I hope that you've enjoyed it, and I hope to hear from you soon.


About the Author

Brian has been working in the Cloud space for more than a decade as both a Cloud Architect and Cloud Engineer. He has experience building Application Development, Infrastructure, and AI-based architectures using many different OSS and Non-OSS based technologies. In addition to his work at Cloud Academy, he is always trying to educate customers about how to get started in the cloud with his many blogs and videos. He is currently working as a Lead Azure Engineer in the Public Sector space.