Azure Front Door offers various security control and mechanisms that help you build secure and scalable infrastructure without managing the underlying logic and complication of managing the service over time. When coupled with access controls available on Azure App Service, both services are tightly coupled to provide ease of setup and management of security controls.

While serving highly available and resilient public cloud service is crucial to a business, it's also essential to control the boundaries of how that service will be accessed over the internet. Disabling the direct endpoint access to service will help with load balancing and create a highly flexible design to help scale and expand the resources over time.

In this hands-on lab, you will learn how to secure public web app endpoints hosted behind Azure Front Door using advanced access restriction filters.

Learning Objectives

Upon completion of this intermediate-level lab, you will be able to:

• Create Access Restriction Rule for Web App
• Enable Frontdoor Access to Webapp using Advanced Filters

Intended Audience

• Candidates for Azure Security Engineer (AZ-500)
• Cloud Architects
• Security Engineers
• DevOps Engineers
• Software Engineers

Prerequisites

Familiarity with the following will be beneficial but is not required:

• App Service VNet Integration
• Azure Front Door

The following content can be used to fulfill the prerequisite:

• Configuring Web Apps for Private Access using VNet Integration
• Implementing Azure Front Door with App Service Origin Host