20 juillet 202220 juillet 2022

Two news alerts for Microsoft Defender for KeyVault (AKV)

Hi!

In this article, I will share with you two news alerts released in June 2022 for Microsoft Defender for KeyVault.

Alert (alert type)	Description	MITRE tactics	Severity
Unusual access denied – User accessing high volume of key vaults denied (KV_DeniedAccountVolumeAnomaly)	A user or service principal has attempted access to anomalously high volume of key vaults in the last 24 hours. This anomalous access pattern may be legitimate activity. Though this attempt was unsuccessful, it could be an indication of a possible attempt to gain access of key vault and the secrets contained within it. We recommend further investigations.	Discovery	Low
Unusual access denied – Unusual user accessing key vault denied (KV_UserAccessDeniedAnomaly)	A key vault access was attempted by a user that doesn’t normally access it, this anomalous access pattern may be legitimate activity. Though this attempt was unsuccessful, it could be an indication of a possible attempt to gain access of key vault and the secrets contained within it.	Initial Access, Discovery	Low

Maxime.

20 juillet 202220 juillet 2022

AKS | Start and Stop Node Pool

Hi!

Your AKS workloads may not need to run continuously, for example a development cluster that has node pools running specific workloads. To optimize your costs, you can completely turn off (stop) your node pools in your AKS cluster, allowing you to save on compute costs.

Stop an AKS Node Pool:

az aks nodepool stop --nodepool-name testnodepool --resource-group myResourceGroup --cluster-name myAKSCluster

Start an AKS Node Pool:

az aks nodepool start --nodepool-name testnodepool --resource-group myResourceGroup --cluster-name myAKSCluster

Maxime.

6 juillet 2022

Microsoft MVP Azure 2022-2023 !

Hi!

Its my immense pleasure to share you that I have been awarded as Microsoft Most Valuable Professional (MVP) for the 6th time.

Honored and humbled to have been rewarded as a Microsoft Most Valuable Professional (MVP) for the 6th time! #AzureSecurity #CloudSecurity #MVPBuzz
— Maxime Coquerel (@zig_max) July 5, 2022

I would like to thanks Microsoft MVP Award team, Betsy and Rochelle. Finally, thanks to all my colleagues, blog readers and commentators. Congratulations to all the new and renewed MVP!

Maxime.