In this session, discover how to build passwordless app infrastructures using Azure Managed Identities and Identity Federation. We'll start with an overview of managed identities and identity federation, emphasizing their benefits and limitations. Learn to set up service principals in Azure DevOps and GitHub, backed by user-assigned managed identities, and release code / infrastructure changes using Azure Pipelines and Bicep.

We'll explore a typical PaaS Azure architecture and see how to configure these components to authenticate securely with each other using Azure RBAC without relying on passwords, eliminating the risk of credential expirations.

We'll also learn to configure Azure DevOps agents to use managed identities instead of PATs and integrate external secrets like API keys into your infrastructure. If time permits, we'll also cover a short example on Workload Identity in Kubernetes.

Join us to master the most secure and laziest way to configure your infrastructure. Say goodbye to passwords and credential management hassles, and hello to seamless, secure operations. It's a win-win!

Can be scaled to 30, 45 or 60 minutes