Summary
In this chapter, we focused on all aspects of identity and adhering to the PoLP. Although simple in theory, the PoLP is an iterative and continuous process that we need to monitor in order to prevent overprivileged applications. Since Microsoft Entra ID is the identity management tool for Azure and, by extension, Azure Machine Learning, implementing its core features such as RBAC and learning to work with application identities will help us ensure that the credentials of our users and applications will not be compromised easily. Additionally, implementing features such as Conditional Access and PIM can provide an additional level of security to our identities. But these credentials are not the only ones that matter. In our scripts, we might be using different connection strings or secrets. We can use the Key Vault service together with managed identities where it is possible to manage them centrally and ensure that our secrets are safe.
In the next chapter, we will explore...