Question

How is data security implemented in ADLS Gen2?

Answer 1

ADLS Gen2 has a multi-layered security model. The data security layers of ADLS Gen2 are:

1. Authentication: It provides user account security with three authentication modes, Azure Active Directory (AAD), Shared Key and Shared Access Token (SAS).
2. Access Control: It restricts access to the individual containers or files using Roles and Access Control Lists (ACLs).
3. Network Isolation: It enables admins to enable or disable access to specific Virtual Private Networks (VPNs) or IP Addresses.
4. Data Protection: Encrypts in-transit data using HTTPS.
5. Advanced Threat Protection: It allows monitoring the unauthorised attempts to access or exploit the storage account.
6. Auditing: It is the final layer of security in which ADLS Gen2 provides comprehensive auditing features where all account management activity is logged.