Back

M-SC300: Microsoft Identity and Access Administrator (SC-300)

-
+

NOK 24.000


This course provides IT Identity and Access Professional, along with IT Security Professional, with the knowledge and skills needed to implement identity management solutions based on Microsoft Azure AD, and it connected identity technologies. This course includes identity content for Azure AD, enterprise application registration, conditional access, identity governance, and other identity tools.

TARGET AUDIENCE:
This course is for the Identity and Access Administrators who are planning to take the associated certification exam, or who are performing identity and access administration tasks in their day-to-day job. This course would also be helpful to an administrator or engineer that wants to specialize in providing identity solutions and access management systems for Azure-based solutions; playing an integral role in protecting an organization.

COURSE PREREQUISITES:
Successful learners will have prior knowledge and understanding of:

• Security best practices and industry security requirements such as defense in depth, least privileged access, shared responsibility, and zero trust model.
• Be familiar with identity concepts such as authentication, authorization, and active directory.
• Have some experience deploying Azure workloads. This course does not cover the basics of Azure administration, instead the course content builds on that knowledge by adding security specific information.
• Some experience with Windows and Linux operating systems and scripting languages is helpful but not required. Course labs may use PowerShell and the CLI.
Prerequisite courses (or equivalent knowledge and hands-on experience):
This free online training will give you the experience you need to be successful in this course.

• SC-900 part 1: Describe the concepts of security, compliance, and identity – Learn | Microsoft Docs
• SC-900 part 2: Describe the capabilities of Microsoft Identity and access management solutions – Learn | Microsoft Docs
• SC-900 part 3: Describe the capabilities of Microsoft security solutions – Learn | Microsoft Docs
• SC-900 part 4: Describe the capabilities of Microsoft compliance solutions – Learn | Microsoft Docs
• AZ-104: Manage identities and governance in Azure – Learn | Microsoft Docs

COURSE CONTENT:
Module 1: Implement an identity management solution
Learn to create and manage your initial Azure Active Directory (Azure AD) implementation and configure the users, groups, and external identities you will use to run your solution.
Lessons M1

• Implement Initial configuration of Azure AD
• Create, configure, and manage identities
• Implement and manage external identities
• Implement and manage hybrid identity
Lab 1a: Manage user roles
Lab 1b: Setting tenant-wide properties
Lab 1c: Assign licenses to users
Lab 1d: Restore or remove deleted users
Lab 1e: Add groups in Azure AD
Lab 1f: Change group license assignments
Lab 1g: Change user license assignments
Lab 1h: Configure external collaboration
Lab 1i: Add guest users to the directory
Lab 1j: Explore dynamic groups
After completing module 1, students will be able to:

• Deploy an initail Azure AD with custom settings
• Manage both internal and external identities
• Implement a hybrid identity solution
Module 2: Implement an authentication and access management solution
Implement and administer your access management using Azure AD. Use MFA, conditional access, and identity protection to manager your identity solution.
Lessons M2

• Secure Azure AD user with MFA
• Manage user authentication
• Plan, implement, and administer conditional access
• Manage Azure AD identity protection
Lab 2a: Enable Azure AD MFA
Lab 2b: Configure and deploy self-service password reset (SSPR)
Lab 2c: Work with security defaults
Lab 2d: Implement conditional access policies, roles, and assignments
Lab 2e: Configure authentication session controls
Lab 2f: Manage Azure AD smart lockout values
Lab 2g: Enable sign-in risk policy
Lab 2h: Configure Azure AD MFA authentication registration policy
After completing module 2, students will be able to:

• Configure and manage user authentication including MFA
• Control access to resources using conditional access
• Use Azure AD Identity Protection to protect your organization
Module 3: Implement access management for Apps
Explore how applications can and should be added to your identity and access solution with application registration in Azure AD.
Lessons M3

• Plan and design the integration of enterprise for SSO
• Implement and monitor the integration of enterprise apps for SSO
• Implement app registration
Lab 3a: Implement access management for apps
Lab 3b: Create a custom role to management app registration
Lab 3c: Register an application
Lab 3d: Grant tenant-wide admin consent to an application
Lab 3e: Add app roles to applications and recieve tokens
After completing module 3, students will be able to:

• Register a new application to your Azure AD
• Plan and implement SSO for enterprise application
• Monitor and maintain enterprise applications
Module 4: Plan and implement an identity governancy strategy
Design and implement identity governance for your identity solution using entitlement, access reviews, privileged access, and monitoring your Azure Active Directory (Azure AD).
Lessons M4

• Plan and implement entitlement management
• Plan, implement, and manage access reviews
• Plan and implement privileged access
• Monitor and maintain Azure AD
Lab 4a: Creat and manage a resource catalog with Azure AD entitlement
Lab 4b: Add terms of use acceptance report
Lab 4c: Manage the lifecycle of external users with Azure AD identity governance
Lab 4d: Create access reviews for groups and apps
Lab 4e: Configure PIM for Azure AD roles
Lab 4f: Assign Azure AD role in PIM
Lab 4g: Assign Azure resource roles in PIM
Lab 4h: Connect data from Azure AD to Azure Sentinel
After completing module 4, students will be able to:

• Mange and maintain Azure AD from creation to solution
• Use access reviews to maintain your Azure AD
• Grant access to users with entitlement management

COURSE OBJECTIVE:
• Implement an identity management solution
• Implement an authentication and access management solutions
• Implement access management for apps
• Plan and implement an identity governancy strategy

FOLLOW ON COURSES:
Not available. Please contact.