O'Reilly Archive: Exam SC-300 Microsoft Identity and Access Administrator Crash Course

Level: Beginner. Theme: Ramp up cloud security skills with Azure Active Directory.

Microsoft Identity and Access Administrators design, implement, and operate an organization’s identity and access management systems using Azure Active Directory (Azure AD). They provide secure authentication and authorization for enterprise applications, deliver self service management for users, and monitor and troubleshoot the identity and access environment.

In three short hours, this crash course builds a foundation in the key skills and technologies needed to pass SC-300 on the first try. Even without certification plans, you’ll level up on planning and configuring identity and access management solutions on Microsoft Azure.

What you’ll learn

• Create and manage an Azure AD implementation
• Configure users, groups, and external identities
• Implement and administer access management using Azure AD
• Use MFA, conditional access, and identity protection to manage your identity solution
• Design and implement identity governance using entitlement, access reviews, privileged access, and Azure AD monitoring
• Provide secure authentication and authorization for enterprise applications
• Identify and run projects to modernize identity solutions, implement hybrid identity, and implement identity governance

This course is for you if

• You’re preparing for the SC-300 Microsoft Identity and Access Administrator exam
• You’re a current or prospective Azure identity administrator
• You’re a cloud architect or security professional working with Microsoft Azure
• You’re a Microsoft Partner or consultant who needs certification for partner ratings

Prerequisites

• A computer with the web browser of your choice, plus Fiddler, Postman, and Visual Studio Code installed
• A Microsoft Azure account (free 30 day trial is fine)
• Experience deploying Azure workloads and working in an IT environment
• A basic understanding of authentication versus authorization
• Familiarity with security concepts such as defense in depth, least privileged access, and role based access control

Schedule

Implement an identity management solution (45 minutes). Creating and managing your initial Azure AD implementation. Configuring users, groups, and external identities. Hands-on exercises: implement initial Azure AD configuration, manage user roles, add groups, change group license assignments. Q&A.

Implement an authentication and access management solution (50 minutes). Implementing and administering access management with Azure AD. Using MFA, conditional access, and identity protection. Hands-on exercises: secure Azure AD users with MFA, manage user authentication, plan and administer conditional access, manage Azure AD identity protection. Q&A.

Implement access management for apps (30 minutes). Adding applications to your identity and access solution with application registration in Azure AD. Hands-on exercises: plan and design enterprise SSO integration, implement and monitor enterprise app integration for SSO, implement app registration. Q&A.

Plan and implement an identity governance strategy (45 minutes). Designing and implementing identity governance using entitlement, access reviews, privileged access, and Azure AD monitoring. Hands-on exercises: plan and implement entitlement management, plan and manage access reviews, plan and implement privileged access, monitor and maintain Azure AD. Q&A.

Wrap up and Q&A (10 minutes).