Integrating On-Premises Identity Infrastructure with Microsoft Azure (90 Day)

Course Details
Code: OD10993
Tuition (USD): $870.00 $652.50 • Self Paced
Generate a quote
This course is available in other formats
Instructor-Led Classroom & Virtual
Integrating On-Premises Identity Infrastructure with Microsoft Azure (10993)

This course teaches Information Technology (IT) professionals how to integrate their on-premises Active Directory Domain Services (AD DS) environment with Microsoft Azure Active Directory (Azure AD), and how to use Azure AD as a directory service. It also teaches candidates how to use Microsoft Azure Rights Management (Azure RMS) to protect sensitive documents. Additionally, it focusses on how to enhance authentication with multi-factor authentication and how to monitor directory synchronization health.

Skills Gained

After completing this course, students will be able to:

  • Compare Azure AD to AD DS, perform Azure AD tenant provisioning, and manage objects and user roles in Azure AD.
  • Implement and configure directory synchronization and manage synchronized directories.
  • Use Azure AD as a directory service for an on-premises environment, configure single sign-on (SSO) in Azure AD, and protect privileged identities.
  • Implement multi-factor authentication.
  • Implement Azure RMS, and integrate Azure RMS with on-premises services.
  • Configure alerts and monitor directory services infrastructure.

Who Can Benefit

The primary audience for this course is existing IT professionals who have some knowledge and experience with Azure, and advanced experience with the Windows Server operating system. In addition, IT professionals who take this course typically want to develop knowledge of identity services integration between on-premises services and cloud services. This would typically include:

  • AD DS administrators who are looking to train in cloud identity and access technologies.
  • System or infrastructure administrators with general AD DS experience and knowledge, who are looking for more advanced identity training for Azure services.

Prerequisites

In addition to their professional experience, students who attend this training should already have the following technical knowledge:

  • Experience with AD DS concepts and technologies in Windows Server 2012 or Windows Server 2016.
  • Experience working with and configuring Windows Server 2012 or Windows Server 2016.
  • Basic experience with Windows PowerShell.
  • Basic experience with cloud services such as Microsoft Office 365.
  • Basic experience with the Azure platform.
  • Basic experience with identities on premises and in the cloud.

Course Details

Outline

Module 1: Introducing Azure ADThis module describes Azure AD, its benefits, and the differences between Azure AD and AD DS. It also explains how to perform Azure AD tenant provisioning and how to manage objects and user roles in Azure AD.
Lessons

  • Overview of Azure AD
  • Implementing and configuring Azure AD
  • Managing Azure AD
Lab : Creating and managing an Azure AD tenant
  • Activating Azure and Office 365 trial subscriptions
  • Configuring an Azure AD tenant and objects in Azure AD
  • Configuring user roles in Azure AD
Aftercompleting this module, students will be able to:
  • Describe Azure AD.
  • Implement and configure Azure AD.
  • Manage Azure AD.
Module 2: Integrating on-premises Active Directory with AzureThis module explains how to extend an on-premises Active Directory domain to Azure. It also describes how directory synchronization works, and how to implement and configure directory synchronization. Additionally, this module describes how to manage synchronized directories.
Lessons
  • Extending an on-premises Active Directory domain to Azure
  • Directory synchronization overview
  • Implementing and configuring directory synchronization
  • Managing synchronized directories
Lab : Implementing directory synchronization
  • Implementing Azure AD Connect
  • Managing directory synchronization
Aftercompleting this module, students will be able to:
  • Describe how to extend on-premises Active Directory to Azure.
  • Describe directory synchronization.
  • Implement and configure directory synchronization.
  • Manage synchronized directories.
Module 3: Using Azure AD as a directory service in hybrid environmentsThis module explains how to use Azure AD as a directory service for on-premises resources, and how to configure SSO in Azure AD. It also describes how to implement Azure AD Privileged Identity Management (PIM).
Lessons
  • Azure AD as a directory service for on-premises environments
  • Configuring SSO with Azure AD
  • Implementing Azure AD PIM
Lab : Using Azure AD in hybrid environments
  • Joining a Windows 10 computer to Azure AD
  • Implementing SSO with Azure AD
  • Configuring and using Azure AD PIM
Aftercompleting this module, students will be able to:
  • Describe how to use Azure AD as a directory service for an on-premises resources.
  • Configure SSO in Azure AD.
  • Implement PIM with Azure AD.
Module 4: Configuring and protecting authentication in hybrid environmentsThis module explains how authentication works in hybrid environments. Additionally, it describes how to implement Azure Multi-Factor Authentication.
Lessons
  • Authenticating users in hybrid environments
  • Implementing multi-factor authentication
Lab : Configuring authentication in hybrid environments
  • Implementing user password reset policy
  • Implementing Multi-Factor Authentication
  • Implementing on-premises Multi-Factor Authentication Server
Aftercompleting this module, students will be able to:
  • Describe how authentication works in hybrid environments.
  • Implement multi-factor authentication.
Module 5: Deploying Azure Information Protection with on-premises servicesThis module provides an overview of rights management, and describes the differences between Active Directory Rights Management Services (AD RMS) and Azure RMS. It also explains how to implement Azure Information Protection and Azure RMS and integrate these services with on-premises services.
Lessons
  • Overview of data protection technologies based on rights management
  • Implementing Azure Information Protection
  • Integrating Azure Information Protection with on-premises services
Lab : Implementing Azure Information Protection
  • Enabling and configuring Azure Information Protection
  • Integrating Azure Information Protection with FCI
  • Using the Azure Information Protection client application on a client
After completing this module, students will be able to:
  • Describe data protection technologies- based on Microsoft Rights Management services (RMS).rights management.
  • Implement Azure Information Protection.
  • Integrate Azure Information Protection with on-premises services.
Module 6: Monitoring Azure ADThis module describes how to use Azure AD reporting, and how to configure Azure AD notifications. It also describes how to monitor AD DS and Azure AD by using Azure AD Connect Health, Azure Monitor, and Azure Log Analytics.
Lessons
  • Azure AD reporting
  • Monitoring Azure AD
Lab : Configuring reporting and monitoring
  • Configuring Azure AD reports and notifications
  • Configuring Azure AD monitoring
Aftercompleting this module, students will be able to:
  • Describe and use Azure AD reporting.
  • Monitor Azure AD.