Integrating On-Premises Identity Infrastructure with Microsoft Azure (90 Day)

Course Details
Code: OD10993
Tuition (USD): $870.00 $652.50 • Self Paced
This course is available in other formats
Instructor-Led Classroom & Virtual
Integrating On-Premises Identity Infrastructure with Microsoft Azure (10993)


Thiscourse teaches Information Technology (IT) professionals how to integrate theiron-premises Active Directory Domain Services (AD DS) environment with MicrosoftAzure Active Directory (Azure AD), and how to use Azure AD as a directoryservice. It also teaches candidates how to use Microsoft Azure RightsManagement (Azure RMS) to protect sensitive documents. Additionally, itfocusses on how to enhance authentication with multi-factor authentication andhow to monitor directory synchronization health.
 NOTE: All lab stepsfor this course are provided at the end of the course and may be viewed at anytime.
Thelabs build up from each other, so the lab environment for this combined lab isavailable to you for five (5) consecutive days only.  Once you click the Lab Launch button, your five(5) day access to the lab environment will start. You decide when to start thelab environment within the ninety (90) day period of your MOC On-Demand access.
However,as this five (5) day access is a one-time access, we strongly recommend thatyou complete all other components for the modules, including videos,interactions, and module assessments before you start the lab environment. Youwill have access to all MOC On-Demand content including lab steps, videos,interactions, knowledge checks and assessments for the entire ninety (90) daysof the course. 
This course teachesIT professionals how to integrate their on-premises AD DS environment withAzure AD and how to use Azure AD as a directory service. It also teachescandidates how to use Azure RMS to protect sensitive documents. Additionally,it focusses on how to enhance authentication with multi-factor authenticationand how to monitor directory synchronization health.

Skills Gained

After completing this course, students will be able to:

  • Compare Azure AD to AD DS, perform Azure AD tenant provisioning, and manage objects and user roles in Azure AD.
  • Implement and configure directory synchronization and manage synchronized directories.
  • Use Azure AD as a directory service for an on-premises environment, configure single sign-on (SSO) in Azure AD, and protect privileged identities.
  • Implement multi-factor authentication.
  • Implement Azure RMS and integrate Azure RMS with on-premises services.
  • Configure alerts and monitor directory services infrastructure.

Who Can Benefit

The primary audiencefor this course is existing IT professionals who have some knowledge andexperience with Azure, and advanced experience with the Windows Serveroperating system. In addition, IT professionals who take this course typicallywant to develop knowledge of identity services integration between on-premisesservices and cloud services. This would typically include:

  • AD DS administrators who are looking to train in cloud identity and access technologies.
  • System or infrastructure administrators with general AD DS experience and knowledge, who are looking for more advanced identity training for Azure services.


Prerequisites

In addition to their professionalexperience, students who attend this training should already have the followingtechnical knowledge:

  • Experience with AD DS concepts and technologies in Windows Server 2012 or Windows Server 2016.
  • Experience working with and configuring Windows Server 2012 or Windows Server 2016.
  • Basic experience with Windows PowerShell.
  • Basic experience with cloud services such as Microsoft Office 365.
  • Basic experience with the Azure platform.
  • Basic experience with identities on premises or in cloud.

Course Details

Outline

Module 1: Introducing Azure ADThis module describes the differences between Azure AD and AD DS, and the Azure AD versions. It also explains how to perform Azure AD tenant provisioning and how to manage objects and user roles in Azure AD.
Lessons

  • Azure AD overview
  • Implementing and configuring Azure AD
  • Managing Azure AD
Lab : Creating and managing an Azure AD tenant
  • Activating an Azure trial subscription
  • Creating an Azure AD tenant and objects in Azure AD
  • Configuring user roles in Azure AD
Aftercompleting this module, students will be able to:
  • Describe Azure AD and compare it to AD DS.
  • Explain Azure AD versions and describe how to perform Azure AD tenant provisioning.
  • Manage objects and user roles in Azure AD.
Module 2: Integrating on-premises AD DS with AzureThis module explains how to extend an on-premises Active Directory domain to Azure, and how directory synchronization works. It also describes how to implement and configure directory synchronization. Additionally, this module describes how to manage synchronized directories.
Lessons
  • Extending an on-premises Active Directory domain to Azure
  • Directory synchronization overview
  • Implementing and configuring directory synchronization
  • Managing synchronized directories
Lab : Implementing directory synchronization
  • Implementing Azure AD Connect
  • Managing directory synchronization
Aftercompleting this module, students will be able to:
  • Explain how to extend AD DS to the Azure platform.
  • Describe directory synchronization.
  • Implement and configure directory synchronization.
  • Manage synchronized directories.
Module 3: Using Azure AD as a directory service in hybrid environmentsThis module explains how to use Azure AD as a directory service for an on-premises environment, and how to configure SSO in Azure AD. Also it describes how to implement privileged identity management in Azure AD.
Lessons
  • Azure AD as a directory service for on-premises environments
  • Configuring SSO with Azure AD
  • Implementing privileged identity management in Azure AD
Lab : Using Azure AD in hybrid environments
  • Joining a Windows 10 computer to Azure AD
  • Implementing SSO with Azure AD
  • Configuring and using Azure AD Privileged Identity Management
Aftercompleting this module, students will be able to:
  • Describe how to use Azure AD as a directory service for an on-premises environment.
  • Configure SSO in Azure AD.
  • Explain how to protect privileged identities.
Module 4: Configuring and protecting authentication in hybrid environmentsThis module explains how authentication works in hybrid environments. In addition, it describes how to implement Azure Multi-Factor Authentication.
Lessons
  • Authentication in hybrid environments
  • Implementing Azure Multi-Factor Authentication
Lab : Configuring authentication in hybrid environments
  • Implementing self-service password reset
  • Implementing Azure Multi-Factor Authentication
  • Implementing Azure Multi-Factor Authentication Server on-premises
Aftercompleting this module, students will be able to:
  • Describe how authentication works.
  • Implement Azure Multi-Factor Authentication.
Module 5: Deploying Azure RMS with on-premises servicesThis module explains how rights management technologies, Active Directory RMS, and Azure RMS work. In addition, it describes how to implement Azure RMS, and how to integrate Azure RMS with on-premises services.
Lessons
  • RMS overview
  • Implementing Azure RMS
  • Integrating Azure RMS with on-premises services
Lab : Implementing Azure RMS
  • Enabling and configuring Azure RMS
  • Integrating Azure RMS with File Classification Infrastructure (FCI)
  • Using the RMS sharing application on a client
Aftercompleting this module, students will be able to:
  • Describe the rights management technologies, AD RMS and Azure RMS.
  • Implement Azure RMS.
  • Integrate Azure RMS with on-premises services.
Module 6: Monitoring Azure ADThis module describes reports on Azure AD and explains how to configure alerts. It also describes how to monitor directory services infrastructure.
Lessons
  • Azure AD reporting
  • Monitoring Azure AD
Lab : Configuring reporting and monitoring
  • Configuring Azure AD reports and notifications
  • Configuring Azure AD monitoring
Aftercompleting this module, students will be able to:
  • Describe reports on Azure AD and describe how to configure alerts.
  • Monitor directory services infrastructure.