
Implement an identity management solution
Learn to create and manage your initial Azure Entra ID (formerly known Azure AD) implementation and configure the users, groups, and external identities you will use to run your solution.
Lessons
- Implement Initial configuration of Azure Entra ID
- Create, configure, and manage identities
- Implement and manage external identities
- Implement and manage hybrid identity
Labs
- Manage user roles
- Setting tenant-wide properties
- Assign licenses to users
- Restore or remove deleted users
- Add groups in Azure Entra ID
- Change group license assignments
- Change user license assignments
- Configure external collaboration
- Add guest users to the directory
- Explore dynamic groups
After completing this Learning Path, students will be able to:
- Deploy an initial Azure Entra ID with custom settings
- Manage both internal and external identities
- Implement a hybrid identity solution
Implement an authentication and access management solution
Implement and administer your access management using Azure Entra ID. Use MFA, conditional access, and identity protection to manager your identity solution.
Lessons
- Secure Azure Entra user with MFA
- Manage user authentication
- Plan, implement, and administer conditional access
- Manage Azure Entra identity protection
- Implement access management for Azure resources
Labs
- Enable Azure Entra MFA
- Configure and deploy self-service password reset (SSPR)
- Work with security defaults
- Implement conditional access policies, roles, and assignments
- Configure authentication session controls
- Manage Azure Entra smart lockout values
- Enable sign-in risk policy
- Configure Azure Entral MFA authentication registration policy
After completing this Learning Path, students will be able to:
- Configure and manage user authentication including MFA
- Control access to resources using conditional access
- Use Azure Entra Identity Protection to protect your organization
Implement access management for Apps
Explore how applications can and should be added to your identity and access solution with application registration in Azure Entra.
Lessons
- Plan and design the integration of enterprise for SSO
- Implement and monitor the integration of enterprise apps for SSO
- Implement app registration
Labs
- Implement access management for apps
- Create a custom role to management app registration
- Register an application
- Grant tenant-wide admin consent to an application
- Add app roles to applications and recieve tokens
After completing this Learning Path, students will be able to:
- Register a new application to your Azure Entra
- Plan and implement SSO for enterprise application
- Monitor and maintain enterprise applications
Plan and implement an identity governance strategy
Design and implement identity governance for your identity solution using entitlement, access reviews, privileged access, and monitoring your Azure Entra
Lessons
- Plan and implement entitlement management
- Plan, implement, and manage access reviews
- Plan and implement privileged access
- Monitor and maintain Entra ID
Labs
- Create and manage a resource catalog with Azure Entra entitlement
- Add terms of use acceptance report
- Manage the lifecycle of external users with Azure Entra identity governance
- Create access reviews for groups and apps
- Configure PIM for Azure Entra roles
- Assign Azure Entra role in PIM
- Assign Azure resource roles in PIM
- Connect data from Azure Entra to Azure Sentinel
After completing this Learning Path, students will be able to:
- Mange and maintain Azure Entra from creation to solution
- Use access reviews to maintain your Azure Entra
- Grant access to users with entitlement management
This course is for the Identity and Access Administrators who are planning to take the associated certification exam, or who are performing identity and access administration tasks in their day-to-day job. This course would also be helpful to an administrator or engineer that wants to specialize in providing identity solutions and access management systems for Azure-based solutions; playing an integral role in protecting an organization.
Successful learners will have prior knowledge and understanding of:
- Security best practices and industry security requirements such as defense in depth, least privileged access, shared responsibility, and zero trust model.
- Be familiar with identity concepts such as authentication, authorization, and active directory.
- Have some experience deploying Azure workloads. This course does not cover the basics of Azure administration, instead the course content builds on that knowledge by adding security specific information.
- Some experience with Windows and Linux operating systems and scripting languages is helpful but not required. Course labs may use PowerShell and the CLI.
This free online training will give you the experience you need to be successful in this course.
- SC-900 part 1: Describe the concepts of security, compliance, and identity - Learn | Microsoft Docs
- SC-900 part 2: Describe the capabilities of Microsoft Identity and access management solutions - Learn | Microsoft Docs
- SC-900 part 3: Describe the capabilities of Microsoft security solutions - Learn | Microsoft Docs
- SC-900 part 4: Describe the capabilities of Microsoft compliance solutions - Learn | Microsoft Docs
- AZ-104: Manage identities and governance in Azure - Learn | Microsoft Docs
- Implement an identity management solution
- Implement an authentication and access management solutions
- Implement access management for apps
- Plan and implement an identity governancy strategy