Udemy
    •  
    •  
    •  
    •  
    •  
    •  
    •  
    •  
Turn what you know into an opportunity and reach millions around the world.
Learn More
Your cart is empty.
Keep shopping
SC-500 & AZ-500 Hands-On Certification Course with Sims
Bestseller
Role Play
Rating: 4.7 out of 5(1,453 ratings)
10,151 students

SC-500 & AZ-500 Hands-On Certification Course with Sims

Get prepared for the SC-500 / AZ-500 exams with instructor led labs and hands on simulations available 24/7
Last updated 6/2026
English

What you'll learn

  • Learn the concepts and perform hands on activities needed to pass the SC-500 and AZ-500 exams
  • Gain a tremendous amount of knowledge involving securing Microsoft Azure Services
  • Get loads of hands on experience with securing Microsoft Azure Services
  • Utilize hands on simulations that can be access anytime, anywhere!

Course content

17 sections151 lectures18h 29m total length
  • Welcome to the course!4:38
  • SC-500 and AZ-500 material differences2:25
  • Understanding the Microsoft 365 and Azure Environment1:48
  • Having a Solid Foundation of Active Directory Domains12:11
  • Having a Solid Foundation of RAS, DMZ, and Virtualization13:09
  • Having a Solid Foundation of the Microsoft Cloud Services17:14
  • DO NOT SKIP: Portals renamed!1:51
  • Order of concepts covered in the course1:29
  • Certificate of Completion0:33

Requirements

  • Willingness to put in the time and practice the steps shown in the course

Description

We really hope you'll agree, this training is way more than the average course on Udemy!

Have access to the following:

  • Training from an instructor of over 25+ years who has trained thousands of people and also a Microsoft Certified Trainer

  • Lecture that explains the concepts in an easy to learn method for someone that is just starting out with this material

  • Instructor led hands on and simulations to practice that can be followed even if you have little to no experience

TOPICS COVERED INCLUDING HANDS ON LECTURE AND PRACTICE TUTORIALS:

Secure access to resources by using Microsoft Entra ID

  • Understanding the concepts of Privileged Identity Management (PIM)

  • Implement and configure Privileged Identity Management (PIM)

  • Understanding the concepts of conditional access policies

  • Implement conditional access policies

  • Implement & configure authentication methods, multifactor (MFA) & passwordless

  • Understanding multifactor authentication (MFA)

  • Implement and configure multifactor authentication (MFA)

  • Understanding the concepts of enterprise applications and app registrations

  • Implement and configure identity for applications with app registrations

  • Implement and configure app registration permission scopes

  • Implement and configure app registration permission with roles

  • Implement and configure identity for applications with enterprise applications

  • Manage permission grants and consent settings

  • Understanding the concepts of managed identities and service principals

  • Creating a managed identities for Azure resources

  • Implement a virtual machine to used with a managed identity

  • Implement and configure managed identities for Azure resources

Secure secrets and keys by using Azure Key Vault

  • Deploy Key Vault and configure settings

  • Key Vault security with Hardware Security Modules (HSMs)

  • Configure access to Key Vault

  • Manage keys, secrets, and certificates

  • Configure Key rotation

  • Implement backup and recovery of certificates, secrets, and keys

Implement governance to enforce security and regulatory compliance

  • Implement and configure security controls by using Azure Policy and more

  • Introduction to Microsoft Defender for Cloud

  • Costs involved in using Microsoft Defender for Cloud

  • Setting up plans for using Microsoft Defender for Cloud

  • Evaluate regulatory compliance by using Microsoft Defender for Cloud

  • Security controls in Defender for Cloud, security standards & recommendations

  • Implement resource groups

  • Implement resource locks

  • Understanding the concepts of roles in Azure

  • Manage Azure built-in role assignments

  • Manage custom roles, including Azure roles and Microsoft Entra roles

Implement security for storage accounts

  • Understanding the concepts of storage accounts

  • Implement and configure a storage account

  • Configure Azure Storage firewall rules

  • Implement and configure security for storage accounts with SAS and more

  • Implement Defender for Storage threat protection configurations

  • How to test Defender for Storage by uploading malware

  • Accessing Defender for Storage recommendations and alerts

  • Manage access to storage, including access policies

Implement security for databases

  • Understanding the concepts of relational databases before using Azure SQL

  • Implement a platform-level Azure SQL configuration

  • Setting up SQL Server Management Studio (SSMS) for connecting to SQL

  • How to connect to a SQL database with SSMS

  • Configure Defender for Databases protection across Azure database services

  • Configure database vulnerability assessment support for Defender for Databases

Implement security for Azure network services

  • Introduction to VNets, peering, Network Security Groups (NSGs), and VPN gateways

  • Setting up a virtual machine for use in hands on

  • Implement and configure virtual networks

  • Implement and configure virtual network peering

  • Configure user-defined routes (UDRs)

  • Implement & manage network security groups NSG & application security groups ASG

  • Understanding the concepts of Azure Virtual WAN

  • Azure Virtual WAN SKUs

  • Architectures used for configuring the security for an Azure Virtual WAN

  • Azure Private Link services to secure access to network resources

  • Implement and configure Azure Firewall

  • Direct traffic through the Azure Firewall

Implement security for AI

  • Understanding how Copilot AI accesses data

  • Identify which Copilot features can be enabled or disabled

  • Identify use cases for AI Researcher, Analyst, and custom agents

  • Manage access to Copilot with licenses

  • Manage user access to agents

  • Enable and configure a Microsoft Copilot Studio agent

  • Configure approval for accessing an agent

Implement security for servers and virtual machines (VMs)

  • Implement and configure disk encryption

  • Plan and implement Azure Bastion to support just-in-time (JIT) VM access

  • Extend security controls to hybrid and multicloud servers by using Azure Arc

  • Understanding the concepts of Defender for Servers

  • Setting up a virtual server for Onboarding to Defender for Servers/Cloud

  • Verifying a virtual server is Onboarded into Defender for Servers/Cloud

  • Configure Defender for Servers settings, including vulnerability scanning & EDR

Implement security for application platform services

  • Detect risks in container workloads by using Defender for Containers

  • Enable Defender for Containers through Defender for Cloud

  • Implement and configure security controls for Azure Kubernetes Service (AKS)

  • Implement and configure an Azure Container Registry

  • Implement and configure security controls for Azure Container Registry

  • Implement and configure an Azure Container Instance

  • Implement and configure an Azure Container App

  • Plan support for Azure App Service

  • Implement and configure an Azure App Service Plan

  • Implement and configure and Azure App Service

  • Implement and configure security controls for Azure App Service

  • Understanding the concepts of Azure Web Application Firewall

  • Implement and configure Azure Web Application Firewall

Manage security posture by using Defender for Cloud

  • Understanding the concepts of Cloud Security Posture Management (CSPM)

  • Identity security features with Defender CSPM

  • Enable and configure Defender for Cloud workload protection plans

  • Concepts of Common Vulnerabilities and Exposures (CVEs)

  • Configure Microsoft Defender Vulnerability Management settings for Azure VMs

  • Setup a group to represent a security team for Defender Vulnerability Management

  • Identify security risks by using Defender CSPM and assign recommendations

  • Discover unprotected assets & vulnerabilities External Attack Surface Management

Implement activity and event collection in Microsoft Sentinel

  • Understanding the concepts of using Microsoft Sentinel

  • Create and connect workspaces in Microsoft Sentinel

  • Assign roles in Microsoft Sentinel

  • Implement and use content hub solutions

  • What are data connectors in Microsoft Sentinel?

  • Configure and use Microsoft data connectors for Azure resources

  • Setting up Azure Monitor Agent (AMA) and data collection rules

  • Implement and configure syslog and Common Event Format (CEF) event collections

  • Implement and configure collection Windows events by using data collection rules

  • Create custom log tables in the workspace to store ingested data

  • Ingesting data from Azure and Entra ID

  • Understanding automation rules and Microsoft Sentinel playbooks

  • Implement automation rules and playbooks in Microsoft Sentinel

  • Implement data retention in Microsoft Sentinel data stores

Implement Microsoft Security Copilot

  • Understanding the purpose of Microsoft Security Copilot

  • Generating sample data for querying with Security Copilot

  • What are Security compute units (SCUs)

  • Warning before allocating Security compute units (SCUs) for Security Copilot

  • Configure a workspace for Security Copilot and allocate SCUs

  • Manage permissions and roles in Security Copilot

  • What are Prompts, Promptbooks, Roles and Plugins?

  • Enable and configure plugins

  • Investigating a VM incident using a prompt in Security Copilot

  • Investigating an Azure Storage incident using a prompt in Security Copilot

Finishing Up

  • Where do I go from here?

Who this course is for:

  • IT people interested in learning and passing the Microsoft SC-500 / AZ-500 exams!
  • IT people interested in learning a tremendous amount about security in Microsoft Azure Services!