Udemy
    •  
    •  
    •  
    •  
    •  
    •  
    •  
    •  
Turn what you know into an opportunity and reach millions around the world.
Learn More
Your cart is empty.
Keep shopping
Identity & Access Management - Entra ID
Bestseller
Role Play
Rating: 4.5 out of 5(2,841 ratings)
20,641 students

Identity & Access Management - Entra ID

Learn about Identity, Directory , SAML , OAUTH , OpenID Connect , Identity Security and Azure Active Directory
Last updated 4/2026
English

What you'll learn

  • Learn everything about Azure Active Directory
  • Understand Azure AD Federation
  • Understand Hybrid Azure AD
  • Monitoring Azure AD
  • Self Service Password Reset in Azure AD
  • OAuth Vs OpenID vs SAML
  • Onboarding SAAS based enterprise Applications
  • Azure B2C and Azure B2B
  • Azure AD Domain Join
  • Azure Multi Factor Authentication

Course content

1 section44 lectures3h 41m total length
  • Cyber Security 2024 Forecast1:46

    Explore the 2024 cyber security forecast and its implications for identity and access management with Entra ID, focusing on trends, threats, and mitigations.

  • Introduction3:42

    discover how on-prem identities sync to Azure Active Directory with Azure AD Connect, enabling SaaS app access to Office 365, Workday, and Concord, with provisioning, conditional access, and multifactor authentication.

  • Introduction Document1:48
  • What is Identity and access Managment - High level4:30

    Discover how identity and access management shifts from on-prem to cloud, covering federation, directory services, identity repositories, delegation, provisioning, and multi-factor authentication.

  • AAD Features and Benefits3:16

    Azure Active Directory provides cloud-based identity provisioning and single sign-on across devices and on-prem apps via the application proxy, with self-service features that reduce identity and authentication costs.

  • Azure AD Vs On Premise Active Directory4:35

    Compare on premise active directory services with Azure Active Directory, highlighting ad ds, ad fs, certificate services, rights management, kerberos and ldap, and cloud authentication via saml, openid, and oauth.

  • Understanding Azure Active Directory - Lab Activity13:10

    Navigate Azure Active Directory to create users in a custom domain, verify DNS records, and review the login branding. Learn about sign-in flow, password prompts, and future groups and MFA.

  • Managing Azure AD with Powershell - Lab Activity12:53

    Learn to manage Azure Active Directory with PowerShell, install the Azure AD module, connect as a global administrator, list and filter users, and create new users using a password profile.

  • All About Azure AD Groups - Lab Activity8:00

    Explore Azure AD groups, including security groups and Office 365 groups, and learn direct, group, and rule based assignment, owner management, naming policies, expiration, welcome notifications, and restoration options.

  • Managing Azure AD Groups with Powershell - Lab Activity3:53

    Learn to create and manage Azure AD groups with PowerShell, connect to Azure, add members, verify group membership, and explore naming conventions and expiration policies.

  • What is Multi Factor Authentication3:04

    Understand how multi-factor authentication requires at least two factors: something you know, something you are, or something you have, and use authenticator apps like Microsoft Authenticator for time-based codes.

  • Azure Multi Factor Authentication - Lab Activity4:31

    Set up Azure multi-factor authentication for a user, enabling MFA in the admin portal, and verify login with a text code on Alex's account, enforcing second-factor security.

  • Authentication methods2:48

    Explore authentication methods for Entra ID, including call-to-phone, SMS verification, authenticator app push, and time-based codes, plus admin options to re-register MFA and assist users.

  • Types of Azure AD Users2:25

    Identify three Azure AD user types: cloud identities created in Azure, directory sync identities from on-premises, and guests invited from external domains.

  • Self Service Options in Azure AD6:07

    Discover Azure AD self-service options: manage groups and Office 365 groups via the access panel, enable self-service application access with per-app controls, and empower password resets with MFA.

  • Azure AD Editions1:43

    Identify Azure Active Directory editions—free, premium P1, and premium P2—and compare features such as self-service password reset, password writeback, MFA, identity protection, and privileged identity management, plus sync limits.

  • Azure AD Domain Join4:10

    Join and manage devices with Azure AD domain join to enable single sign on and seamless access to cloud and on premise resources, with Intune MDM for security and compliance.

  • Azure AD Connect5:55

    Synchronize on-prem identities to Azure Active Directory with AD Connect to enable access to SaaS apps, with one-way sync, 30-minute interval, and optional password writeback; monitor health in Azure portal.

  • Handling Access Issues for a Remote Employee Using Azure AD
  • Azure AD connect Health3:27

    Monitor hybrid identity synchronization with Azure AD Connect Health, tracking sync status, password hash synchronization, and errors between on-premise AD and Azure AD.

  • Azure AD B2B4:35

    Enable external collaboration with Azure AD B2B by inviting guest users and granting access to applications and resources via federated identity. Secure this access with multi-factor authentication and conditional access.

  • Azure AD B2C7:43

    Explore Azure AD B2C as a developer-focused identity source, create and link a B2C tenant, configure identity providers, and manage user flows for external app sign-in.

  • Monitoring azure AD5:48

    Monitor Azure Active Directory using security and activity reports, risky users, risky sign-ins, and log analytics to optimize authentication and conditional access.

  • Azure Enterprise Applications9:44

    Explore how Azure Active Directory manages enterprise applications, registers resources, creates groups, and grants users access to Google Suite with single sign-on basics.

  • Authentication and Authorization - Introduction0:37
  • Authentication Authorization and Protocols6:44

    Learn how authentication proves identity and authorization grants access to resources, and explore protocols like OAuth 2.0, OpenID Connect, SAML 2.0, and federation for single sign-on with Azure AD.

  • Azure AD Authentication Options8:50

    Explore cloud-only and federation authentication with Azure AD, including password hash sync, passthrough authentication, and ADFS, and how Azure AD Connect enables hybrid identities with SSO and security features.

  • Identity Delegation3:33

    Explore identity delegation, where a delegate app impersonates a user through OAuth 2 and OpenID Connect in Azure Active Directory to access a web API without exposing credentials.

  • API Management and API Keys5:38

    Learn Azure API management to configure and secure APIs via subscriptions and API keys, apply policies for quotas and location-based access, and understand OAuth and OpenID for authentication.

  • Single Sign On5:33

    Configure single sign-on to provide a single identity across cloud and on-prem apps, using OpenID Connect and OAuth, with SAML and other options as needed.

  • Configuring SSO - LAB8:55

    Configure single sign-on for G Suite and other applications, using SAML or OAuth/OpenID Connect, and exchange sign-on data between Azure AD and Google Admin to test provisioning.

  • Managed Identities6:09

    Leverage managed identities in Azure Active Directory to authenticate to services like Key Vault without credentials in your code, using system or user assigned identities on virtual machines.

  • Azure key vault4:29

    Use Azure Key Vault to securely store and retrieve secrets, keys, and certificates. Configure access policies and permissions for principals to enable secret, key, and certificate management, with FIPS-compliant cryptography.

  • OpenID Oauth2 Lab5:41

    Register an application in Azure and enable authentication with OpenID Connect and OAuth 2.0. Configure the reply URLs and logout URLs, then run an ASP.NET Core sample to sign in.

  • Identity Security and risk Management11:48

    Identify, assess, and control identity risks with a framework that covers compromised credentials, compromised devices, and overprovisioned access, and apply least privilege, MFA, auditing, and defense in depth.

  • Azure AD identity protecton8:51

    Identify and respond to risks with Azure Active Directory identity protection, focusing on risky sign-ins, leaked credentials, infected devices, and integration with conditional access and MFA.

  • Conditional access3:39

    Explore how conditional access policies guard identities by evaluating risk, location, device type, and user groups to grant or deny access, enforce multifactor authentication, and manage sessions.

  • Azure AD PIM3:36

    Explore Azure AD privileged identity management to implement just-in-time access, time-bound privileges, and approval workflows, reinforced by MFA, audit logs, and access reviews for elevated Azure roles.

  • Azure AD Password Protection2:09

    Explore Azure AD password protection, featuring banned passwords and smart lockouts, and learn licensing needs for cloud native, cloud only, and hybrid identities.

  • Azure AD Licensing2:03

    Explore Azure Active Directory licensing, distinguishing free features from paid options like P1 and P2, and map conditional access, risk-based access, PIM, and identity protection to licenses.

  • Monitoring for Identity and Security - Intro0:16

    Explore monitoring identity and security by leveraging Azure Monitor to monitor Active Directory. Configure and schedule notifications and alerts, and maintain regular monitoring.

  • Monitoring azure AD5:48

    Monitor Azure Active Directory with security and activity reports, risky users and sign-ins, and Azure Monitor, then leverage licensing and MFA details for deeper insights.

  • Monitoring in PIM and Azure and identity protection4:00

    Explore how Azure identity protection and privileged identity management monitor risks and trigger alerts for users at risk, with weekly digests and audit histories.

  • Azure AD connect Health3:27

    Learn how Azure AD Connect Health monitors synchronization between on-premises Active Directory and Azure AD, detects errors and duplicates, and guides notifications, agent auto updates, and Azure AD Premium licensing.

  • Good Resource to read
  • Identity & Access Management - Azure Active Directory - Quiz
  • Access Disruption After Azure AD Group Restructuring

Requirements

  • Students must have basic knowledge of Azure and Active Directory
  • A Free or Paid Azure Subscription for performing hands-On (Optional)

Description

In this course, students will gain an understanding of Azure  directory service options and the benefits that it offers.

  • Entra ID

  • Entra ID Domain Services a.k.a. Managed Domain

  • How to Synchronise On-Premises Active Directory objects to Entra ID

  • How to Synchronise On-Premises Active Directory objects to Azure Managed Domain

  • How to configure and Manage Azure Managed Domain

  • How to Join VMs to an Azure Managed Domain

  • Entra ID B2C and B2B Collaboration

  • Adding Facebook as an identity Provider in  Entra ID B2C

  • How to use a custom domain

  • How to manage users and groups

  • How to use multi-factor authentication.

  • How to work with Enterprise applications

  • Explore and deploy AD to the cloud.

In addition to foundational identity and access management topics, we will also take a deep dive into Self-Service Password Reset (SSPR) — a powerful feature that empowers users to securely reset their own passwords without the need for IT intervention. You'll learn how to configure SSPR, integrate it with Azure AD, and implement security controls to ensure a seamless and secure user experience.

We’ll also explore the capabilities of Azure Active Directory Business-to-Business (Azure B2B) and Business-to-Consumer (Azure B2C) solutions. These services enable secure collaboration with external partners and customers while maintaining control over access to your organization's resources. You'll understand how to configure guest user access, customize branding for B2C portals, and apply conditional access policies to meet security and compliance requirements.

To get a better sense of the course flow, please refer to the detailed agenda and preview videos available on the course page. These will give you a clear idea of what to expect and how each module is structured.

If you're currently preparing for certifications like AZ-500 (Microsoft Azure Security Technologies), AZ-104 (Microsoft Azure Administrator), SC-900 (Microsoft Security, Compliance, and Identity Fundamentals), SC-200 (Microsoft Security Operations Analyst), or SC-300 (Identity and Access Administrator), this course is specifically designed to strengthen your understanding of identity concepts and help you approach exam questions with confidence.

Even if certification isn’t your immediate goal, this course will equip you with real-world skills and knowledge to address identity-related challenges that IT professionals and security teams encounter in enterprise environments.

I truly hope you find the course insightful, practical, and empowering.
Thank you for enrolling — I’m excited to have you here. Let’s get started on this learning journey together!

Who this course is for:

  • Windows Administrators working with on-premise Widows Active Directory
  • Those who wants to move from on-premise AD to Azure AD
  • Students who wish to learn about Azure as it relates to Active Directory