
Explore the 2024 cyber security forecast and its implications for identity and access management with Entra ID, focusing on trends, threats, and mitigations.
discover how on-prem identities sync to Azure Active Directory with Azure AD Connect, enabling SaaS app access to Office 365, Workday, and Concord, with provisioning, conditional access, and multifactor authentication.
Discover how identity and access management shifts from on-prem to cloud, covering federation, directory services, identity repositories, delegation, provisioning, and multi-factor authentication.
Azure Active Directory provides cloud-based identity provisioning and single sign-on across devices and on-prem apps via the application proxy, with self-service features that reduce identity and authentication costs.
Compare on premise active directory services with Azure Active Directory, highlighting ad ds, ad fs, certificate services, rights management, kerberos and ldap, and cloud authentication via saml, openid, and oauth.
Navigate Azure Active Directory to create users in a custom domain, verify DNS records, and review the login branding. Learn about sign-in flow, password prompts, and future groups and MFA.
Learn to manage Azure Active Directory with PowerShell, install the Azure AD module, connect as a global administrator, list and filter users, and create new users using a password profile.
Explore Azure AD groups, including security groups and Office 365 groups, and learn direct, group, and rule based assignment, owner management, naming policies, expiration, welcome notifications, and restoration options.
Learn to create and manage Azure AD groups with PowerShell, connect to Azure, add members, verify group membership, and explore naming conventions and expiration policies.
Understand how multi-factor authentication requires at least two factors: something you know, something you are, or something you have, and use authenticator apps like Microsoft Authenticator for time-based codes.
Set up Azure multi-factor authentication for a user, enabling MFA in the admin portal, and verify login with a text code on Alex's account, enforcing second-factor security.
Explore authentication methods for Entra ID, including call-to-phone, SMS verification, authenticator app push, and time-based codes, plus admin options to re-register MFA and assist users.
Identify three Azure AD user types: cloud identities created in Azure, directory sync identities from on-premises, and guests invited from external domains.
Discover Azure AD self-service options: manage groups and Office 365 groups via the access panel, enable self-service application access with per-app controls, and empower password resets with MFA.
Identify Azure Active Directory editions—free, premium P1, and premium P2—and compare features such as self-service password reset, password writeback, MFA, identity protection, and privileged identity management, plus sync limits.
Join and manage devices with Azure AD domain join to enable single sign on and seamless access to cloud and on premise resources, with Intune MDM for security and compliance.
Synchronize on-prem identities to Azure Active Directory with AD Connect to enable access to SaaS apps, with one-way sync, 30-minute interval, and optional password writeback; monitor health in Azure portal.
Monitor hybrid identity synchronization with Azure AD Connect Health, tracking sync status, password hash synchronization, and errors between on-premise AD and Azure AD.
Enable external collaboration with Azure AD B2B by inviting guest users and granting access to applications and resources via federated identity. Secure this access with multi-factor authentication and conditional access.
Explore Azure AD B2C as a developer-focused identity source, create and link a B2C tenant, configure identity providers, and manage user flows for external app sign-in.
Monitor Azure Active Directory using security and activity reports, risky users, risky sign-ins, and log analytics to optimize authentication and conditional access.
Explore how Azure Active Directory manages enterprise applications, registers resources, creates groups, and grants users access to Google Suite with single sign-on basics.
Learn how authentication proves identity and authorization grants access to resources, and explore protocols like OAuth 2.0, OpenID Connect, SAML 2.0, and federation for single sign-on with Azure AD.
Explore cloud-only and federation authentication with Azure AD, including password hash sync, passthrough authentication, and ADFS, and how Azure AD Connect enables hybrid identities with SSO and security features.
Explore identity delegation, where a delegate app impersonates a user through OAuth 2 and OpenID Connect in Azure Active Directory to access a web API without exposing credentials.
Learn Azure API management to configure and secure APIs via subscriptions and API keys, apply policies for quotas and location-based access, and understand OAuth and OpenID for authentication.
Configure single sign-on to provide a single identity across cloud and on-prem apps, using OpenID Connect and OAuth, with SAML and other options as needed.
Configure single sign-on for G Suite and other applications, using SAML or OAuth/OpenID Connect, and exchange sign-on data between Azure AD and Google Admin to test provisioning.
Leverage managed identities in Azure Active Directory to authenticate to services like Key Vault without credentials in your code, using system or user assigned identities on virtual machines.
Use Azure Key Vault to securely store and retrieve secrets, keys, and certificates. Configure access policies and permissions for principals to enable secret, key, and certificate management, with FIPS-compliant cryptography.
Register an application in Azure and enable authentication with OpenID Connect and OAuth 2.0. Configure the reply URLs and logout URLs, then run an ASP.NET Core sample to sign in.
Identify, assess, and control identity risks with a framework that covers compromised credentials, compromised devices, and overprovisioned access, and apply least privilege, MFA, auditing, and defense in depth.
Identify and respond to risks with Azure Active Directory identity protection, focusing on risky sign-ins, leaked credentials, infected devices, and integration with conditional access and MFA.
Explore how conditional access policies guard identities by evaluating risk, location, device type, and user groups to grant or deny access, enforce multifactor authentication, and manage sessions.
Explore Azure AD privileged identity management to implement just-in-time access, time-bound privileges, and approval workflows, reinforced by MFA, audit logs, and access reviews for elevated Azure roles.
Explore Azure AD password protection, featuring banned passwords and smart lockouts, and learn licensing needs for cloud native, cloud only, and hybrid identities.
Explore Azure Active Directory licensing, distinguishing free features from paid options like P1 and P2, and map conditional access, risk-based access, PIM, and identity protection to licenses.
Explore monitoring identity and security by leveraging Azure Monitor to monitor Active Directory. Configure and schedule notifications and alerts, and maintain regular monitoring.
Monitor Azure Active Directory with security and activity reports, risky users and sign-ins, and Azure Monitor, then leverage licensing and MFA details for deeper insights.
Explore how Azure identity protection and privileged identity management monitor risks and trigger alerts for users at risk, with weekly digests and audit histories.
Learn how Azure AD Connect Health monitors synchronization between on-premises Active Directory and Azure AD, detects errors and duplicates, and guides notifications, agent auto updates, and Azure AD Premium licensing.
In this course, students will gain an understanding of Azure directory service options and the benefits that it offers.
Entra ID
Entra ID Domain Services a.k.a. Managed Domain
How to Synchronise On-Premises Active Directory objects to Entra ID
How to Synchronise On-Premises Active Directory objects to Azure Managed Domain
How to configure and Manage Azure Managed Domain
How to Join VMs to an Azure Managed Domain
Entra ID B2C and B2B Collaboration
Adding Facebook as an identity Provider in Entra ID B2C
How to use a custom domain
How to manage users and groups
How to use multi-factor authentication.
How to work with Enterprise applications
Explore and deploy AD to the cloud.
In addition to foundational identity and access management topics, we will also take a deep dive into Self-Service Password Reset (SSPR) — a powerful feature that empowers users to securely reset their own passwords without the need for IT intervention. You'll learn how to configure SSPR, integrate it with Azure AD, and implement security controls to ensure a seamless and secure user experience.
We’ll also explore the capabilities of Azure Active Directory Business-to-Business (Azure B2B) and Business-to-Consumer (Azure B2C) solutions. These services enable secure collaboration with external partners and customers while maintaining control over access to your organization's resources. You'll understand how to configure guest user access, customize branding for B2C portals, and apply conditional access policies to meet security and compliance requirements.
To get a better sense of the course flow, please refer to the detailed agenda and preview videos available on the course page. These will give you a clear idea of what to expect and how each module is structured.
If you're currently preparing for certifications like AZ-500 (Microsoft Azure Security Technologies), AZ-104 (Microsoft Azure Administrator), SC-900 (Microsoft Security, Compliance, and Identity Fundamentals), SC-200 (Microsoft Security Operations Analyst), or SC-300 (Identity and Access Administrator), this course is specifically designed to strengthen your understanding of identity concepts and help you approach exam questions with confidence.
Even if certification isn’t your immediate goal, this course will equip you with real-world skills and knowledge to address identity-related challenges that IT professionals and security teams encounter in enterprise environments.
I truly hope you find the course insightful, practical, and empowering.
Thank you for enrolling — I’m excited to have you here. Let’s get started on this learning journey together!