- Module 1: Create, configure, and manage identities
- Create, configure, and manage users
- Create, configure, and manage groups
- Manage licenses
- Module 2: Explore identity synchronization
- Describe the Microsoft 365 authentication and provisioning options
- Explain directory synchronization
- Explain how Azure AD Connect enables coexistence between your on-premises Active Directory environment and Microsoft 365
- Module 3: Implement and manage hybrid identity
- Plan, design, and implement Azure Active Directory Connect (AADC)
- Manage Azure Active Directory Connect (AADC)
- Manage password hash synchronization (PHS)
- Manage pass-through authentication (PTA)
- Manage seamless single sign-on (Seamless SSO)
- Manage federation excluding manual ADFS deployments
- Troubleshoot synchronization errors
- Implement and manage Azure Active Directory Connect Health
- Module 4: Implement and manage external identities
- Manage external collaboration settings in Azure Active Directory
- Invite external users (individually or in bulk)
- Manage external user accounts in Azure Active Directory
- Configure identity providers (social and SAML/WS-fed)
- Module 5: Explore password management in Microsoft 365
- Manage user passwords
- Describe pass-through authentication
- Enable multifactor authentication
- Describe self-service password management
- Implement Azure AD Smart Lockout
- Create and perform an access review
- Module 6: Manage user authentication
- Administer authentication methods (FIDO2 / Passwordless)
- Implement an authentication solution based on Windows Hello for Business
- Configure and deploy self-service password reset
- Deploy and manage password protection
- Implement and manage tenant restrictions
- Module 7: Plan, implement, and administer Conditional Access
- Plan and implement security defaults.
- Plan Conditional Access policies.
- Implement Conditional Access policy controls and assignments (targeting, applications, and conditions).
- Test and troubleshoot Conditional Access policies.
- Implement application controls.
- Implement session management.
- Configure smart lockout thresholds.
- Module 8: Plan and implement privileged access
- Define a privileged access strategy for administrative users (resources, roles, approvals, and thresholds)
- Configure Privileged Identity Management for Azure AD roles
- Configure Privileged Identity Management for Azure resources
- Assign roles
- Manage PIM requests
- Analyze PIM audit history and reports
- Create and manage emergency access accounts
- Module 9: Plan and implement entitlement management
- Define catalogs.
- Define access packages.
- Plan, implement and manage entitlements.
- Implement and manage terms of use.
- Manage the lifecycle of external users in Azure AD Identity Governance settings.
- Module 10: Manage Azure AD Identity Protection
- Implement and manage a user risk policy
- Implement and manage sign-in risk policies
- Implement and manage MFA registration policy
- Monitor, investigate, and remediate elevated risky users
At the end of this module, you will be able to:
By the end of this module, you'll be able to:
By the end of this module you will be able to:
By the end of this module, you will be able to:
By the end of this module, you will be able to:
By the end of this module, you will be able to:
By the end of this module, you will be able to:
By the end of this module, you will be able to:
By the end of this module, you will be able to:
By the end of this module you will be able to:
