Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

Microsoft

SC-300: Implement an Authentication and Access Management solution

Microsoft via Microsoft Learn

Overview

  • Module 1: Learn how to use multi-factor authentication with Azure AD to harden your user accounts.
  • In this module, you will:

    • Learn about Azure AD Multi-Factor Authentication (Azure AD MFA)
    • Create a plan to deploy Azure AD MFA
    • Turn on Azure AD MFA for users and specific apps
  • Module 2: Manage user authentication
  • By the end of this module, you will be able to:

    • Administer authentication methods (FIDO2 / Passwordless)
    • Implement an authentication solution based on Windows Hello for Business
    • Configure and deploy self-service password reset
    • Deploy and manage password protection
    • Implement and manage tenant restrictions
  • Module 3: Plan, implement, and administer Conditional Access
  • By the end of this module, you will be able to:

    • Plan and implement security defaults.
    • Plan Conditional Access policies.
    • Implement Conditional Access policy controls and assignments (targeting, applications, and conditions).
    • Test and troubleshoot Conditional Access policies.
    • Implement application controls.
    • Implement session management.
    • Configure smart lockout thresholds.
  • Module 4: Manage Azure AD Identity Protection
  • By the end of this module you will be able to:

    • Implement and manage a user risk policy
    • Implement and manage sign-in risk policies
    • Implement and manage MFA registration policy
    • Monitor, investigate, and remediate elevated risky users

Syllabus

  • Module 1: Secure Azure Active Directory users with Multi-Factor Authentication
    • Introduction
    • What is Azure AD Multi-Factor Authentication?
    • Plan your multi-factor authentication deployment
    • Exercise - Enable Azure AD Multi-Factor Authentication
    • Configure multi-factor authentication methods
    • Summary
  • Module 2: Manage user authentication
    • Introduction
    • Administer FIDO2 and passwordless authentication methods
    • Implement an authentication solution based on Windows Hello for Business
    • Exercise configure and deploy self-service password reset
    • Deploy and manage password protection
    • Implement and manage tenant restrictions
    • Knowledge check
    • Summary and resources
  • Module 3: Plan, implement, and administer Conditional Access
    • Introduction
    • Plan security defaults
    • Exercise - Work with security defaults
    • Plan Conditional Access policies
    • Implement Conditional Access policy controls and assignments
    • Exercise - Implement Conditional Access policies roles and assignments
    • Test and troubleshoot Conditional Access policies
    • Implement application controls
    • Implement session management
    • Exercise - Configure authentication session controls
    • Configure smart lockout thresholds
    • Exercise - Manage Azure Active Directory smart lockout values
    • Knowledge check
    • Summary and resources
  • Module 4: Manage Azure AD Identity Protection
    • Introduction
    • Review identity protection basics
    • Implement and manage user risk policy
    • Exercise enable sign-in risk policy
    • Exercise configure Azure Active Directory multi-factor authentication registration policy
    • Monitor, investigate, and remediate elevated risky users
    • Knowledge check
    • Summary and resources

Reviews

Start your review of SC-300: Implement an Authentication and Access Management solution

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.