Microsoft 365 Identity Management (MS-100T03-A)
This course is currently not scheduled on the open calendar, but can be organized on request.Request Course
This course is designed for persons who are aspiring to the Microsoft 365 Enterprise Admin role and have completed one of the Microsoft 365 work load administrator certification paths.
This course is designed for persons who are aspiring to theMicrosoft 365 Enterprise Admin role and have completed one of the Microsoft 365work load administrator certification paths.
After completing this course, students will be able to:
- Manage user accounts and licenses in Microsoft 365
- Manage admin roles and security groups in Microsoft 365
- Plan and implement password management
- Manage Microsoft 365 authentication and provisioning options
- Plan for directory synchronization
- Plan and implement Azure AD Connect
- Manage synchronized identities
- Plan and implement an ADFS deployment
- Implement applications in Azure AD
- Configure Azure AD Application Proxy
- Design solutions for external access
- Manage their Microsoft 365 tenant health and services
Classroom training with hands-on exercises
The Microsoft 365 Identity Management focuses on how to manage user security groups and licenses for cloud identities, and how to plan and implement identity synchronization, federated identities, applications, and external access. The course begins by examining how to manage user security groups and licenses for cloud identities. You will examine how to create user accounts in Microsoft 365, and how to manage those accounts as well as user licenses. The course then provides instruction on how to manage admin roles, security groups, and passwords in Microsoft 365. You will be introduced to identity management in Azure Active Directory, multi-factor authentication, and self-service password management.
The course then examines how to plan and implement identity synchronization. This begins with an introduction to identity synchronization, which includes an overview of Microsoft 365 authentication and provisioning options. You will then be introduced to directory synchronization and Azure AD Connect. From here you will learn how to effectively plan for and implement Azure AD Connect, including in both multi-forest scenarios and with pass-through authentication. Lastly, the course covers how to manage synchronized identities. This includes managing users and groups with directory synchronization, using Azure AD Connect synchronized security groups, and troubleshooting directory synchronization.
The course then transitions to federated identities. This begins with an introduction of federation identities, which includes an overview of Active Directory Federated Services, or AD FS, as well as an examination of how AD FS differs from Azure AD Connect password synchronization. You’ll then look at single sign on options for Microsoft 365 and authentication flows with AD FS. The course then examines how to plan for and implement an AD FS deployment, which includes installing and configuring both AD FS and Web Application Proxy for AD FS. You’ll also learn how to configure AD FS by using Azure AD Connect, as well as how to troubleshoot AD FS. Finally, you’ll learn how to switch between federated authentication and password synchronization.
Lastly, the course covers how to implement applications and external access in Azure Active Directory. This begins with instruction on how to add and update applications, how to configure multi-tenant applications, and how to remove applications. With your applications in place, you’ll then learn how to configure an Azure AD application proxy. This includes installing and registering a connector and publishing an on-premises app for remote access. The course concludes with a discussion on how to design solutions for external access, including licensing guidelines for an Azure AD business-to-business collaboration. You will learn how to manage external access, how to create a collaboration user, and how to troubleshoot an Azure AD business-to-business collaboration.
Module 1: Manage User Security Groups and Licenses for Cloud Identities
- User Accounts and Licenses in Microsoft 365
- Admin Roles and Security Groups in Microsoft 365
- Password Management in Microsoft 365
Lab : Managing your Microsoft 365 Identity environment
- Exercise 1: Setting up your lab environment
- Exercise 2: Managing your Microsoft 365 identity environment using the Microsoft 365 admin center
- Exercise 3: Managing your Microsoft 365 identity environment using Windows PowerShell
Module 2: Plan and Implement Identity Synchronization
- Introduction to Identity Synchronization
- Planning for Azure AD Connect
- Implementing Azure AD Connect
- Managing Synchronized Identities
Lab : Implementing Identity Synchronization
- Exercise 1: Setting up your organization for identity synchronization
- Exercise 2: Implement Identity Synchronization
Module 3: Planning and Implementing Federated Identities
- Introduction to Federated Identities
- Planning an AD FS Deployment
- Implementing AD FS
Module 4: Implementing Applications and External Access
- Implementing Applications in Azure AD
- Configuring Azure AD Application Proxy
- Designing Solutions for External Access