Microsoft SC-300 : Microsoft Identity and Access Administrator

Overview

The Microsoft Identity and Access Administrator use Azure Active Directory to plan, execute, and maintain an organization’s identity and access management systems (Azure AD).

In this program, you will learn how to plan, introduce and run corporate identity and access management frameworks using Azure Active Directory (Azure AD) and manage activities such as ensuring secure authentication and access to business applications.

The Identity and Access Administrator can be a single person or a wider team member. This position works with many other positions within the organization to drive strategic identity projects to modernize identity solutions, introduce hybrid identity solutions, and implement identity governance.

Target Audience: 

This course is planned for those who want to become acquainted with the skills and expertise needed to work as a Microsoft Identity and Access Administrator using Azure Active Directory and other cloud-based and associated Microsoft services. There is a large audience that might include:

• Cloud Administrator
• Professional IT Security
• Microsoft Security Administrator
• Network Administrators
• Server Administrator

that are looking for identity and access management solutions. This content is intended for people who are familiar with Microsoft Azure and have any experience of Microsoft 365 who want to learn how Microsoft integrates identity and access solutions in the cloud.

Requirements

Students should do the following to get the best out of this course:

• Understanding of Azure, Azure AD, and cloud infrastructure terms in general
• IT awareness or job experience in an IT area
• General knowledge of security principles such as Zero Trust, Defence in Depth, and Least Authorized Access

Course Objectives 

Students who finish the course will be able to:

• Set up and administer Azure AD roles, custom domains, and system registration
• Use management units to set up tenant-wide settings and delegation
• Create, maintain, and modify users, classes, and licensing
• Invite and control external users in your Azure Active Directory, enabling external collaboration

Measured abilities:

Certification tests assess the ability to perform specific professional activities for a work position. Each research area has a percentage showing the area’s relative importance on the examination. The greater the percentage, the more questions in that field you are likely to face.

• Implement an identity management solution – 25-30%
• Implement an authentication and access management solution – 25-30%
• Implement access management for apps – 10-15%
• Plan and implement an identity governance strategy – 25-30%

Exam Domains:

Domain 1:Implement an identity management solution:

This domain explains you how to set up and maintain your first Azure Active Directory (Azure AD) installation, as well as how to setup the users, groups, and external identities you’ll need to run your solution. It also covers the following concepts:

• Implement initial configuration of Azure Active Directory: Learn how to set up an initial Azure Active Directory setup to ensure that all of Azure’s identity solutions are ready to use. This module looks at how to set up an Azure Active Directory structure.
• Create, configure, and manage identities: Access to cloud-based workloads must be managed centrally, with each user and resource having a unique identity. You should ensure that employees and vendors have only the right amount of access to complete their tasks.
• Implement and manage external identities: External users being able to access business Azure tools is a huge advantage, but it must be achieved safely. Learn how to make secure external collaboration possible.
• Implement and manage hybrid identity: It can be difficult to create a hybrid identity solution that uses the on-premises active directory. Learn how to set up a secure hybrid model.

Domain 2: Implement an authentication and access management solution

This domain familiarizes you with how to use Azure AD to implement and administer the access control solution, which includes MFA, conditional access, and identity security. This study guide is based on the SC-300 test. This domain also covers:

• Secure Azure Active Directory users with Multi-Factor Authentication: In this part you will learn how to use multi-factor authentication with Azure AD and how to harden your user accounts.
• Manage user authentication: In Azure AD, there are a number of authentication options. Learn how to implement and manage effective user authentications depending on business requirements.
• Plan, implement and administer conditional access: This will explain to you about how conditional access allows for fine-grained control over which users can perform particular tasks, which services they can access, and how to keep data and applications secure.
• Manage Azure AD Identity Protection: This subdomain suggests to you how a safe cloud solution can protect a user’s privacy by tracking their use and sign-in patterns. Learn how to build and implement Azure Active Directory Identity Protection.

Domain 3: Implement Access Management for Apps

This domain examines how Azure AD device registration can and should be used to connect applications to the identification and access solution. The subdomain of this domain are:

• Plan and design the integration of enterprise apps for SSO: In this portion you will learn how enterprise app implementation allows you to control the users that have access to the applications, log in with a single sign-on, and gives integrated usage reports.
• Implement and monitor the integration of enterprise apps for SSO: Protection can be ensured by deploying and monitoring enterprise applications on Azure solutions. Learn how to make on-premises and cloud-based applications available to users.
• Implement app registrations: For a secure Azure solution, lines of business built in-house must be registered in Azure AD and assigned to users.  Explore how to implement app registration.

Domain 4: Plan and implement an Identity Governance Strategy

In this domain you will learn how to use entitlement, permission reviews, privileged access, and Azure Active Directory monitoring, design and apply identity governance for your identity solution (Azure AD). This study guide is based on the SC-300 test. It also includes:

• Plan and implement entitlement management: When new users or external users visit your site, it’s critical to quickly grant them access to Azure solutions. Study how to grant users access to your website and services.
• Plan, implement and manage access reviews: For a secure solution, proper governance using access reviews is needed once identity has been implemented. Learn how to prepare for and implement access reviews.
• Plan and implement privileged access: To improve the security of your Azure solution, you must ensure that administrative roles are secured and managed. Learn how to protect your data and resources with PIM.
• Monitor and maintain Azure Active Directory: The audit and diagnostic logs for Azure AD offer a detailed view at how users interact with the Azure solution. Learn how to monitor, troubleshoot, and analyse log-in data.

Exam details

AUTHOR
Nikhilesh kotiyal ( )
Infosec Train

“ Nikhilesh Kotiyal has completed his degree in Information Technology. He is a keen learner and works with full dedication. He enjoys working on technical blogs. Currently, Nikhilesh is working as a content writer at Infosec Train. “