Microsoft Identity and Access Administrator (SC-300)

Provided by

Enquire about this course

Overview

This course provides IT Identity and Access Professional, along with IT Security Professional, with the knowledge and skills needed to implement identity management solutions based on Microsoft Azure AD, and it connected identity technologies. This course includes identity content for Azure AD, enterprise application registration, conditional access, identity governance, and other identity tools.
Audience profile

This course is for the Identity and Access Administrators who are planning to take the associated certification exam, or who are performing identity and access administration tasks in their day-to-day job. This course would also be helpful to an administrator or engineer that wants to specialize in providing identity solutions and access management systems for Azure-based solutions; playing an integral role in protecting an organization.

Job role: Administrator, Identity And Access Administrator, Security Engineer

Preparation for exam: SC-300
Accessing your courseware and registering attendance with Microsoft

To access your Official Curriculum (MOC) course materials you will need a Microsoft.com/Learn account. In Learn you will also be able to register your completion of the event and receive your achievement badge. You will be issued with a unique code during your event.

+

Prerequisites

Important This course may require the use of Multifactor Authentication (MFA). Please read this page and download the Microsoft Authenticator app (or similar app) prior to attending the course

https://www.qa.com/resources/faqs/mfa-requirements/

Please see the below Microsoft article for further information on reasons for the MFA requirement:

https://learn.microsoft.com/en-us/entra/identity/authentication/concept-mandatory-multifactor-authentication

Successful learners will have prior knowledge and understanding of:
  • Security best practices and industry security requirements such as defense in depth, least privileged access, shared responsibility, and zero trust model.
  • Be familiar with identity concepts such as authentication, authorization, and active directory.
  • Have some experience deploying Azure workloads. This course does not cover the basics of Azure administration, instead the course content builds on that knowledge by adding security specific information.
  • Some experience with Windows and Linux operating systems and scripting languages is helpful but not required. Course labs may use PowerShell and the CLI.
  • Prerequisite courses (or equivalent knowledge and hands-on experience):
  • MSC900 Microsoft Security, Compliance, and Identity Fundamentals
+

Delegates will learn how to
  • Implement an identity management solution
  • Implement an authentication and access management solutions
  • Implement access management for apps
  • Plan and implement an identity governancy strategy
+

Outline

Module 1: Implement an identity management solution

Learn to create and manage your initial Azure Active Directory (Azure AD) implementation and configure the users, groups, and external identities you will use to run your solution.

Lessons
  • Implement Initial configuration of Azure AD
  • Create, configure, and manage identities
  • Implement and manage external identities
  • Implement and manage hybrid identity
  • Lab : Manage user roles
  • Lab : Setting tenant-wide properties
  • Lab : Assign licenses to users
  • Lab : Restore or remove deleted users
  • Lab : Add groups in Azure AD
  • Lab : Change group license assignments
  • Lab : Change user license assignments
  • Lab : Configure external collaboration
  • Lab : Add guest users to the directory
  • Lab : Explore dynamic groups
After completing this module, students will be able to:
  • Deploy an initail Azure AD with custom settings
  • Manage both internal and external identities
  • Implement a hybrid identity solution
Module 2: Implement an authentication and access management solution

Implement and administer your access management using Azure AD. Use MFA, conditional access, and identity protection to manager your identity solution.

Lessons
  • Secure Azure AD user with MFA
  • Manage user authentication
  • Plan, implement, and administer conditional access
  • Manage Azure AD identity protection
  • Lab : Enable Azure AD MFA
  • Lab : Configure and deploy self-service password reset (SSPR)
  • Lab : Work with security defaults
  • Lab : Implement conditional access policies, roles, and assignments
  • Lab : Configure authentication session controls
  • Lab : Manage Azure AD smart lockout values
  • Lab : Enable sign-in risk policy
  • Lab : Configure Azure AD MFA authentication registration policy
After completing this module, students will be able to:
  • Configure and manage user authentication including MFA
  • Control access to resources using conditional access
  • Use Azure AD Identity Protection to protect your organization
Module 3: Implement access management for Apps

Explore how applications can and should be added to your identity and access solution with application registration in Azure AD.

Lessons
  • Plan and design the integration of enterprise for SSO
  • Implement and monitor the integration of enterprise apps for SSO
  • Implement app registration
  • Lab : Implement access management for apps
  • Lab : Create a custom role to management app registration
  • Lab : Register an application
  • Lab : Grant tenant-wide admin consent to an application
  • Lab : Add app roles to applications and recieve tokens
After completing this module, students will be able to:
  • Register a new application to your Azure AD
  • Plan and implement SSO for enterprise application
  • Monitor and maintain enterprise applications
Module 4: Plan and implement an identity governancy strategy

Design and implement identity governance for your identity solution using entitlement, access reviews, privileged access, and monitoring your Azure Active Directory (Azure AD).

Lessons
  • Plan and implement entitlement management
  • Plan, implement, and manage access reviews
  • Plan and implement privileged access
  • Monitor and maintain Azure AD
  • Lab : Creat and manage a resource catalog with Azure AD entitlement
  • Lab : Add terms of use acceptance report
  • Lab : Manage the lifecycle of external users with Azure AD identity governance
  • Lab : Create access reviews for groups and apps
  • Lab : Configure PIM for Azure AD roles
  • Lab : Assign Azure AD role in PIM
  • Lab : Assign Azure resource roles in PIM
  • Lab : Connect data from Azure AD to Azure Sentinel
After completing this module, students will be able to:
  • Mange and maintain Azure AD from creation to solution
  • Use access reviews to maintain your Azure AD
  • Grant access to users with entitlement management
Please note that whilst this course is aligned to the equivalent Microsoft Exam it may not contain all information required to pass the exam. As per Microsoft guidance, further self study and hands on experience is recommended in addition to attendance of this course.

+

Enquire

Start date Location / delivery
24 Mar 2025 QA On-Line Virtual Centre, Virtual Book now
01132207150 01132207150

Related article

The Cyber Pulse is QA's new portal to free Cyber content, including on-demand webinars, articles written by leading experts,