Microsoft Identity and Access Administrator Exam Guide
eBook - ePub

Microsoft Identity and Access Administrator Exam Guide

  1. 452 pages
  2. English
  3. ePUB (mobile friendly)
  4. Available on iOS & Android
eBook - ePub

Microsoft Identity and Access Administrator Exam Guide

About this book

This certification guide focuses on identity solutions and strategies that will help you prepare for Microsoft Identity and Access Administrator certification, while enabling you to implement what you've learned in real-world scenariosKey Featuresβ€’ Design, implement, and operate identity and access management systems using Azure ADβ€’ Provide secure authentication and authorization access to enterprise applicationsβ€’ Implement access and authentication for cloud-only and hybrid infrastructuresBook DescriptionCloud technologies have made identity and access the new control plane for securing data. Without proper planning and discipline in deploying, monitoring, and managing identity and access for users, administrators, and guests, you may be compromising your infrastructure and data. This book is a preparation guide that covers all the objectives of the SC-300 exam, while teaching you about the identity and access services that are available from Microsoft and preparing you for real-world challenges.The book starts with an overview of the SC-300 exam and helps you understand identity and access management. As you progress to the implementation of IAM solutions, you'll learn to deploy secure identity and access within Microsoft 365 and Azure Active Directory. The book will take you from legacy on-premises identity solutions to modern and password-less authentication solutions that provide high-level security for identity and access. You'll focus on implementing access and authentication for cloud-only and hybrid infrastructures as well as understand how to protect them using the principles of zero trust. The book also features mock tests toward the end to help you prepare effectively for the exam.By the end of this book, you'll have learned how to plan, deploy, and manage identity and access solutions for Microsoft and hybrid infrastructures.What you will learnβ€’ Understand core exam objectives to pass the SC-300 examβ€’ Implement an identity management solution with MS Azure ADβ€’ Manage identity with multi-factor authentication (MFA), conditional access, and identity protectionβ€’ Design, implement, and monitor the integration of enterprise apps for Single Sign-On (SSO)β€’ Add apps to your identity and access solution with app registrationβ€’ Design and implement identity governance for your identity solutionWho this book is forThis book is for cloud security engineers, Microsoft 365 administrators, Microsoft 365 users, Microsoft 365 identity administrators, and anyone who wants to learn identity and access management and gain SC-300 certification. You should have a basic understanding of the fundamental services within Microsoft 365 and Azure Active Directory before getting started with this Microsoft book.

Frequently asked questions

Yes, you can cancel anytime from the Subscription tab in your account settings on the Perlego website. Your subscription will stay active until the end of your current billing period. Learn how to cancel your subscription.
At the moment all of our mobile-responsive ePub books are available to download via the app. Most of our PDFs are also available to download and we're working on making the final remaining ones downloadable now. Learn more here.
Perlego offers two plans: Essential and Complete
  • Essential is ideal for learners and professionals who enjoy exploring a wide range of subjects. Access the Essential Library with 800,000+ trusted titles and best-sellers across business, personal growth, and the humanities. Includes unlimited reading time and Standard Read Aloud voice.
  • Complete: Perfect for advanced learners and researchers needing full, unrestricted access. Unlock 1.4M+ books across hundreds of subjects, including academic and specialized titles. The Complete Plan also includes advanced features like Premium Read Aloud and Research Assistant.
Both plans are available with monthly, semester, or annual billing cycles.
We are an online textbook subscription service, where you can get access to an entire online library for less than the price of a single book per month. With over 1 million books across 1000+ topics, we’ve got you covered! Learn more here.
Look out for the read-aloud symbol on your next book to see if you can listen to it. The read-aloud tool reads text aloud for you, highlighting the text as it is being read. You can pause it, speed it up and slow it down. Learn more here.
Yes! You can use the Perlego app on both iOS or Android devices to read anytime, anywhere β€” even offline. Perfect for commutes or when you’re on the go.
Please note we cannot support devices running on iOS 13 and Android 7 or earlier. Learn more about using the app.
Yes, you can access Microsoft Identity and Access Administrator Exam Guide by Dwayne Natwick in PDF and/or ePUB format, as well as other popular books in Computer Science & Certification Guides in Computer Science. We have over one million books available in our catalogue for you to explore.

Section 1 – Exam Overview and the Evolution of Identity and Access Management

This section will focus on the objectives and an overview of what to expect in the exam and an overview of the evolution of identity and access management.
This section of the book comprises the following chapters:
  • Chapter 1, Preparing for Your Microsoft Exam
  • Chapter 2, Defining Identity and Access Management

Chapter 1: Preparing for Your Microsoft Exam

You have decided to take the steps to get Microsoft certified. The SC-300 exam focuses on identity and access administration. This chapter will provide guidance on getting prepared for a Microsoft exam, along with resources that can assist in your learning plan. This will include helpful links, as well as steps on how to gain access to a trial Microsoft 365 subscription for hands-on practice. Once you have completed this chapter, you will have the necessary tools to know what is needed to prepare for the exam, follow along in this book, and become an Identity and Access Administrator.
In this chapter, we're going to cover the following main topics:
  • Preparing for a Microsoft exam
  • Resources available and accessing Microsoft Learn
  • Creating a Microsoft 365 trial subscription
  • Exam objectives
  • Who should take the SC-300 exam?

Technical requirements

In order to follow along and complete the exercises within this book, you will need to have access to Azure Active Directory (Azure AD). This can be accomplished through a trial subscription of Microsoft 365. Advanced identity and access services will also require an Azure AD Premium license. The steps to set up licenses will be covered later in this chapter.

Preparing for a Microsoft exam

There are multiple aspects to preparing for a Microsoft exam. These include the resources available to prepare for the exam, the ability to access a subscription for hands-on learning, and the manner in which you are going to take your exam. If this is your first Microsoft exam, understanding the format that most of these exams will follow is important.
Let's take a closer look at each of these areas.

Resources available to prepare for the exam

There are many resources available to help you prepare for most Microsoft exams. This can be in the form of pre-recorded content from learning companies, live courses from Microsoft Learning Partners, and content posted by the community and Microsoft blog articles. Each of these resources is helpful, but the pre-recorded content and live courses will come at a price and may not be within your budget. Community and Microsoft blog articles generally provide a level of direction as to where you need to go for each topic but do not get into specifics.
One of the best resources is Microsoft itself. Microsoft provides detailed documentation on every one of its services with Microsoft Docs, which allows you to search freely and find the information that you need. This information is publicly available and free. Microsoft Docs is tied very closely to Microsoft Learn content, which will be discussed later in this chapter.
To access and search Microsoft Docs, simply go to https://docs.microsoft.com.

Access to a subscription

It is highly recommended when preparing for a Microsoft exam that you have had some level of hands-on experience with the services within the objectives. For associate- and expert-level exams (the SC-300 being an associate-level exam), this really should be a requirement. Microsoft courses have a GitHub repository for labs that are recommended and available to the public.
The lab guides can be found at this link: http://www.microsoft.com/learning.
Microsoft offers trial subscriptions for both Azure and Microsoft 365. The process to create these trials will be provided later in this chapter.

Where to take the exam

Part of the preparation process of taking an exam includes where you are going to take it. Traditionally, there has been only an option to take these exams at a proctored exam site. Some may prefer this method because it is a controlled environment. Understanding the location and setup of the site can be helpful in lowering your level of stress on the day of the exam. Making a trip to the site before your exam date can avoid any potential surprises on the day of the exam.
When the role-based exams became available, Microsoft provided an additional option of taking the exam remotely from your home or office, using a remote proctor. This may be a preferred option if you are more comfortable using your own equipment and working in a familiar environment. If you do not have the choice when scheduling your exam, then this option has not been made available in your region. If it is available, you will see an option similar to the Online from my home or office option shown in the following screenshot:
Figure 1.1 – Selecting a location when scheduling an exam
Figure 1.1 – Selecting a location when scheduling an exam
There are some important steps to prepare for the remote proctor. From an equipment standpoint, you must have a device with a webcam, microphone, and speakers. You can only use one monitor, so be sure to have a high resolution to avoid any issues with viewing the exam. It is highly recommended to test your equipment before the day of the exam to avoid any issues with anti-malware software. The location in which you are going to take the exam must be cleared of any papers, books, pens, and pencils. It must also be a quiet environment where no one will enter while you are taking the exam. You will be required to photograph the location and surrounding area when checking in. A valid form of identification is required as well. During the exam, you must remain within view of the camera. This may feel intrusive and may not be comfortable for some, but others may prefer being within their own environment to take an exam.

Exam format

Microsoft exams are typically made up of four to six question types. These are case studies, multiple-choice, drag and drop, modified true...

Table of contents

  1. Microsoft Identity and Access Administrator Exam Guide
  2. Foreword
  3. Contributors
  4. About the author
  5. About the reviewers
  6. Preface
  7. Section 1 – Exam Overview and the Evolution of Identity and Access Management
  8. Chapter 1: Preparing for Your Microsoft Exam
  9. Chapter 2: Defining Identity and Access Management
  10. Section 2 - Implementing an Identity Management Solution
  11. Chapter 3: Implementing and Configuring Azure Active Directory
  12. Chapter 4: Creating, Configuring, and Managing Identities
  13. Chapter 5: Implementing and Managing External Identities and Guests
  14. Chapter 6: Implementing and Managing Hybrid Identities
  15. Section 3 – Implementing an Authentication and Access Management Solution
  16. Chapter 7: Planning and Implementing Azure Multi-Factor Authentication (MFA) and Self-Service Password Reset (SSPR)
  17. Chapter 8: Planning and Managing Password-Less Authentication Methods
  18. Chapter 9: Planning, Implementing, and Administering Conditional Access and Azure Identity Protection
  19. Section 4 – Implementing Access Management for Applications
  20. Chapter 10: Planning and Implementing Enterprise Apps for Single Sign-On (SSO)
  21. Chapter 11: Monitoring Enterprise Apps with Microsoft Defender for Cloud Apps
  22. Section 5 – Planning and Implementing an Identity Governance Strategy
  23. Chapter 12: Planning and Implementing Entitlement Management
  24. Chapter 13: Planning and Implementing Privileged Access and Access Reviews
  25. Section 6 – Monitoring and Maintaining Azure Active Directory
  26. Chapter 14: Analyzing and Investigating Sign-in Logs and Elevated Risk Users
  27. Chapter 15: Enabling and Integrating Azure AD Logs with SIEM Solutions
  28. Chapter 16: Mock Test
  29. Other Books You May Enjoy