3 arrows

Get 50% Off ForgeRock Training Bundles


Microsoft Identity and Access Administrator

  • Tuition USD $2,336 List Price $2,595
  • Reviews star_rate star_rate star_rate star_rate star_half 3096 Ratings
  • Course Code SC-300T00
  • Duration 4 days
  • Available Formats Classroom, Virtual

The Microsoft Identity and Access Administrator course explores how to design, implement, and operate an organizations identity and access management systems by using Azure AD. Learn to manage tasks such as providing secure authentication and authorization access to enterprise applications. You will also learn to provide seamless experiences and self-service management capabilities for all users. Finally, learn to create adaptive access and governance of your identity and access management solutions ensuring you can troubleshoot, monitor, and report on your environment.

The Identity and Access Administrator may be a single individual or a member of a larger team. Learn how this role collaborates with many other roles in the organization to drive strategic identity projects. The end goal is to provide you knowledge to modernize identity solutions, to implement hybrid identity solutions, and to implement identity governance.

Skills Gained

After completing this course, students will be able to:

  • Implement an identity management solution
  • Implement an authentication and access management solutions
  • Implement access management for apps
  • Plan and implement an identity governancy strategy

Who Can Benefit

This course is for the Identity and Access Administrators who are planning to take the associated certification exam, or who are performing identity and access administration tasks in their day-to-day job. This course would also be helpful to an administrator or engineer that wants to specialize in providing identity solutions and access management systems for Azure-based solutions; playing an integral role in protecting an organization.


Successful learners will have prior knowledge and understanding of:

  • Security best practices and industry security requirements such as defense in depth, least privileged access,shared responsibility, and zero trust model.
  • Be familiar with identity concepts such as authentication, authorization, and active directory.
  • Have some experience deploying Azure workloads. This course does not cover the basics of Azure administration, instead the course content builds on that knowledge by adding security specific information.
  • Someexperience with Windows and Linux operating systems and scripting languages is helpful but not required. Course labsmay use PowerShell and the CLI.
Prerequisite courses (or equivalent knowledge and hands-on experience):
This free online training will give you the experience you need to be successful in this course.
  • SC-900part 1: Describe the concepts of security, compliance, and identity - Learn |Microsoft Docs
  • SC-900part 2: Describe the capabilities of Microsoft Identity and access managementsolutions - Learn | Microsoft Docs
  • SC-900part 3: Describe the capabilities of Microsoft security solutions - Learn |Microsoft Docs
  • SC-900part 4: Describe the capabilities of Microsoft compliance solutions - Learn |Microsoft Docs
  • AZ-104: Manage identities and governance in Azure - Learn | Microsoft Docs

    Course Details


    Module 1: Implement an identity management solution
    Learn to create and manage your initial Azure Active Directory (Azure AD) implementation and configure the users, groups, and external identities you will use to run your solution.

    • Implement Initial configuration of Azure AD
    • Create, configure, and manage identities
    • Implement and manage external identities
    • Implement and manage hybrid identity

    Lab : Manage user roles
    Lab : Setting tenant-wide properties
    Lab : Assign licenses to users
    Lab : Restore or remove deleted users
    Lab : Add groups in Azure AD
    Lab : Change group license assignments
    Lab : Change user license assignments
    Lab : Configure external collaboration
    Lab : Add guest users to the directory
    Lab : Explore dynamic groups
    After completing this module, students will be able to:
    • Deploy an initail Azure AD with custom settings
    • Manage both internal and external identities
    • Implement a hybrid identity solution

    Module 2: Implement an authentication and access management solution
    Implement and administer your access management using Azure AD. Use MFA, conditional access, and identity protection to manager your identity solution.
    • Secure Azure AD user with MFA
    • Manage user authentication
    • Plan, implement, and administer conditional access
    • Manage Azure AD identity protection

    Lab : Enable Azure AD MFA
    Lab : Configure and deploy self-service password reset (SSPR)
    Lab : Work with security defaults
    Lab : Implement conditional access policies, roles, and assignments
    Lab : Configure authentication session controls
    Lab : Manage Azure AD smart lockout values
    Lab : Enable sign-in risk policy
    Lab : Configure Azure AD MFA authentication registration policy
    After completing this module, students will be able to:
    • Configure and manage user authentication including MFA
    • Control access to resources using conditional access
    • Use Azure AD Identity Protection to protect your organization

    Module 3: Implement access management for Apps
    Explore how applications can and should be added to your identity and access solution with application registration in Azure AD.
    • Plan and design the integration of enterprise for SSO
    • Implement and monitor the integration of enterprise apps for SSO
    • Implement app registration

    Lab : Implement access management for apps
    Lab : Create a custom role to management app registration
    Lab : Register an application
    Lab : Grant tenant-wide admin consent to an application
    Lab : Add app roles to applications and recieve tokens
    After completing this module, students will be able to:
    • Register a new application to your Azure AD
    • Plan and implement SSO for enterprise application
    • Monitor and maintain enterprise applications

    Module 4: Plan and implement an identity governancy strategy
    Design and implement identity governance for your identity solution using entitlement, access reviews, privileged access, and monitoring your Azure Active Directory (Azure AD).
    • Plan and implement entitlement management
    • Plan, implement, and manage access reviews
    • Plan and implement privileged access
    • Monitor and maintain Azure AD

    Lab : Creat and manage a resource catalog with Azure AD entitlement
    Lab : Add terms of use acceptance report
    Lab : Manage the lifecycle of external users with Azure AD identity governance
    Lab : Create access reviews for groups and apps
    Lab : Configure PIM for Azure AD roles
    Lab : Assign Azure AD role in PIM
    Lab : Assign Azure resource roles in PIM
    Lab : Connect data from Azure AD to Azure Sentinel
    After completing this module, students will be able to:
    • Mange and maintain Azure AD from creation to solution
    • Use access reviews to maintain your Azure AD
    • Grant access to users with entitlement management

    How do I get a Microsoft exam voucher?

    Pearson Vue Exam vouchers can be requested and ordered with your course purchase or can be ordered separately by clicking here.

    • Vouchers are non-refundable and non-returnable. Vouchers expire 12 months from the date they are issued unless otherwise specified in the terms and conditions.
    • Voucher expiration dates cannot be extended. The exam must be taken by the expiration date printed on the voucher.

    Do Microsoft courses come with post lab access?

    Most Microsoft official courses will include post-lab access ranging from 30 to 180 calendar days after instructor led course delivery. A lab training key in class will be provided that can be leveraged to continue connecting to a remote lab environment for the individual course attendee.

    Does the course schedule include a Lunchbreak?

    Lunch is normally an hour-long after 3-3.5 hours of the class day.

    What languages are used to deliver training?

    Microsoft courses are conducted in English unless otherwise specified.

    The course provided the essentials in preparing for AWS certification. Material was well organized and utilized during topic discussions.

    ExitCertified is a great way to gain hands-on experience through their virtual learning environment.

    The course was well organized, and the labs and class participation helped a lot.

    thorough course covering materials needed to understand aws, architecture, and their interactions. Labs helped

    The format of the course was nicely structured, it was interactive and the labs really helped me understand the material on a deeper level.

    3 options available

    • Jun 28, 2021 Jul 1, 2021 (4 days)
      9:00AM 5:00PM EDT
    • Jul 26, 2021 Jul 29, 2021 (4 days)
      9:00AM 5:00PM EDT
    • Sep 13, 2021 Sep 16, 2021 (4 days)
      9:00AM 5:00PM EDT
    Contact Us 1-800-803-3948
    Contact Us
    FAQ Get immediate answers to our most frequently asked qestions. View FAQs arrow_forward