Preface

• Who this book is for
• What this book covers
• To get the most out of this book
• Download the color images
• Conventions used
• Get in touch
• Share Your Thoughts

1. Section 1 – Exam Overview and the Evolution of Identity and Access Management

2. Chapter 1: Preparing for Your Microsoft Exam FREE CHAPTER

• Technical requirements
• Preparing for a Microsoft exam
• Resources available and accessing Microsoft Learn
• Creating a Microsoft 365 trial subscription
• Exam objectives
• Who should take the SC-300 exam?
• Summary

3. Chapter 2: Defining Identity and Access Management

• Understanding IAM
• Learning identity and access use cases
• Understanding the scope of IAM
• The evolution of IAM
• Summary

4. Section 2 - Implementing an Identity Management Solution

5. Chapter 3: Implementing and Configuring Azure Active Directory

• Technical requirements
• Configuring and managing AAD roles
• Configuring and managing custom domains
• Configuring and managing device registration options
• Configuring tenant-wide settings
• Summary

6. Chapter 4: Creating, Configuring, and Managing Identities

• Technical requirements
• Creating, configuring, and managing users
• Creating, configuring, and managing groups
• Managing licenses
• Summary

7. Chapter 5: Implementing and Managing External Identities and Guests

• Technical requirements
• Managing external collaboration settings in Azure AD
• Inviting external users individually and in bulk
• Managing external user accounts in Azure AD
• Configuring identity providers
• Summary

8. Chapter 6: Implementing and Managing Hybrid Identities

• Technical requirements
• Implementing and managing Azure AD Connect
• Implementing and managing seamless SSO
• Implementing and managing Azure AD Connect Health
• Troubleshooting sync errors
• Summary

9. Section 3 – Implementing an Authentication and Access Management Solution

10. Chapter 7: Planning and Implementing Azure Multi-Factor Authentication (MFA) and Self-Service Password Reset (SSPR)

• Technical requirements
• Planning an Azure MFA deployment
• Implementing and managing MFA settings
• Configuring and deploying SSPR
• Deploying and managing password protection
• Planning and implementing security defaults
• Summary

11. Chapter 8: Planning and Managing Password-Less Authentication Methods

• Technical requirements
• Administering authentication methods (FIDO2/passwordless)
• Implementing an authentication solution based on Windows Hello for Business
• Implementing an authentication solution with the Microsoft Authenticator app
• Summary

12. Chapter 9: Planning, Implementing, and Administering Conditional Access and Azure Identity Protection

• Technical requirements
• Planning and implementing Conditional Access policies and controls
• Configuring Smart Lockout thresholds
• Implementing and managing a user risk policy
• Monitoring, investigating, and remediating elevated risky users
• Summary

13. Section 4 – Implementing Access Management for Applications

14. Chapter 10: Planning and Implementing Enterprise Apps for Single Sign-On (SSO)

• Technical requirements
• Designing and implementing access management and SSO for apps
• Integrating on-premises apps using Azure AD Application Proxy
• Planning your line-of-business application registration strategy
• Implementing application registrations
• Planning and configuring multi-tier application permissions
• Summary

15. Chapter 11: Monitoring Enterprise Apps with Microsoft Defender for Cloud Apps

• Technical requirements
• Planning your cloud application strategy
• Implementing cloud app security policies
• Planning and configuring cloud application permissions
• Discovering apps by using Microsoft Defender for Cloud Apps or an ADFS app report
• Using Microsoft Defender for Cloud Apps to manage application access
• Summary

16. Section 5 – Planning and Implementing an Identity Governance Strategy

17. Chapter 12: Planning and Implementing Entitlement Management

• Technical requirements
• Defining catalogs and access packages
• Planning, implementing, and managing entitlements
• Implementing and managing terms of use
• Managing the life cycle of external users in Azure AD Identity Governance settings
• Summary

18. Chapter 13: Planning and Implementing Privileged Access and Access Reviews

• Technical requirements
• Defining a privileged access strategy for administrative users
• Configuring PIM for Azure AD roles and Azure resources
• Creating and managing break-glass accounts
• Planning for and automating access reviews
• Analyzing PIM audit history and reports
• Summary

19. Section 6 – Monitoring and Maintaining Azure Active Directory

20. Chapter 14: Analyzing and Investigating Sign-in Logs and Elevated Risk Users

• Technical requirements
• Analyzing and investigating sign-in logs to troubleshoot access issues
• Reviewing and monitoring Azure AD audit logs
• Analyzing Azure Active Directory workbooks and reporting
• Summary

21. Chapter 15: Enabling and Integrating Azure AD Logs with SIEM Solutions

• Technical requirements
• Enabling and integrating Azure AD diagnostic logs with Log Analytics and Microsoft Sentinel
• Exporting sign-in and audit logs to a third-party SIEM
• Reviewing Azure AD activity by using Log Analytics and Microsoft Sentinel
• Summary

22. Chapter 16: Mock Test

• Questions
• Answers
• Summary
• Why subscribe?

23. Other Books You May Enjoy

• Packt is searching for authors like you
• Share Your Thoughts