Book description
Start empowering users and protecting corporate data, while managing identities and access with Microsoft Azure in different environments
Key Features
- Understand how to identify and manage business drivers during transitions
- Explore Microsoft Identity and Access Management as a Service (IDaaS) solution
- Over 40 playbooks to support your learning process with practical guidelines
Book Description
Microsoft Azure and its Identity and access management are at the heart of Microsoft's software as service products, including Office 365, Dynamics CRM, and Enterprise Mobility Management. It is crucial to master Microsoft Azure in order to be able to work with the Microsoft Cloud effectively.
You'll begin by identifying the benefits of Microsoft Azure in the field of identity and access management. Working through the functionality of identity and access management as a service, you will get a full overview of the Microsoft strategy. Understanding identity synchronization will help you to provide a well-managed identity. Project scenarios and examples will enable you to understand, troubleshoot, and develop on essential authentication protocols and publishing scenarios. Finally, you will acquire a thorough understanding of Microsoft Information protection technologies.
What you will learn
- Apply technical descriptions to your business needs and deployments
- Manage cloud-only, simple, and complex hybrid environments
- Apply correct and efficient monitoring and identity protection strategies
- Design and deploy custom Identity and access management solutions
- Build a complete identity and access management life cycle
- Understand authentication and application publishing mechanisms
- Use and understand the most crucial identity synchronization scenarios
- Implement a suitable information protection strategy
Who this book is for
This book is a perfect companion for developers, cyber security specialists, system and security engineers, IT consultants/architects, and system administrators who are looking for perfectly up?to-date hybrid and cloud-only scenarios. You should have some understanding of security solutions, Active Directory, access privileges/rights, and authentication methods. Programming knowledge is not required but can be helpful for using PowerShell or working with APIs to customize your solutions.
Table of contents
- Title Page
- Copyright and Credits
- About Packt
- Contributors
- Preface
- Section 1: Identity Management and Synchronization
-
Building and Managing Azure Active Directory
- Implementation scenario overview
- Implementing a solid Azure Active Directory
- Creating and managing users and groups
- Assign roles to administrative units
- Protect your administrative accounts
- Provide user and group-based application access
- Password reset self-service capabilities
- Using standard security monitoring
- Integrating Azure AD Join for Windows 10 clients
- Configuring a custom domain
- Configure Azure AD Domain Services
- Summary
-
Understanding Identity Synchronization
- Technology overview
-
Synchronization scenarios
- Single-forest integration
- Multi-forest integration
- Multi-Azure Active Directory Integration
- Azure Active Directory Domain Services Integration
- Stretched Active Directory to Azure IaaS
- Azure Active Directory B2B integration
- Azure Active Directory and Microsoft Office 365 synchronization
- Identity and password-hash synchronization including SSO options
- Identity synchronization including PingFederate integration
- Identity and password-hash synchronization including ADFS integration
- Azure Active Directory Connect high availability
- Synchronization terms and processes
- Summary
- Exploring Advanced Synchronization Concepts
- Monitoring Your Identity Bridge
- Configuring and Managing Identity Protection
- Section 2: Authentication and Application Publishing
- Managing Authentication Protocols
- Deploying Solutions on Azure AD and ADFS
- Using the Azure AD App Proxy and the Web Application Proxy
- Deploying Additional Applications on Azure AD
-
Exploring Azure AD Identity Services
- Preparing your lab environment
- Understanding Azure AD B2B
- Exploring Azure AD B2C
- Extending Active Directory solutions with Azure AD Domain Services
-
AD FS as an on-premise identity service for the cloud
- Typical single-forest deployment
- Two or more Active Directory forests running separate AD FS instances
- Running one AD FS instance for multiple trusted forests
- One AD FS instance for multiple Active Directory forests without an AD trust
- Using a local CP trust to support multiple Active Directory forests
- Using a shared Active Directory environment
- Microsoft Cloud Solution Provider summary
- Summary
- Creating Identity Life Cycle Management in Azure
- Section 3: Data Classification and Information Protection
-
Creating a Security Culture
- Why do we need a security culture?
- Pillars of a good security culture
- General overview of data classification
- Azure Information Protection (AIP) overview
- Summary
- Identifying and Detecting Sensitive Data
- Understanding Encryption Key Management Strategies
- Configuring Azure Information Protection Solutions
-
Azure Information Protection Development
- Technical requirements
- Microsoft Information Protection solutions
- Understanding the Microsoft Information Protection SDK
- Preparing your Azure AD environment for tests
- Using MIP binaries to explore functionality
- Using PowerShell with Azure Information Protection
- Overview of the RMS 2.1 and 4.2 SDKs
- Summary
- Other Books You May Enjoy
Product information
- Title: Mastering Identity and Access Management with Microsoft Azure - Second Edition
- Author(s):
- Release date: February 2019
- Publisher(s): Packt Publishing
- ISBN: 9781789132304
You might also like
book
Mastering Identity and Access Management with Microsoft Azure
Start empowering users and protecting corporate data, while managing Identities and Access with Microsoft Azure in …
video
Identity Federation using Microsoft ADFS and Azure AD
When organizations want external parties to consume their applications (be it on-premises or cloud), federation comes …
book
Learning Microsoft Azure
If your organization plans to modernize services and move to the cloud from legacy software or …
book
Exam Ref AZ-204 Developing Solutions for Microsoft Azure
Prepare for Microsoft Exam AZ-204 and help demonstrate your real-world mastery of Microsoft Azure solution development. …