SC-300: Identity and Access Administrator

SC-300 Course: Microsoft Identity and Access Administrator

The Microsoft Identity and Access Administrator course explores how to design, implement, and operate an organization's identity and access management systems using Azure AD . Learn to manage tasks such as providing secure access with authentication and authorization to enterprise applications. You'll also learn how to deliver seamless experiences and self-service management capabilities for all users. Finally, learn how to build adaptive access and governance for identity and access management solutions, ensuring you can troubleshoot, monitor, and report on your environment. The identity and access administrator can be a single individual or a member of a larger team. Gain insights into how this role collaborates with many other roles across the organization to drive strategic identity projects. The ultimate goal is to provide the knowledge needed to modernize identity solutions, implement hybrid identity solutions, and implement identity governance.

Online course with a free certification exam included. Don't miss this opportunity! The exam is valued at €126 + VAT and is included at no extra cost.

Promotion valid until June 30, 2026. One-opportunity exam available only in Virtual - E-learning format. Not applicable to Self-Learning format.

Level: Intermediate - Product: Azure, Microsoft 365 - Role: Security Engineer

Course aimed at

This course is designed for identity and access administrators who plan to take the associated certification exam or who perform identity and access management tasks in their daily work. This course would also be beneficial for an administrator or engineer who wants to specialize in providing identity and access management solutions for Azure-based solutions, playing an integral role in protecting an organization.

Course Objectives

• Design and implement identity and access management systems: You will learn how to use Microsoft Entra ID to manage identities and access across the organization.
  
• Provide secure access: You will configure authentication and authorization for business applications, ensuring secure and efficient access.
  
• Manage identities and access: You will manage the identity lifecycle for users, devices, Azure resources, and applications.
  
• Applying Zero Trust principles: You will implement identity and access solutions based on Zero Trust principles to improve security.
  
• Monitor and troubleshoot: You will learn to monitor, troubleshoot, and generate reports on identity and access management.
  
• Implement hybrid solutions: You will develop skills to implement hybrid identity solutions and identity governance.

Elements of the SC-300 formation

• Exploring Identity and Azure AD (16 Units)
• Implementing the initial configuration of Azure Active Directory (11 Units)
• Creating, Configuring, and Managing Identities (14 Units)
• Implementation and management of external identities (16 Units)
• Implementation and administration of a hybrid identity (11 Units)
• Azure Active Directory User Protection with Multi-Factor Authentication (6 Units)
• Manage user authentication (12 Units)
• Planning, Implementation and Administration of Conditional Access (13 Units)
• Azure AD Identity Protection Administration (10 Units)
• Implementing access management for Azure resources (11 Units)
• Planning and design of enterprise application integration for SSO (10 Units)
• Implementation and monitoring of enterprise application integration for single sign-on (10 Units)
• Implementation of application registration (11 Units)
• Planning and Implementation of Rights Management (10 Units)
• Planning, implementation and administration of access review (9 Units)
• Planning and Implementation of Privileged Access (11 Units)
• Azure Active Directory Monitoring and Maintenance (9 Units)

Course content SC-300: Microsoft Identity and Access Manager

Module 1. Exploring identities in Microsoft Entra ID
Lessons:
- Security exploration
- Identity management concepts
- Authentication and authorization
- Audit and other identity concepts

Module 2. Implementing an identity management solution
Lessons:
- Create, configure and manage identities
- Configure and manage Microsoft Login ID
- Implementation and management of external identities
- Implementation and administration of a hybrid identity
Laboratories:
Lab 00 - Lab Setup
Lab 01 - User Role Administration
Lab 02: Working with tenant properties
Lab 03: Assign licenses based on group membership
Lab 04: Configure external collaboration settings
Lab 05: Adding guest users to a directory
Lab 06: Add a federated identity provider
Lab 07: Optional — Add hybrid identity with Microsoft Entra Connect

Module 3. Implementing an access and authentication management solution
Lessons:
- Plan and implement Microsoft Entra multi-factor authentication (MFA)
- Manage user authentication
- Planning, implementation and administration of conditional access
- Manage Microsoft Sign in ID Protection
- Implementation of access management for Azure resources
Laboratories:
Lab 08: Enabling multi-factor authentication
Lab 09: Enabling Microsoft Self-Service Password Reset
Lab 10: Microsoft Authentication Enter ID for Windows and Linux Virtual Machines
Lab 11: Assigning Azure resource roles in Privileged Identity Management
Lab 12: Managing Microsoft Smart Lock Values
Lab 13: Implement and test a conditional access policy
Lab 14: Enabling user login and risk policies
Lab 15: Configuring an MFA Registration Policy
Lab 16: Use Azure Key Vault for managed identities

Module 4. Implementing access management for applications
Lessons:
What is an app?
Plan and design the integration of enterprise applications for single sign-on (SSO).
Implement and monitor the integration of enterprise applications
Implement application logging
Laboratories:
Lab 17: Detecting Defender for Cloud Apps and applying restrictions
18: Defender for Cloud Apps access policies
19: Register an application
20: Implement access management for applications
21: Granting the administrator's consent for the entire tenant to an application

Module 5. Planning and Implementation of an Identity Governance Strategy
Lessons:
Planning and implementation of rights management
Plan, implement, and manage access reviews
Planning and implementation of privileged access
Microsoft Entra ID monitoring and maintenance
Laboratories:
Lab 22: Creating and Managing a Resource Catalog in Microsoft Rights Management. Enter
Lab 23: Add the terms of use and the acceptance report
Lab 24: Managing the lifecycle of external users in Microsoft Entra Identity Governance configuration
Lab 25: Create access reviews for internal and external users
Lab 26: Configure Privileged Identity Management for Microsoft Entra roles
Lab 27: Microsoft Sentinel Kusto queries for Microsoft Entra data sources
Lab 28: Monitor and manage security posture with identity security score

Prerequisites

Before attending this course, students should have knowledge in:

• Recommended security procedures and industry security requirements, such as defense in depth, least privilege access, shared responsibility, and the zero trust model
• Become familiar with identity concepts such as authentication, authorization, and Active Directory
• Having some experience in deploying Azure workloads is required. This course does not cover the basics of Azure administration, but the course content builds upon that knowledge by adding specific security information.
• Some experience with Windows and Linux operating systems and scripting languages ​​is helpful, but not required. The course labs may use PowerShell and the CLI.

Language

• Course: English / Spanish
• Labs: English / Spanish

Microsoft Certification Associate: Identity and Access Administrator Associate

Microsoft Certified: Identity and Access Administrator Associate

Showcase the features of Microsoft Entra ID to modernize identity solutions, implement hybrid solutions, and implement identity governance.

Level: Intermediate
Role: Security Engineer
Product: Azure
Subject: Security