Requirement
You’ll need a working knowledge of Azure Active Directory to follow along with the examples and complete the exercises in this exam(Azure AD). A free month of Microsoft 365 can be used for this purpose. Furthermore, an Azure AD Premium subscription is needed for access to premium identity and access management features.
The Microsoft Certification Exam Prep
It’s important to consider many angles while you study for a Microsoft certification exam. You’ll need to think about how you’ll take your exam, what materials you’ll use to study, if you have access to a subscription that will allow you to practice what you’ve learned, and so on. Understanding the general structure of Microsoft certification examinations is crucial if you are taking one for the first time.
Exam Structure
In general, there are four to six distinct kinds of questions on Microsoft certification exams. Examining candidates in a variety of formats, including case studies, multiple-choice, drag-and-drop, modified true/false, drop-down fill-in, and best-answer scenarios. Let’s elaborate on what we mean by each of these:
- Case-study questions place a made-up corporation in its existing and future contexts and outline the necessary technological and business requirements. Six to eight questions, potentially spanning multiple exam objectives, will be based on this scenario. One to three of these case studies might appear in most associate-level exams.
- Multiple-choice questions are more complex than their multiple-choice counterparts. There could be more than one correct response to a multiple-choice question. As a general rule, Microsoft makes it clear how many options are acceptable for each inquiry, and an error message will appear if you don’t select the required minimum.
- Test your understanding of the sequence of actions required to roll out a service with drag-and-drop questions based on a process. You have been presented with a larger number of options than are necessary; in order to answer the question, you must transfer the appropriate ones to the correct column.
- The following style of inquiry is a variant on the true/false format. Typically, Microsoft portal screenshots or table data will be supplied as evidence or screenshots in these types of questioning. Then, based on whether or not the statement is true according to the data presented, you’ll choose Yes or No for three to four statements.
- The most common place to locate PowerShell or Azure CLI code is in the drop-down fill-in questions. There will be blank spaces in a string of code, and those spaces will correspond to menus with options for you to chose from.
- Questions based on hypothetical situations are the most accurate gauge of true comprehension. Microsoft will give you a heads up before you get to this part, saying that you can’t back out of these questions. We will provide you a problem statement and an example answer. You have to decide if that’s the optimal way to meet the scenario’s needs. You may be asked the same question with a different answer depending on your previous choice.
-
Implement identities in Azure AD (20—25%)
-
Configure and manage an Azure AD tenant
-
Create, configure, and manage Azure AD identities
-
Implement and manage external identities
-
Implement and manage hybrid identity
-
Implement and manage Azure AD Connect
-
Implement and manage Azure AD Connect cloud sync
-
Implement and manage Password Hash Synchronization (PHS)
-
Implement and manage Pass-Through Authentication (PTA)
-
Implement and manage seamless Single Sign-On (SSO)
-
Implement and manage Federation, excluding manual AD FS deployments
-
Implement and manage Azure AD Connect Health
-
Troubleshoot synchronization errors
-
Implement and manage Azure AD Connect
-
Implement authentication and access management (25—30%)
-
Plan, implement, and manage Azure Multifactor Authentication (MFA) and self-service password reset
-
Plan, implement, and manage Azure AD user authentication
-
Plan for authentication
-
Implement and manage authentication methods [SC-300]
-
Implement and manage Windows Hello for Business
-
Implement and manage password protection and smart lockout
-
Implement certificate-based authentication in Azure AD
-
Configure Azure AD user authentication for Windows and Linux virtual machines on Azure
-
Plan for authentication
-
Plan, implement, and manage Azure AD conditional access
-
Plan conditional access policies [SC-300]
-
Implement conditional access policy assignments
-
Implement conditional access policy controls
-
Test and troubleshoot conditional access policies
-
Implement session management
-
Implement device-enforced restrictions
-
Implement continuous access evaluation
-
Create a conditional access policy from a template
-
Plan conditional access policies [SC-300]
-
Manage Azure AD Identity Protection
-
Implement access management for Azure resources
-
Implement access management for applications (15—20%)
-
Manage and monitor application access by using Microsoft Defender for Cloud Apps
-
Plan, implement, and monitor the integration of Enterprise applications
-
Configure and manage user and admin consent
-
Discover apps by using ADFS application activity reports
-
Design and implement access management for apps
-
Design and implement app management roles
-
Monitor and audit activity in enterprise applications
-
Design and implement integration for on-premises apps by using Azure AD application proxy
-
Design and implement integration for SaaS apps
-
Provision and manage users, groups, and roles on Enterprise applications
-
Create and manage application collections
-
Configure and manage user and admin consent
-
Plan and implement application registrations
-
Plan and implement identity governance in Azure AD (20—25%)
-
Plan and implement entitlement management
-
Plan entitlements
-
Create and configure catalogs
-
Create and configure access packages
-
Manage access requests
-
Implement and manage terms of use
-
Manage the lifecycle of external users in Azure AD Identity Governance settings
-
Configure and manage connected organizations
-
Review per-user entitlements by using Azure AD Entitlement management
-
Plan entitlements
-
Plan, implement, and manage access reviews
-
Plan and implement privileged access
-
Plan and manage Azure roles in Privileged Identity Management (PIM), including settings and assignments
-
Plan and manage Azure resources in PIM, including settings and assignments
-
Plan and configure Privileged Access groups
-
Manage PIM requests and approval process
-
Analyze PIM audit history and reports
-
Create and manage break-glass accounts
-
Plan and manage Azure roles in Privileged Identity Management (PIM), including settings and assignments
-
Monitor Azure AD
-
Design a strategy for monitoring Azure AD
-
Review and analyze sign-in, audit, and provisioning logs by using the Azure AD console
-
Configure diagnostic settings, including Log Analytics, storage accounts, and Event Hub
-
Monitor Azure AD by using Log Analytics, including KQL queries
-
Analyze Azure AD by using workbooks and reporting in the Azure AD console
-
Monitor and improve the security posture by using the Identity Secure Score
-
Design a strategy for monitoring Azure AD
-
-
No Video Found!
-
-
-
No Books Found!
-
Leave a Reply
You must be logged in to post a comment.
Click Here To Load Topic