Mastering Identity and Access Management with Microsoft Azure

Start empowering users and protecting corporate data, while managing Identities and Access with Microsoft Azure in different environments
Preview in Mapt

Mastering Identity and Access Management with Microsoft Azure

Jochen Nickel

4 customer reviews
Start empowering users and protecting corporate data, while managing Identities and Access with Microsoft Azure in different environments
Mapt Subscription
FREE
$29.99/m after trial
eBook
$24.00
RRP $47.99
Save 49%
Print + eBook
$59.99
RRP $59.99
What do I get with a Mapt Pro subscription?
  • Unlimited access to all Packt’s 5,000+ eBooks and Videos
  • Early Access content, Progress Tracking, and Assessments
  • 1 Free eBook or Video to download and keep every month after trial
What do I get with an eBook?
  • Download this book in EPUB, PDF, MOBI formats
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
What do I get with Print & eBook?
  • Get a paperback copy of the book delivered to you
  • Download this book in EPUB, PDF, MOBI formats
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
What do I get with a Video?
  • Download this Video course in MP4 format
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
$0.00
$24.00
$59.99
$29.99 p/m after trial
RRP $47.99
RRP $59.99
Subscription
eBook
Print + eBook
Start 14 Day Trial

Frequently bought together


Mastering Identity and Access Management with Microsoft Azure Book Cover
Mastering Identity and Access Management with Microsoft Azure
$ 47.99
$ 24.00
Azure for Architects Book Cover
Azure for Architects
$ 35.99
$ 18.00
Buy 2 for $35.00
Save $48.98
Add to Cart

Book Details

ISBN 139781785889448
Paperback692 pages

Book Description

Microsoft Azure and its Identity and Access Management is at the heart of Microsoft’s Software as a Service, including Office 365, Dynamics CRM, and Enterprise Mobility Management. It is an essential tool to master in order to effectively work with the Microsoft Cloud. Through practical, project based learning this book will impart that mastery.

Beginning with the basics of features and licenses, this book quickly moves on to the user and group lifecycle required to design roles and administrative units for role-based access control (RBAC). Learn to design Azure AD to be an identity provider and provide flexible and secure access to SaaS applications. Get to grips with how to configure and manage users, groups, roles, and administrative units to provide a user- and group-based application and self-service access including the audit functionality.

Next find out how to take advantage of managing common identities with the Microsoft Identity Manager 2016 and build cloud identities with the Azure AD Connect utility. Construct blueprints with different authentication scenarios including multi-factor authentication. Discover how to configure and manage the identity synchronization and federation environment along with multi -factor authentication, conditional access, and information protection scenarios to apply the required security functionality.

Finally, get recommendations for planning and implementing a future-oriented and sustainable identity and access management strategy.

Table of Contents

Chapter 1: Getting Started with a Cloud-Only Scenario
Identifying business needs and challenges
An overview of feature and licensing decisions
Defining the benefits and costs
Principles of security and legal requirements
Summary
Chapter 2: Planning and Designing Cloud Identities
Understanding the user and group life cycle
Employee life cycle (word smart)
Designing roles and administrative units
Managing identity reporting capabilities
Summary
Chapter 3: Planning and Designing Authentication and Application Access
Using Azure AD as an identity provider
User and group-based application access management
Managing authentication reporting capabilities
Summary
Chapter 4: Building and Configuring a Suitable Azure AD
Implementation scenario overview
Implementing a solid Azure Active Directory
Creating and managing users and groups
Assigning roles and administrative units
Providing user-and group-based application access
Activating password reset self-service capabilities
Using standard security reports
Integrating Azure AD join for Windows 10 clients
Configuring a custom domain
Configuring Azure AD Domain Services
Summary
Chapter 5: Shifting to a Hybrid Scenario
Identifying business drivers and changes for a hybrid move
Special handling for moving to a multi-forest Active Directory environment
Describing architectures and needed changes
Summary
Chapter 6: Extending to a Basic Hybrid Environment
Identifying business needs for a hybrid approach
Choosing the correct features
Getting the benefits and costs
Applying the right security strategy for legal requirements
Summary
Chapter 7: Designing Hybrid Identity Management Architecture
Key design concepts
Management of common identities with Microsoft Identity Manager and Active Directory
Choosing the best directory synchronization scenario for cloud identities
Delivering password management capabilities
Using multiple identity providers and authentication scenarios
Enabling strong authentication scenarios
How does advanced identity and authentication reporting work?
Summary
Chapter 8: Planning Authorization and Information Protection Options
Designing and applying risk-based Access Control
Delivering authentication and authorization improvements with Windows Server 2016
Enabling advanced application Access Control
Getting in touch with information protection
How does authorization and information protection reporting work?
Summary
Chapter 9: Building Cloud from Common Identities
Creating the basic lab environment
Installing and configuring the synchronization and federation environment
Creating dynamic groups
Configuring self-service group management
Implementing secure remote access and SSO for on premise web applications
Enabling and configuring Multi-Factor Authentication
Summary
Chapter 10: Implementing Access Control Mechanisms
Extending the basic lab environment
Configuring conditional access control
Enabling and configuring information protection
Configuring advanced security scenarios with Windows Server 2016
Summary
Chapter 11: Managing Transition Scenarios with Special Scenarios
Identifying special Active Directory and ADFS considerations
Planning the correct connectivity to your Azure infrastructure
Integrating Azure MFA in your MIM 2016 deployment
Knowing the migrate from AD RMS to Azure RMS shortcut
Summary
Chapter 12: Advanced Considerations for Complex Scenarios
Additional business needs in a complex hybrid environment
Advanced information for often-used additional features
Summary
Chapter 13: Delivering Multi-Forest Hybrid Architectures
Enabling identity synchronization in multi-forest environments
Guidance through federation in multi-forest environments
Using alternate login ID and ADAL
Comparing AD FS against Azure B2B/B2C
Designing ADFS 4.0 identity and attribute stores
Summary
Chapter 14: Installing and Configuring the Enhanced Identity Infrastructure
Important note for readers
Creating the extended lab environment
Installing and configuring the multi-forest synchronization environment
Installing and configuring the multi-forest and high availability Federation environments
Configuring application access with ADFS, WAP, and AAD AP
Configuring Multi-Factor authentication scenarios for Conditional Access
Summary
Chapter 15: Installing and Configuring Information Protection Features
Preparing your admin workstation to manage Azure RMS
Configuring onboarding controls
Delegating administrative permissions
Enabling Azure RMS super users
Configuring Exchange Online to use Rights Management capabilities
Configuring Exchange to use Rights Management capabilities
Configuring SharePoint to use Rights Management capabilities
Creating and publishing custom Rights Policy templates
Verifying Azure RMS logging
Preview of Azure Information Protection
SAP integration as a special scenario
Configuring a BYOK scenario
Summary
Chapter 16: Choosing the Right Technology, Methods, and Future Trends
MIM 2016 future improvements
Summary

What You Will Learn

  • Apply technical descriptions and solution architectures directly to your business needs and deployments
  • Identify and manage business drivers and architecture changes to transition between different scenarios
  • Understand and configure all relevant Identity and Access Management key features and concepts
  • Implement simple and complex directory integration, authentication, and authorization scenarios
  • Get to know about modern identity management, authentication, and authorization protocols and standards
  • Implement and configure a modern information protection solution
  • Integrate and configure future improvements in authentication and authorization functionality of Windows 10 and Windows Server 2016

Authors

Table of Contents

Chapter 1: Getting Started with a Cloud-Only Scenario
Identifying business needs and challenges
An overview of feature and licensing decisions
Defining the benefits and costs
Principles of security and legal requirements
Summary
Chapter 2: Planning and Designing Cloud Identities
Understanding the user and group life cycle
Employee life cycle (word smart)
Designing roles and administrative units
Managing identity reporting capabilities
Summary
Chapter 3: Planning and Designing Authentication and Application Access
Using Azure AD as an identity provider
User and group-based application access management
Managing authentication reporting capabilities
Summary
Chapter 4: Building and Configuring a Suitable Azure AD
Implementation scenario overview
Implementing a solid Azure Active Directory
Creating and managing users and groups
Assigning roles and administrative units
Providing user-and group-based application access
Activating password reset self-service capabilities
Using standard security reports
Integrating Azure AD join for Windows 10 clients
Configuring a custom domain
Configuring Azure AD Domain Services
Summary
Chapter 5: Shifting to a Hybrid Scenario
Identifying business drivers and changes for a hybrid move
Special handling for moving to a multi-forest Active Directory environment
Describing architectures and needed changes
Summary
Chapter 6: Extending to a Basic Hybrid Environment
Identifying business needs for a hybrid approach
Choosing the correct features
Getting the benefits and costs
Applying the right security strategy for legal requirements
Summary
Chapter 7: Designing Hybrid Identity Management Architecture
Key design concepts
Management of common identities with Microsoft Identity Manager and Active Directory
Choosing the best directory synchronization scenario for cloud identities
Delivering password management capabilities
Using multiple identity providers and authentication scenarios
Enabling strong authentication scenarios
How does advanced identity and authentication reporting work?
Summary
Chapter 8: Planning Authorization and Information Protection Options
Designing and applying risk-based Access Control
Delivering authentication and authorization improvements with Windows Server 2016
Enabling advanced application Access Control
Getting in touch with information protection
How does authorization and information protection reporting work?
Summary
Chapter 9: Building Cloud from Common Identities
Creating the basic lab environment
Installing and configuring the synchronization and federation environment
Creating dynamic groups
Configuring self-service group management
Implementing secure remote access and SSO for on premise web applications
Enabling and configuring Multi-Factor Authentication
Summary
Chapter 10: Implementing Access Control Mechanisms
Extending the basic lab environment
Configuring conditional access control
Enabling and configuring information protection
Configuring advanced security scenarios with Windows Server 2016
Summary
Chapter 11: Managing Transition Scenarios with Special Scenarios
Identifying special Active Directory and ADFS considerations
Planning the correct connectivity to your Azure infrastructure
Integrating Azure MFA in your MIM 2016 deployment
Knowing the migrate from AD RMS to Azure RMS shortcut
Summary
Chapter 12: Advanced Considerations for Complex Scenarios
Additional business needs in a complex hybrid environment
Advanced information for often-used additional features
Summary
Chapter 13: Delivering Multi-Forest Hybrid Architectures
Enabling identity synchronization in multi-forest environments
Guidance through federation in multi-forest environments
Using alternate login ID and ADAL
Comparing AD FS against Azure B2B/B2C
Designing ADFS 4.0 identity and attribute stores
Summary
Chapter 14: Installing and Configuring the Enhanced Identity Infrastructure
Important note for readers
Creating the extended lab environment
Installing and configuring the multi-forest synchronization environment
Installing and configuring the multi-forest and high availability Federation environments
Configuring application access with ADFS, WAP, and AAD AP
Configuring Multi-Factor authentication scenarios for Conditional Access
Summary
Chapter 15: Installing and Configuring Information Protection Features
Preparing your admin workstation to manage Azure RMS
Configuring onboarding controls
Delegating administrative permissions
Enabling Azure RMS super users
Configuring Exchange Online to use Rights Management capabilities
Configuring Exchange to use Rights Management capabilities
Configuring SharePoint to use Rights Management capabilities
Creating and publishing custom Rights Policy templates
Verifying Azure RMS logging
Preview of Azure Information Protection
SAP integration as a special scenario
Configuring a BYOK scenario
Summary
Chapter 16: Choosing the Right Technology, Methods, and Future Trends
MIM 2016 future improvements
Summary

Book Details

ISBN 139781785889448
Paperback692 pages
Read More
From 4 reviews

Read More Reviews

Recommended for You

Azure for Architects Book Cover
Azure for Architects
$ 35.99
$ 18.00
Implementing Azure Solutions Book Cover
Implementing Azure Solutions
$ 39.99
$ 20.00
Robust Cloud Integration with Azure Book Cover
Robust Cloud Integration with Azure
$ 47.99
$ 24.00
Implementing DevOps with Microsoft Azure Book Cover
Implementing DevOps with Microsoft Azure
$ 39.99
$ 20.00
Microservices with Azure Book Cover
Microservices with Azure
$ 35.99
$ 18.00
Microservices with Azure Book Cover
Microservices with Azure
$ 35.99
$ 18.00