Azure AD Hybrid Identity Part 3

Video Activity
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or

Already have an account? Sign In »

Time
14 hours 28 minutes
Difficulty
Intermediate
CEU/CPE
15
Video Transcription
00:00
>> Quiz Question Number 1.
00:00
You are preparing to implement Azure AD Connect.
00:00
You need to identify
00:00
any objects in on-premises Active Directory
00:00
that will fail to synchronize to Azure AD
00:00
>> due to invalid characters.
00:00
>> What tool should you use?
00:00
Option 1, Azure Monitor,
00:00
Option 2, IDFix,
00:00
Option 3, Azure AD Connect Health,
00:00
Option 4, Azure PowerShell.
00:00
If you selected IDFix,
00:00
you would be correct.
00:00
That is the free tool that we can download and run it.
00:00
It gets our on-premises AD infrastructure to identify
00:00
>> where we have our objects
00:00
>> that have invalid attribute values.
00:00
>> Quiz Question Number 2.
00:00
You recently implemented Azure AD Connect.
00:00
You need to implement a solution to notify
00:00
IT admins of any issues
00:00
relating to the directory synchronization.
00:00
What should you recommend?
00:00
Option 1 Azure AD Connect Health,
00:00
>> Option 2, Synchronization Services Manager,
00:00
>> Option 3, Synchronization Rule Editor,
00:00
>> Option 4, Azure AD Connect Wizard.
00:00
If you selected Azure AD Connect Health Option 1,
00:00
>> you would be correct.
00:00
>> That is the service that we can implement
00:00
>> that allows us to monitor
00:00
>> our on-premises identity infrastructure,
00:00
>> including the synchronization between
00:00
on-premises AD and Azure AD is in the Azure AD Connect.
00:00
Or we can configure
00:00
email notification to notify us
00:00
>> if there are synchronization issues.
00:00
>> Quiz Question Number 3.
00:00
Which of the following Azure AD Synchronization options
00:00
support single sign-on
00:00
>> for on-premises AD users to Cloud applications?
00:00
>> Select all that apply.
00:00
Option 1, Cloud only identity,
00:00
>> Option 2, password hash synchronization,
00:00
>> Option 3, passthrough authentication,
00:00
>> Option 4, federation.
00:00
>> If you selected password hash synchronization,
00:00
passthrough authentication and federation,
00:00
you would be correct
00:00
because these tree options support single
00:00
sign-on for on-premises AD
00:00
uses to Cloud applications
00:00
so that once you've signed in on-premises ones,
00:00
they don't need to reauthenticate
00:00
>> if they want to access Cloud applications.
00:00
>> Quiz Question Number 4.
00:00
You have a hybrid environment with
00:00
Active Directory on-premises
00:00
>> and Azure Active Directory Premium P1 licenses
00:00
>> assigned to all users.
00:00
You implemented Azure AD Connect.
00:00
Which other features can you implement
00:00
>> to reduce operational overhead
00:00
>> for your organization's service desk team?
00:00
>> Selects two. Option 1, Azure AD DS,
00:00
Option 2, access reviews,
00:00
Option 3, self-service password reset,
00:00
>> Option 4, Azure AD Conditional Access,
00:00
>> Option 5, password writeback.
00:00
If you selected options three and five,
00:00
self-service password reset
00:00
>> and password writeback,
00:00
>> you would be correct.
00:00
>> Those are two functionalities that are only
00:00
available for Azure AD Premium P1 and P2
00:00
licenses that you can use to reduce
00:00
the operational overhead
00:00
>> for your organization service testing.
00:00
>> Quiz Question Number 5.
00:00
You have a hybrid environment
00:00
>> with Active Directory on-premises
00:00
>> and Azure Active Directory Premium P1 licenses
00:00
>> assigned to all users.
00:00
You need to configure users
00:00
>> to be automatically signed into Cloud applications
00:00
>> when they are on their corporate desktops
00:00
>> within the corporate network.
00:00
>> What options can you configure to achieve this?
00:00
Select all that apply.
00:00
Option 1, Azure AD Connect with
00:00
password hash synchronization and single sign-on.
00:00
Option 2, Azure AD Connect
00:00
with pass-through authentication and single sign-on.
00:00
If you selected both options,
00:00
you would be correct because both options
00:00
allows you to configure single sign-on
00:00
>> for users on premises
00:00
>> to be able to access Cloud applications.
00:00
>> It's just a single tick box
00:00
when you're setting up these options.
00:00
I'll show you that in the demo.
00:00
Quiz Question Number 6.
00:00
You have a hybrid environment
00:00
with Active Directory on-premises
00:00
and Azure Active Directory Premium P1 licenses
00:00
assigned to all users.
00:00
The IT security team wants to ensure that
00:00
identity management is performed
00:00
by using Active Directory.
00:00
Password hashes must be stored on-premises only.
00:00
Access to all business critical systems
00:00
>> must rely on Active Directory credentials.
00:00
>> What options should you recommend?
00:00
Option 1, implement Azure AD Connect
00:00
>> and sets the user sign-in
00:00
>> option to passthrough authentication.
00:00
Option 2, implement Azure AD Connect
00:00
>> and sets the user sign-in option
00:00
>> to password hash synchronization.
00:00
If you selected Option 1,
00:00
implement Azure AD Connect
00:00
>> and sets the user sign-in option
00:00
>> to pass-through authentication,
00:00
>> you would be correct.
00:00
Because passthrough authentication
00:00
>> allows you to be able to do single sign-on,
00:00
>> allows you to be able to authenticate
00:00
without synchronizing a password hashes to Azure AD,
00:00
which is what's the requirement was.
00:00
The password hashes must be stored on-premises only.
00:00
Some references for you is a link
00:00
to the Azure AD Hybrid Identity documentation.
00:00
There's the link to select
00:00
the right synchronization option,
00:00
which covers the options
00:00
>> that we discussed in a lot more details.
00:00
>> There's the link on how to configure
00:00
Azure Connect Health email notification option
00:00
for synchronization issues.
00:00
This brings me to the end of this lesson.
00:00
Thanks very much for watching,
00:00
and I'll see you in the next lesson.
Up Next