Exploring Azure Active Directory Walkthrough

Video Activity
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or

Already have an account? Sign In »

Time
21 hours 40 minutes
Difficulty
Intermediate
CEU/CPE
24
Video Transcription
00:00
>> Hello friends. Welcome back.
00:00
In this lecture, I wanted to
00:00
introduce you to the Azure Active Directory portal,
00:00
the Azure AD or IM solution.
00:00
That's going to be out there, you're actually going to
00:00
be touching on some labs
00:00
here in a minute where you're going to
00:00
be walking through step-by-step,
00:00
hold your hand environment to do
00:00
various things like create new users and
00:00
groups and manage them and what not.
00:00
But before we dive into that,
00:00
I wanted to just hop into
00:00
the Azure portal and actually
00:00
show you what Azure Active Directory looks like.
00:00
This is it, we're in the portal,
00:00
we moved over to Azure Active Directory now,
00:00
let me go ahead and backtrack here.
00:00
If you don't see this right here,
00:00
you can search Active Directory
00:00
and it'll pop up right here.
00:00
You're going to see this little pyramid
00:00
and you can select that and it'll
00:00
take you right here as well.
00:00
That being said, I want to go ahead and
00:00
point out some key things,
00:00
some things that we've already been talking
00:00
about throughout this course,
00:00
but it's always good to see it firsthand.
00:00
In the last lesson, we talked about tenants.
00:00
When you set up your environment, like I said before,
00:00
when you set up your Azure accounts,
00:00
you're going to be given a tenants by default.
00:00
If you want to create additional tenants,
00:00
you can go up here and create them,
00:00
we can open that up in a second.
00:00
But within your default tenants,
00:00
you have all of your information right there.
00:00
If I want to create an additional tenants,
00:00
I can do that, right here.
00:00
I can set it up so that,
00:00
it's either for another Active Directory tenant
00:00
for internal use or
00:00
it could be for business to customer.
00:00
B2C customers, if you
00:00
want to understand the differences there,
00:00
they do break that down for you here.
00:00
We're going to go ahead and close this out.
00:00
Let's go back to Active Directory, let that load.
00:00
If we scroll down here,
00:00
we can do some of
00:00
the typical things that you
00:00
would probably jump into the service for.
00:00
Maybe you want to create a new user,
00:00
you can select that,
00:00
and here we go.
00:00
We can create a user.
00:00
Here says create a new user in your organization.
00:00
This user will have the same name
00:00
like alice@cyberytestsnickoutlook,
00:00
bla, bla, you can do that.
00:00
You can invite new users
00:00
to collaborate within your organization.
00:00
The user will be emailed an invitation they can
00:00
accept and begin collaborating right there.
00:00
Here it's really simple.
00:00
You just enter their username.
00:00
You can make sure to select their TLD,
00:00
insert the information there,
00:00
and then you can go ahead and assign the groups.
00:00
You can select the groups. We don't
00:00
have any groups created,
00:00
we can't select them, but they're again,
00:00
in the next lesson you are
00:00
going to actually be walking through
00:00
this process of setting it up so it'll be super easy.
00:00
It'll make a little bit more sense because
00:00
these things will be prebaked and configured for you.
00:00
Let's go ahead and jump back here.
00:00
Some of these things. If you want to create a group,
00:00
you can go down to
00:00
groups or you can navigate over here on
00:00
the left-hand side and select
00:00
it here once again, super easy.
00:00
I can create the security group type.
00:00
Let's go ahead and actually set
00:00
>> this up here. Here we go.
00:00
>> Tests security, I cannot type right now.
00:00
This is a test group for security users.
00:00
This is going to be anassign type.
00:00
Let's go ahead and hits "Creates."
00:00
Notice, we've got the notification.
00:00
There's our notification there.
00:00
We're going to go ahead and go over to New users.
00:00
Let's create a new user.
00:00
Let's say Chris sure why not.
00:00
Chris Green.
00:00
Chris Green.
00:00
Auto-generate password yada, yada.
00:00
Look at that, we go ahead and open up,
00:00
says "0 group selected."
00:00
But if I want to add a Chris Green
00:00
to the test security group,
00:00
all I got to do is hit that,
00:00
select and [inaudible] now we see
00:00
that Chris Green has been added to the group.
00:00
I'm not going to go through the process
00:00
of filling out the rest of
00:00
this user because you're going to be doing
00:00
this on your own in the lab.
00:00
But I wanted to just jump through that really
00:00
quickly to show you how easy it is.
00:00
It's not even, 30 seconds and I've
00:00
already gone through the process of setting
00:00
up the group and
00:00
I would be able to create this user if I wanted to.
00:00
Let's go ahead and go back here.
00:00
We're in a default directory.
00:00
What else can we do? We can add external identities.
00:00
If you want to do federated services,
00:00
you can do that right here
00:00
using any of the popular ones, Google, Facebook,
00:00
Microsoft, what have you,
00:00
you can have these individuals use
00:00
external identities to access services.
00:00
If we want to set roles and administrators,
00:00
we can do that right here.
00:00
Notice that my role is the Global admin.
00:00
But if I want to create
00:00
other roles like application administrator,
00:00
because I don't want everybody to have
00:00
global admin rights or
00:00
higher level administrator rights,
00:00
I just want them to have
00:00
restrictive administrator rights,
00:00
they can do that.
00:00
There's a lot of pre-baked templates
00:00
like billing administrator.
00:00
Let's go ahead and see what this actually is.
00:00
If we read the description for billing administrator,
00:00
we can see the name,
00:00
we can see the description,
00:00
the template ID and then we can
00:00
see a ton of
00:00
the permissions that they're allowed to have.
00:00
It's great because at Azure it already has a bunch of
00:00
these things baked in so if you're not
00:00
quite sure what is to assign,
00:00
because you're still getting used to this,
00:00
you can go ahead and select some
00:00
of the pre-built ones that they already have.
00:00
If I go back here,
00:00
it says here that I can create a custom role,
00:00
but I actually cannot do it right now
00:00
because I don't have Azure AD Premium P1 or P2,
00:00
if I want to go ahead and sign up
00:00
for a free trial, I could do that.
00:00
But I'm not going to because this
00:00
is an account that I'm going to be paying for.
00:00
But you can do that if you'd like to.
00:00
If you're not quite finding what you're needing here
00:00
with one of these and you really
00:00
need to customize your own role,
00:00
you do have the availability to do
00:00
that by upgrading your Azure AD type.
00:00
If we want to tie in devices,
00:00
we can tie them in right here.
00:00
Let's go ahead and see what else we have.
00:00
We have app registration, identity, governance,
00:00
really a lot of great services including MDM and MAM,
00:00
so mobile device management
00:00
and mobile application management.
00:00
We have Azure AD Connect for connecting
00:00
our Azure AD environments to
00:00
on-premise environments and what have you,
00:00
password reset and just so much more.
00:00
What I want to go ahead and do is release you,
00:00
let you go ahead and jump into the lab
00:00
and begin learning on your own.
00:00
If you have any questions,
00:00
feel free to reach out to me.
00:00
You can find my information at the beginning and
00:00
end of each module and feel free
00:00
to ping me and I would be happy to walk you
00:00
through the process of any questions you might have.
00:00
Anyways, I'm going to go ahead and let you go.
00:00
I'll see you in the next lecture.
Up Next
Implement an Azure Conditional Access Policy Lab
45m
Use RBAC and Design a Custom Role Lab
1h