Book Image

Mastering Identity and Access Management with Microsoft Azure

By : Jochen Nickel
Book Image

Mastering Identity and Access Management with Microsoft Azure

By: Jochen Nickel

Overview of this book

Microsoft Azure and its Identity and Access Management is at the heart of Microsoft’s Software as a Service, including Office 365, Dynamics CRM, and Enterprise Mobility Management. It is an essential tool to master in order to effectively work with the Microsoft Cloud. Through practical, project based learning this book will impart that mastery. Beginning with the basics of features and licenses, this book quickly moves on to the user and group lifecycle required to design roles and administrative units for role-based access control (RBAC). Learn to design Azure AD to be an identity provider and provide flexible and secure access to SaaS applications. Get to grips with how to configure and manage users, groups, roles, and administrative units to provide a user- and group-based application and self-service access including the audit functionality. Next find out how to take advantage of managing common identities with the Microsoft Identity Manager 2016 and build cloud identities with the Azure AD Connect utility. Construct blueprints with different authentication scenarios including multi-factor authentication. Discover how to configure and manage the identity synchronization and federation environment along with multi -factor authentication, conditional access, and information protection scenarios to apply the required security functionality. Finally, get recommendations for planning and implementing a future-oriented and sustainable identity and access management strategy.
Table of Contents (22 chapters)
Mastering Identity and Access Management with Microsoft Azure
About the Author
About the Reviewer
Choosing the Right Technology, Methods, and Future Trends

Configuring SharePoint to use Rights Management capabilities

In this section, we will configure SharePoint 2010/2013 and SharePoint Online to use the Rights Management capabilities. As a prerequisite on SharePoint 2013 servers, the latest RMS client version 2.1 needs to be installed. For SharePoint 2010, the MSDRM client that includes support for RMS Cryptographic Mode 2 needs to be installed:


Practical note

SharePoint 2010 needs the following additional prerequisites:

Windows 2012/R2 (

Windows 2008 R2 (

Windows 2008 (

In our scenario, we will use SharePoint 2013 and the already installed RMS Connector. Perform the following steps:

  1. First, we need to retrieve the Azure RMS URL for your tenant.

  2. Open an elevated PowerShell and type Connect-Aadrm-Service

  3. Provide your global administrator credentials.

  4. Type the following command: Get-AadrmConfiguration

  5. You will receive the Microsoft RMS URL that you need to copy to your SharePoint...