Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Microsoft Identity and Access Administrator SC-300 Exam Guide
  • Table Of Contents Toc
  • Feedback & Rating feedback
Microsoft Identity and Access Administrator SC-300 Exam Guide

Microsoft Identity and Access Administrator SC-300 Exam Guide - Second Edition

By : Aaron Guilmette, James Hardiman, Doug Haven, Dwayne Natwick
Buy this Book
close
close
Microsoft Identity and Access Administrator SC-300 Exam Guide

Microsoft Identity and Access Administrator SC-300 Exam Guide

By: Aaron Guilmette, James Hardiman, Doug Haven, Dwayne Natwick
Buy this Book

Overview of this book

SC-300 exam content has undergone significant changes, and this second edition aligns with the revised exam objectives. This updated edition gives you access to online exam prep resources such as chapter-wise practice questions, mock exams, interactive flashcards, and expert exam tips, providing you with all the tools you need for thorough exam preparation. You’ll get to grips with the creation, configuration, and management of Microsoft Entra identities, as well as understand the planning, implementation, and management of Microsoft Entra user authentication processes. You’ll learn to deploy and use new Global Secure Access features, design cloud application strategies, and manage application access and policies by using Microsoft Cloud App Security. You’ll also gain experience in configuring Privileged Identity Management for users and guests, working with the Permissions Creep Index, and mitigating associated risks. By the end of this book, you’ll have mastered the skills essential for securing Microsoft environments and be able to pass the SC-300 exam on your first attempt.
Table of Contents (21 chapters)
close
close
close
Preface
Icon
Preface
Icon
Who This Book Is For
Icon
What This Book Covers
Icon
How to Get the Most Out of This Book
Icon
Online Practice Resources
Icon
To Make the Most Out of This Book
Icon
Download the Example Code Files
Icon
Download the Color Images
Icon
Conventions Used
Icon
Get in Touch
Icon
Share Your Thoughts
Icon
Download a Free PDF Copy of This Book
Lock Free Chapter
1
Chapter 1: Implementing and Configuring a Microsoft Entra Tenant
Icon
Chapter 1: Implementing and Configuring a Microsoft Entra Tenant
Icon
In this chapter, you will explore the essential elements of planning your Microsoft 365 experience, particularly as they map to the SC-300 exam. The objectives and skills covered in this chapter include the following:
Icon
Provisioning a Tenant
Icon
Configuring and Managing Built-In and Custom Microsoft Entra Roles
Icon
Recommending When to Use Administrative Units
Icon
Configuring and Managing Administrative Units
Icon
Evaluating Effective Permissions for Microsoft Entra Roles
Icon
Configuring and Managing Custom Domains
Icon
Configuring Company Branding Settings
Icon
Configuring Tenant-Wide Settings and Properties
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
2
Chapter 2: Creating, Configuring, and Managing Microsoft Entra Identities
Icon
Chapter 2: Creating, Configuring, and Managing Microsoft Entra Identities
Icon
Creating, Configuring, and Managing Users
Icon
Creating, Configuring, and Managing Groups
Icon
Managing Custom Security Attributes
Icon
Automating Bulk Operations by Using the Microsoft Entra Admin Center and PowerShell
Icon
Managing Device Join and Device Registration in Microsoft Entra ID
Icon
Assigning, Modifying, and Reporting on Licenses
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
3
Chapter 3: Implementing and Managing Identities for External Users and Tenants
Icon
Chapter 3: Implementing and Managing Identities for External Users and Tenants
Icon
Managing External Collaboration Settings in Microsoft Entra ID
Icon
Inviting External Users, Individually or in Bulk
Icon
Managing External User Accounts in Microsoft Entra ID
Icon
Implementing Cross-Tenant Access Settings
Icon
Implementing and Managing Cross-Tenant Synchronization
Icon
Configuring External Identity Providers
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
4
Chapter 4: Implementing and Managing Hybrid Identity
Icon
Chapter 4: Implementing and Managing Hybrid Identity
Icon
Preparing for Identity Synchronization
Icon
Implementing and Managing Microsoft Entra Connect Sync
Icon
Implementing and Managing Microsoft Entra Connect Cloud Sync
Icon
Implementing and Managing Password Hash Synchronization
Icon
Implementing and Managing Pass-Through Authentication
Icon
Implementing and Managing Seamless single sign-on
Icon
Migrating from AD FS to Other Authentication and Authorization Mechanisms
Icon
Implementing and Managing Microsoft Entra Connect Health
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
5
Chapter 5: Planning, Implementing, and Managing Microsoft Entra User Authentication
Icon
Chapter 5: Planning, Implementing, and Managing Microsoft Entra User Authentication
Icon
Planning for Authentication
Icon
Implementing and Managing Authentication Methods
Icon
Implementing and Managing Tenant-Wide MFA Settings
Icon
Configuring and Deploying Self-Service Password Reset
Icon
Implementing and Managing Windows Hello for Business
Icon
Disabling Accounts and Revoking User Sessions
Icon
Deploying and Managing Entra Password Protection and Smart Lockout
Icon
Enabling Microsoft Entra Kerberos Authentication for Hybrid Identities
Icon
Implementing Certificate-Based Authentication in Microsoft Entra
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
6
Chapter 6: Planning, Implementing, and Managing Microsoft Entra Conditional Access
Icon
Chapter 6: Planning, Implementing, and Managing Microsoft Entra Conditional Access
Icon
Planning Conditional Access Policies
Icon
Implementing Conditional Access Policy Assignments
Icon
Implementing Conditional Access Policy Controls
Icon
Implementing Session Management
Icon
Implementing Device-Enforced Restrictions
Icon
Implementing CAE
Icon
Creating a Conditional Access Policy from a Template
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
7
Chapter 7: Managing Risk Using Microsoft Entra ID Protection
Icon
Chapter 7: Managing Risk Using Microsoft Entra ID Protection
Icon
Implementing and Managing User Risk Policies
Icon
Implementing and Managing Sign-In Risk Policies
Icon
Implementing and Managing MFA Registration Policies
Icon
Monitoring, Investigating, and Remediating Risky Users
Icon
Monitoring, Investigating, and Remediating Risky Workload Identities
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
8
Chapter 8: Implementing Access Management for Azure Resources by Using Azure Roles
Icon
Chapter 8: Implementing Access Management for Azure Resources by Using Azure Roles
Icon
Creating Custom Azure Roles
Icon
Assigning Built-In and Custom Azure Roles
Icon
Evaluating Effective Permissions for a Set of Azure Roles
Icon
Assigning Azure Roles to Enable Microsoft Entra ID Login to Azure Virtual Machines
Icon
Configuring Azure Key Vault Role-Based Access Control (RBAC)
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
9
Chapter 9: Implementing Global Secure Access
Icon
Chapter 9: Implementing Global Secure Access
Icon
What Is GSA?
Icon
Deploying GSA Clients
Icon
Deploying Private Access
Icon
Deploying Internet Access
Icon
Deploying Internet Access for Microsoft 365
Icon
Enhancing Global Secure Access with Conditional Access
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
10
Chapter 10: Planning and Implementing Identities for Applications and Azure Workloads
Icon
Chapter 10: Planning and Implementing Identities for Applications and Azure Workloads
Icon
Selecting Appropriate Identities for Applications and Azure Workloads
Icon
Creating Managed Identities
Icon
Using a Managed Identity Assigned to an Azure Resource
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
11
Chapter 11: Planning, Implementing, and Monitoring the Integration of Enterprise Applications
Icon
Chapter 11: Planning, Implementing, and Monitoring the Integration of Enterprise Applications
Icon
Planning and Implementing Settings for Enterprise Applications
Icon
Assigning Appropriate Microsoft Entra Roles to Users to Manage Enterprise Applications
Icon
Designing and Implementing Integration for On-Premises Apps by Using Microsoft Entra Application Proxy
Icon
Designing and Implementing Integration for SaaS Apps
Icon
Assigning, Classifying, and Managing Users, Groups, and App Roles for Enterprise Applications
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
12
Chapter 12: Planning and Implementing App Registrations
Icon
Chapter 12: Planning and Implementing App Registrations
Icon
Planning for App Registrations
Icon
Creating App Registrations
Icon
Configuring App Authentication
Icon
Configuring API Permissions
Icon
Creating App Roles
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
13
Chapter 13: Managing and Monitoring App Access Using Microsoft Defender for Cloud Apps
chevron up
Icon
Chapter 13: Managing and Monitoring App Access Using Microsoft Defender for Cloud Apps
Icon
Configuring and Analyzing Cloud Discovery Results by Using Defender for Cloud Apps
Icon
Configuring Connected Apps
Icon
Implementing Application-Enforced Restrictions
Icon
Configuring Conditional Access App Control
Icon
Creating Access and Session Policies in Defender for Cloud Apps
Icon
Implementing and Managing Policies for OAuth Apps
Icon
Managing the Cloud App Catalog
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
14
Chapter 14: Planning and Implementing Entitlement Management
Icon
Chapter 14: Planning and Implementing Entitlement Management
Icon
Planning Entitlements
Icon
Creating and Configuring Catalogs
Icon
Creating and Configuring Access Packages
Icon
Managing Access Requests
Icon
Implementing and Managing Terms of Use
Icon
Managing the Lifecycle of External Users
Icon
Configuring and Managing Connected Organizations
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
15
Chapter 15: Planning, Implementing, and Managing Access Reviews in Microsoft Entra
Icon
Chapter 15: Planning, Implementing, and Managing Access Reviews in Microsoft Entra
Icon
Planning for Access Reviews
Icon
Creating and Configuring Access Reviews
Icon
Monitoring Access Review Activity
Icon
Manually Responding to Access Review Activity
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
16
Chapter 16: Planning and Implementing Privileged Access
Icon
Chapter 16: Planning and Implementing Privileged Access
Icon
Planning and Managing Microsoft Entra Roles
Icon
Planning and Managing Azure Resources in PIM
Icon
Planning and Configuring Groups Managed by PIM
Icon
Managing the PIM Request and Approval Process
Icon
Analyzing PIM Audit History and Reports
Icon
Creating and Managing Break-Glass Accounts
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
17
Chapter 17: Monitoring Identity Activity Using Logs, Workbooks, and Reports
Icon
Chapter 17: Monitoring Identity Activity Using Logs, Workbooks, and Reports
Icon
Designing a Strategy for Monitoring Microsoft Entra
Icon
Reviewing and Analyzing Sign-In, Audit, and Provisioning Logs
Icon
Configuring Diagnostic Settings
Icon
Monitoring Microsoft Entra by Using KQL Queries in Log Analytics
Icon
Using Logs, Workbooks, and Reports to Monitor Identity Activity
Icon
Monitoring and Improving the Security posture by using the Identity Secure Score
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
18
Chapter 18: Planning and Implementing Microsoft Entra Permissions Management
Icon
Chapter 18: Planning and Implementing Microsoft Entra Permissions Management
Icon
Onboarding Azure Subscriptions to Permissions Management
Icon
Evaluating and Remediating Risks Relating to Azure Identities, Resources, and Tasks
Icon
Evaluating and Remediating Risks Relating to Azure’s Highly Privileged Roles
Icon
Evaluating and Remediating Risks Relating to the Permission Creep Index (PCI)
Icon
Configuring Activity Alerts and Triggers for Azure Subscriptions
Icon
Summary
Icon
Exam Readiness Drill – Chapter Review Questions
19
Chapter 19: Accessing the Online Practice Resources
Icon
Chapter 19: Accessing the Online Practice Resources
Icon
How to Access These Materials
Icon
Troubleshooting Tips
Icon
Back to the Book
Icon
Why subscribe?
20
Other Books You May Enjoy
Icon
Other Books You May Enjoy
Icon
Share Your Thoughts
Icon
Download a Free PDF Copy of This Book

Configuring Conditional Access App Control

Configuring Conditional Access app control within MDCA plays an important role in an enterprise security strategy. It allows organizations to monitor and control user activities in real time, ensuring that only authorized users can access sensitive data under defined conditions.

This aligns with the zero-trust security model, which operates on the principle of “never trust, always verify.” By enforcing real-time monitoring and control, organizations can prevent unauthorized access and data exfiltration.

For example, let’s say you want to configure a policy to prevent or block downloads from devices outside your network. To create this Conditional Access app control policy, follow these steps:

  1. Navigate to the Entra admin center (https://entra.microsoft.com).
  2. Expand Identity, expand Protection, and then select Conditional Access.
  3. On the Overview blade, click New policy.
  4. Enter a name.
  5. Under Assignments...
Visually different images
CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Microsoft Identity and Access Administrator SC-300 Exam Guide
End of Section 13
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist download Download options
font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon