Microsoft Entra ID Identity Management

Microsoft Entra Overview

Microsoft Entra is a product family that combines all Microsoft's identity and access capabilities: Microsoft Entra ID, Permissions Management, Verifiable Credentials, Protection and Identity Governance.
Microsoft Entra ID, previously known as Azure AD, provides identity and access management features for all applications registered with the service, acting as a single source of authentication and authorization.

• Microsoft Entra Overview
• Microsoft Entra ID Overview
• Microsoft Entra ID Editions
• Directories and Domains
• Add a custom domain to Microsoft Entra ID
• LAB: Microsoft Entra ID Overview

Entra ID Users, Groups and Devices

Different types of objects can be created and managed in Entra ID. User accounts are required for people to gain access to Microsoft online services. Groups can be used to control permissions to various resources. Devices allow you to manage your Windows and mobile systems.

• User Management
• Group Management
• Dynamic Groups
• Role Assignable Groups
• Group-based Licensing
• Group Settings
• Device Management
• LAB: Entra ID Users, Groups and Devices

Entra ID Features

Entra ID supports a broad range of authentication options. This allows you to configure the best sign-in method for every situation: from basic MFA to password-less authentication.

• Authentication Methods
• Multi-Factor Authentication
• Password Management
• Company Branding
• Custom Security Attributes
• LAB: Entra ID Features

Entra ID Roles

Roles allow you to control who is allowed to perform admin tasks in your cloud subscriptions. Entra ID contains a whole list of built-in roles and custom roles can be created. Users can be added to a role directly or you can use PIM to make them eligible for a role. In this case the user can request to be added to the role when needed, but acts as a normal, non-admin user otherwise.

• Entra ID Roles
• Administrative Units
• Privileged Identity Management (PIM)
• LAB: Entra ID Roles

Entra ID Protection

Securing your identities is a very important aspect of Entra ID. Identities are the new perimeter and should be protected as such. Entra ID provides various mechanisms to protect your accounts. Conditional access allows you to control under what circumstances users are allowed to access your resources. Identity Protection identifies risky users and risky sign-ins in your organization.

• Single Sign On
• Identity Protection
• Conditional Access
• LAB: Entra ID Protection

Entra ID Application Management

Entra ID provides a SSO experience for your users. They can access any application that is registered with Entra ID by signing in only once. Any application can be registered: third-party applications, on-prem applications, custom developed apps. With Entra ID Private Network Connectors you can publish on-prem web applications, providing secure access from the Internet.

• Application Management Overview
• Gallery Applications
• Entra ID Private Network Connectors
• Custom Developed Applications
• Managed Identities
• LAB: Entra ID Application Management

Entra Connect

With Entra Connect, you can synchronize your on-premises AD accounts to the cloud.

• Directory Synchronization
• Entra Connect
• Entra Sync Options: Entra Connect Sync versus Entra Cloud Sync
• Entra Connect Health
• LAB: Entra Connect

Entra ID Authentication Options

Once connected to your on-prem AD, Entra ID supports various sign-in options. This module will give you an overview of the possibilities and takes a closer look at the pros and cons of each method.

• Password Hash Sync
• Pass-Through Authentication
• Seamless Single Sign On
• Federation
• Compare Authentication Solutions
• LAB: Entra ID Authentication Options

Microsoft Entra External ID

As a company you can give external users access to your Microsoft services. These people can sign in with an Entra ID account from their organization or with an Internet identity, like a Facebook or Google account. You can control the identity providers you want to support and what external users can do in your environment.

• External Identities Overview
• Identity Providers
• Microsoft Entra External ID for Business Guests (B2B)
• Guest Access
• Cross-Tenant Sync
• B2B Direct Connect
• Microsoft Entra External ID for Customers (B2C)
• LAB: Microsoft Entra External ID

Entra ID Identity Governance

Managing both internal and external users while keeping your data safe can be a very difficult and complex task. With Entra ID identity governance you can make sure that the right people have the right access to the right resources. You can control and follow up on both the identity and access lifecycle.

• Entra ID Identity Governance Overview
• Entra ID Entitlement Management
• Access Packages
• Connected Organizations
• Access Reviews
• LAB: Entra ID Identity Governance