Microsoft Information Protection Administrator (SC-400)
Leer hoe je gevoelige informatie binnen Microsoft 365 beveiligt en beschermt tegen datalekken en onbedoeld verlies. Deze training richt zich op gegevensbescherming en governance, inclusief het implementeren van beveiligings- en nalevingsmaatregelen.
Leerdoelen
Na deze training kun je:
- Gevoeligheidslabels gebruiken en configureren.
- Data Loss Prevention (DLP)-beleid instellen.
- Berichten beveiligen met Office 365-encryptie.
- Gegevensretentiebeleid toepassen.
Voor Information Protection Administrators die verantwoordelijk zijn voor het vertalen van compliance-eisen naar technische implementaties. Je werkt samen met IT-teams, juridische afdelingen en compliance-experts om gegevensbeschermingsbeleid te implementeren en naleving te waarborgen.
Je hebt basiskennis van:
- Microsoft beveiligings- en compliance-oplossingen.
- Gegevensbescherming en governanceconcepten.
- Cloud computing en Microsoft 365-producten.
Module 1: Implement an identity management solution
Learn to create and manage your initial Azure Active Directory (Azure AD) implementation and configure the users, groups, and external identities you will use to run your solution.
Lessons
Implement Initial configuration of Azure ADCreate, configure, and manage identitiesImplement and manage external identitiesImplement and manage hybrid identity
Lab : Manage user rolesLab : Setting tenant-wide propertiesLab : Assign licenses to usersLab : Restore or remove deleted usersLab : Add groups in Azure ADLab : Change group license assignmentsLab : Change user license assignmentsLab : Configure external collaborationLab : Add guest users to the directoryLab : Explore dynamic groups
After completing this module, students will be able to:
Deploy an initail Azure AD with custom settingsManage both internal and external identitiesImplement a hybrid identity solution
Module 2: Implement an authentication and access management solution
Implement and administer your access management using Azure AD. Use MFA, conditional access, and identity protection to manager your identity solution.
Lessons
Secure Azure AD user with MFAManage user authenticationPlan, implement, and administer conditional accessManage Azure AD identity protection
Lab : Enable Azure AD MFALab : Configure and deploy self-service password reset (SSPR)Lab : Work with security defaultsLab : Implement conditional access policies, roles, and assignmentsLab : Configure authentication session controlsLab : Manage Azure AD smart lockout valuesLab : Enable sign-in risk policyLab : Configure Azure AD MFA authentication registration policy
After completing this module, students will be able to:
Configure and manage user authentication including MFAControl access to resources using conditional accessUse Azure AD Identity Protection to protect your organization
Module 3: Implement access management for Apps
Explore how applications can and should be added to your identity and access solution with application registration in Azure AD.
Lessons
Plan and design the integration of enterprise for SSOImplement and monitor the integration of enterprise apps for SSOImplement app registration
Lab : Implement access management for appsLab : Create a custom role to management app registrationLab : Register an applicationLab : Grant tenant-wide admin consent to an applicationLab : Add app roles to applications and recieve tokens
After completing this module, students will be able to:
Register a new application to your Azure ADPlan and implement SSO for enterprise applicationMonitor and maintain enterprise applications
Module 4: Plan and implement an identity governancy strategy
Design and implement identity governance for your identity solution using entitlement, access reviews, privileged access, and monitoring your Azure Active Directory (Azure AD).
Lessons
Plan and implement entitlement managementPlan, implement, and manage access reviewsPlan and implement privileged accessMonitor and maintain Azure AD
Lab : Creat and manage a resource catalog with Azure AD entitlementLab : Add terms of use acceptance reportLab : Manage the lifecycle of external users with Azure AD identity governanceLab : Create access reviews for groups and appsLab : Configure PIM for Azure AD rolesLab : Assign Azure AD role in PIMLab : Assign Azure resource roles in PIMLab : Connect data from Azure AD to Azure Sentinel
After completing this module, students will be able to:
Mange and maintain Azure AD from creation to solutionUse access reviews to maintain your Azure ADGrant access to users with entitlement management