Clientele ➞

Microsoft Identity and Access Administrator [SC-300]


Duration: 4 Days


The Microsoft Identity and Access Administrator (SC-300) certification training course from CloudThat offers candidates proper training and relevant study material to prepare and successfully clear the SC-300 exam. This course provides IT Identity and Access Professional, along with IT Security Professional, with the knowledge and skills needed to implement identity management solutions based on Microsoft Azure AD, and it connected identity technologies. This course includes identity content for Azure AD, enterprise application registration, conditional access, identity governance, and other identity tools. The Microsoft Identity and Access Administrator designs, implements, and operates an organization’s identity and access management systems by using Azure Active Directory (Azure AD). They manage tasks such as providing secure authentication and authorization access to enterprise applications. The administrator provides seamless experiences and self-service management...Read more


After successful completion of this SC-300 exam training course, candidates will be able to:

  • Implement an identity management solution
  • Implement an authentication and access management solutions
  • Implement access management for apps
  • Plan and implement an identity governance strategy

Who Should Attend

The  Microsoft Identity and Access Administrator certification training course is for the Identity and Access Administrators who are planning to take the associated certification exam, or who are performing identity and access administration tasks in their day-to-day job. This course would also be helpful to an administrator or engineer that wants to specialize in providing identity solutions and access management systems for Azure-based solutions; playing an integral role in protecting an organization.


As the prerequisites of Microsoft exam SC-300, candidates should have prior knowledge and understanding of:

  • Security best practices and industry security requirements such as defense in depth, least privileged access, shared responsibility, and zero trust model.
  • Be familiar with identity concepts such as authentication, authorization, and active directory.
  • Have some experience deploying Azure workloads. This course does not cover the basics of Azure administration, instead the course content builds on that knowledge by adding security specific information.
  • Some experience with Windows and Linux operating systems and scripting languages is helpful but not required. Course labs may use PowerShell and the CLI.

Course Outline

Module 1: Implement an identity management solution

Learn to create and manage your initial Azure Active Directory (Azure AD) implementation and configure the users, groups, and external identities you will use to run your solution.


  • Implement Initial configuration of Azure AD
  • Create, configure, and manage identities
  • Implement and manage external identities
  • Implement and manage hybrid identity

Hands-On: Manage user roles
Hands-On: Setting tenant-wide properties
Hands-On: Assign licenses to users
Hands-On: Restore or remove deleted users
Hands-On: Add groups in Azure AD
Hands-On: Change group license assignments
Hands-On: Change user license assignments
Hands-On: Configure external collaboration
Hands-On: Add guest users to the directory
Hands-On: Explore dynamic groups

Module 2: Implement an authentication and access management solution

Implement and administer your access management using Azure AD. Use MFA, conditional access, and identity protection to manager your identity solution.


  • Secure Azure AD user with MFA
  • Manage user authentication
  • Plan, implement, and administer conditional access
  • Manage Azure AD identity protection

Hands-On: Enable Azure AD MFA

Hands-On: Configure and deploy self-service password reset (SSPR)

Hands-On: Work with security defaults

Hands-On: Implement conditional access policies, roles, and assignments

Hands-On: Configure authentication session controls

Hands-On: Manage Azure AD smart lockout values

Hands-On: Enable sign-in risk policy

Hands-On: Configure Azure AD MFA authentication registration policy

Module 3: Implement access management for Apps

Explore how applications can and should be added to your identity and access solution with application registration in Azure AD.


  • Plan and design the integration of enterprise for SSO
  • Implement and monitor the integration of enterprise apps for SSO
  • Implement app registration

Hands-On: Implement access management for apps

Hands-On: Create a custom role to management app registration

Hands-On: Register an application

Hands-On: Grant tenant-wide admin consent to an application

Hands-On: Add app roles to applications and receive tokens

Module 4: Plan and implement an identity governance strategy

Design and implement identity governance for your identity solution using entitlement, access reviews, privileged access, and monitoring your Azure Active Directory (Azure AD).


  • Plan and implement entitlement management
  • Plan, implement, and manage access reviews
  • Plan and implement privileged access
  • Monitor and maintain Azure AD

Hands-On: Create and manage a resource catalog with Azure AD entitlement

Hands-On: Add terms of use acceptance report

Hands-On: Manage the lifecycle of external users with Azure AD identity governance

Hands-On: Create access reviews for groups and apps

Hands-On: Configure PIM for Azure AD roles

Hands-On: Assign Azure AD role in PIM

Hands-On: Assign Azure resource roles in PIM

Hands-On: Connect data from Azure AD to Azure Sentinel

About The Trainer

A Microsoft certified trainer.

Course Fee


Upcoming Batches


Learn More

Field will not be visible to web visitor

Favorite Courses
No Favourites added yet.

Our Partners