Valitse sivuston käyttötapa: Mobiili

Koronavirus vaikuttaa monen koulutussuunnitelmiin. Katso etäkoulutukset täältä ja osallistu kyselyymme: COVID-19 ja täydennyskoulutus

A John Craddock 5-day Hands-on Masterclass: Microsoft Identity

5 days
3 625 EUR excl. VAT (yht. 4 495 EUR)
Avoin koulutus
Helsinki, Verkossa/etänä
Start dates
3 625 EUR
3 625 EUR


Kaikki Sulavan koulutukset järjestetään toistaiseksi online-toteutuksina. Online-koulutusten oppimiskokemus on normaalin luokkakoulutuksen kaltainen eli näet ja kuulet kouluttajan, ja käytössäsi on sama koulutusmateriaali sekä harjoitusympäristö. Osallistujat saavat ohjeet miten koulutukseen voi osallistua sujuvasti esimerkiksi kotoa.

Vauhdilla kiitävä raitiovaunu Stockmannin edessä

A John Craddock 5-day Hands-on Masterclass: Microsoft Identity

Come to this Masterclass written and delivered by John Craddock. Discover how the identity solutions offered by Azure Active Directory, on-premises AD FS and AD will help you build identity systems for the future using protocols that include OpenID Connect and OAuth 2.0. In the Masterclass you will learn how to authenticate and provide authorization factors to applications that can be located on-premises or in the cloud. The source of identity of the users could be from you own corporate network, your Azure AD domain, a partner organization and/or a social identity provider such as Facebook or Google.

The class provides detailed learning through the extensive use of hands-on labs. Attendees will not only learn the fundamentals and principles, but also learn how-to deploy and troubleshoot the solutions. In-depth learning will be gained through the use tools, such as Fiddler, to analyse and understand the protocol flows.

Course contents


After a comprehensive introduction to today’s identity challenges and solutions you will learn the details of the authentication protocols. This in-depth coverage of the protocols will allow you troubleshoot any problems you may encounter when deploying solutions. As we go through the hands-on labs you will be expected to troubleshoot any problems you may encounter.

Day 1 hands-on labs include:

  • Creating an Azure Active Directory
  • Capturing and analysing HTTP/HTTPS sessions using Fiddler
  • Enabling Kerberos on a website
  • Troubleshooting Kerberos network traffic using Wireshark
  • Tracing the WS-federation protocol


After completing our investigation of the protocols, you will learn how to configure the Azure Active Directory to meet your requirements. You’ll discover how to manage the Azure AD through the Azure Portal, using PowerShell and the GraphAPIs. After adding custom domains and branding to your Azure AD, you will see how to enhance security and the user experience using role based access control, self-service password resets, MFA and Azure AD Identity Protection.

Day 2 hands-on labs include:

  • Investigating OpenID Connect
  • Adding custom domains to Azure AD
  • Branding your portal
  • Managing Azure AD with PowerShell
  • Using Graph Explorer
  • Scoped role based access control
  • Self-service password resets
  • Enabling Multi-Factor Authentication


You will start the day by deploying Azure AD Connect to synchronize on-premises AD users to Azure AD. We will then investigate pass-through authentication and the new SSO capabilities provided by Azure AD Connect. You will learn about the SSO capabilities of Windows 10 when it is joined to Azure AD and how Windows Hello can eliminate the need for passwords. At this stage, we have a solid identity infrastructure and now it’s time to make applications available to our users. You will start by deploying a SaaS app to your users; configuring groups, assignments and self-service application management. You will then deploy your own applications into Azure AD using both WS-Federation and OpenID Connect / Oauth2.0.

Day 3 hands-on labs include:

  • Installing and configuring synchronization with Azure AD Connect
  • Investigating pass-through authentication
  • Working with SaaS applications
  • Self-service application management
  • Configuring a WS-Federation App with Azure AD
  • Configuring an Open ID Connect / OAuth 2.0 app with Azure AD


The day start by diving deeper into the application model and learning about managing permissions, roles, groups, delegation and consent. You will discover how to turn your application into a multi-tenant app and make it available to all users from all Azure AD tenants. You will the go on to work with the Azure AD Application Proxy to publish applications to the Internet. We will end the day by configuring AD FS and the Web Application Proxy on Server 2016.

Day 4 hands-on labs include:

  • Managing permission roles and groups
  • Defining WebAPI permissions
  • Investigating consent
  • Multi-tenant applications
  • Publishing a claims-aware application with the Azure AD application proxy
  • Publishing an application using Windows Authentication via Kerberos Constrained Delegation
  • Configuring AD FS and the WAP


As we now have AD FS operational, the day starts by using Azure AD Connect to establish federated SSO for our on-premises AD users. You will then learn about managing AD FS claims and how to configure an OpenID Connect /OAuth 2.0 application to work with Azure AD. We will then stretch our boundaries and see how Azure AD can open access to consumers (B2C) and businesses (B2B).

Day 5 hands-on labs include:

  • Enabling Federated SSO
  • Installing and configuring an OpenID Connect app on AD FS
  • Managing claims AD FS claims rules
  • Creating a B2C directory
  • Multi-tenant versus federated applications
  • Managing B2B invitations and guest users
  • Taking over an unmanaged tenant

Want to know more?

For more information about A John Craddock 5-day Hands-on Masterclass: Microsoft Identity, please submit an information request below and the school will contact you with further information.


The class is primarily aimed at IT professionals. However, application developers who are tasked with integrating authentication and authorisation with Microsoft Azure and/or on-premises AD FS will greatly benefit from the detailed coverage. Code development is not included in the class, but you will learn about all of the configuration requirements.


John Craddock is a Microsoft MVP and has been involved in Microsoft solutions since the early days of Windows and Windows NT. John spoke on Active Directory at the Windows 2000 launch events and has focused on identity solutions since the first release of AD FS for Windows Server 2003. His role as an identity and security architect has seen him involved in many IT projects for industry leaders including Microsoft, the UK Government and multi-nationals. He is an international speaker who has featured at many events throughout the world.


3625 € + VAT 24 %

Sulava Facebookissa

Ota yhteyttä

Haluatko tietää lisää koulutuksesta A John Craddock 5-day Hands-on Masterclass: Microsoft Identity? Täytä yhteystietosi, niin koulutuksen järjestäjä ottaa sinuun yhteyttä.


Sulava – IT-koulutus, Microsoft, Sharepoint

Sulava Oy

Kaikki Sulavan koulutukset järjestetään toistaiseksi online-toteutuksina. Online-koulutusten oppimiskokemus on normaalin luokkakoulutuksen kaltainen eli näet ja kuulet kouluttajan, ja käytössäsi on sama koulutusmateriaali sekä harjoitusympäristö. Osallistujat saavat ohjeet miten koulutukseen voi osallistua sujuvasti esimerkiksi kotoa. Sulava Oy on Microsoftin virallinen koulutuskumppani. Kouluttajat ovat...

Lue lisää kouluttajasta Sulava ja katso koulutustarjonta täältä



Vuorikatu 14 B, 3. kerros
00100 Helsinki

 Näytä puhelinnumero Linkki kotisivulle

Arvioi tämä koulutus ensimmäisenä.

Arvioinnit kouluttajasta
Perustuu 25 arviointiin
Näytä kouluttajan kaikki arvioinnit

Saadaksesi lisätietoa aiheesta A John Craddock 5-day Hands-on Masterclass: Microsoft Identity täytä seuraavat tiedot:

Saatat olla kiinnostunut myös näistä: