"Vi hjelper deg å nå dine kompetansemål i 2017"

NIC MasterClass: Microsoft Identity solutions with Azure AD, on-premises ADFS and AD with John Craddock

Kursavgift: kr 30 000 | Varighet: 5 dager


This Masterclass is a high-energy, action packed event, crammed with solid information and tips. The MasterClass is written and delivered by John Craddock, and during 5-days he will help build your knowledge and consolidate your new skills with over 35 hands-on labs.
Discover how the identity solutions offered by Azure Active Directory, on-premises AD FS and AD will help you build identity systems for the future using protocols that include OpenID Connect and OAuth 2.0.

In the Masterclass you will learn how to authenticate and provide authorization factors to applications that can be located on-premises or in the cloud. The source of identity of the users could be from you own corporate network, your Azure AD domain, a partner organization and/or a social identity provider such as Facebook or Google. ? The class provides detailed learning through the extensive use of hands-on labs.

Attendees will not only learn the fundamentals and principles, but also learn how-to deploy and troubleshoot the solutions. In-depth learning will be gained through the use tools, such as Fiddler, to analyse and understand the protocol flows. Microsoft Identity solutions with Azure Active Directory, on-premises AD FS and AD


The class is primarily aimed at IT professionals. However, application developers who are tasked with integrating authentication and authorisation with Microsoft Azure and/or on-premises AD FS, will greatly benefit from the detailed coverage.
Code development is not included in the class, but you will learn about all of the configuration requirements.

What others said about this training

"I believe this is the most useful course I have ever attended! John is very good at conveying the concepts and it is easy to see that he has solid knowledge and experience. He is also really taking the time to explain, not just rushing through hundreds of slides. Also, very many hands-on labs which was very good."

About John Craddock, instructor and author
John Craddock has designed and implemented computing systems ranging from high-speed industrial controllers through to distributed IT systems with a focus on security and high-availability. John is and has been a key player in many IT projects for industry leaders including Microsoft, the UK Government and multi-nationals that require optimized IT systems. He has developed technical training courses that have been published worldwide, co-authored a highly successful book on Microsoft Active Directory Internals, he presents regularly at major international conferences including Ignite, TechEd, TechDays and European summits. 


Day 1

After a comprehensive introduction to today’s identity challenges and solutions you will learn the details of the authentication protocols. This in-depth coverage of the protocols will allow you troubleshoot any problems you may encounter when deploying solutions.

Day 1 hands-on labs include:
  • Creating an Azure Active Directory
  • Installing and using Fiddler
  • Enabling Kerberos on a website
  • Tracing the WS-federation protocol
  • Investigating OpenID Connect

Day 2

After completing our investigation of the protocols, you will learn how to configure the Azure Active Directory to meet your needs. You’ll discover how Azure AD Identity Protection and Privileged Identity Management enhances security for your Azure AD tenant. Through synchronizing users from an on-premises AD, you will discover how SaaS applications can be made available to on-premises and cloud users. You will see the options for configuring password synchronization and Pass-through authentication.

Day 2 hands-on labs include:
  • Adding custom domains to Azure AD
  • Self-service password resets
  • Enabling Multi-Factor Authentication Role based access control
  • Branding your portal
  • Managing Azure AD with PowerShell
  • Installing and configuring synchronization with Azure AD
  • Connect Investigating pass-through authentication

Day 3

You will start the day deploying a SaaS app to your users and configuring groups, self-service group management, and self-service application management. You will then deploy your own applications into Azure AD using both WS-Federation and OpenID Connect / Oauth2.0. You will then learn about managing permissions, roles, groups, delegation and consent. ?

Day 3 hands-on labs include:
  • Working with SaaS applications
  • Groups and self-service group management
  • Self-service application access and delegation
  • Configuring a WS-Federation App with Azure AD
  • Managing permission roles and groups
  • Defining WebAPI permissions
  • Investigating consent Multi-tenant Applications

Day 4

The day starts with you working with the Azure AD Application Proxy to publish applications to the Internet. After installing/configuring AD FS and the Web Application Proxy on Server 2016, you will then learn the options for enabling federated SSO with the on-premises AD. After configuring Federated SSO, you will install and configure an OpenID Connect / OAuth 2.0 application to work with AD FS.

Day 4 hands-on labs include:
  • Publishing a claims-aware application with the Azure AD application proxy
  • Publishing an application using Windows Authentication via Kerberos Constrained Delegation
  • Installing AD FS and the WAP
  • Enabling Federated SSO
  • Installing and configuring an OpenID Connect app on AD FS
  • Managing claims AD FS claims rules

Day 5

The day starts looking at device registration and conditional access for both Azure AD and AD FS. We will look at the elimination of passwords using Windows Hello. We will then stretch our boundaries and see how Azure AD can open access to consumers (B2C) and businesses (B2B).

Day 5 hands-on labs include:
  • Installing AD FS and the WAP
  • Enabling Federated SSO
  • Installing and configuring an OpenID Connect app on AD FS
  • Creating a B2C directory
  • Multi-tenant versus federated Applications

Bestill kurset her


Velg kurssted


    Velg dato

    kurs merket med * har startgaranti


    Mailen er sendt:

    Ditt tips er registrert og sendt!
    Vi håper snarlig å se deg på kurs hos oss!


    OBS! Vi har problemer med å sende ditt tips!

    Vi anbefaler deg å sjekke om du har skrevet inn en gyldig mailadresse.

    Tips sjefen

    Lyst til å delta på dette kurset, men må overbevise sjefen først?

    Glasspaper har laget en tips funksjon, som gjør det enklere for deg å overbevise din sjef om at dette kurset er perfekt for deg.
    Det eneste du trenger å gjøre er å fylle ut kontaktinformasjon, så sender vi relevant informasjon om kurset rett til dine utvalgte kontaktpersoner.
    Bruk gjerne funksjonen til å tipse venner og kollegaer om at dette er et nyttig kurs for dem

    Kontakt oss


    Hroar Henriksen

    916 70 066


    Glasspaper er kåret til Årets Microsoft Kurspartner 2017 - dette er åttende år på rad vi mottar denne hedersprisen