Vi tilbyr unike MasterClasser på Microsoft Security.
Kursene er utviklet av Paula Januszkiewicz, Enterprise Security MVP

MasterClass: Administering and Configuring Active Directory Federation Services and Claims

Kursavgift: kr 18 000 | Varighet: 3 dager


Active Directory Federation Services and Claims workshop is the best way to learn how to implement the most business oriented server role!
Federated Identity and claims based applications are becoming more and more popular – they simplify the resource access both for your employees and business partners. The course focuses on implementation scenarios, including practice in the newest technologies and solutions delivered with Windows Server 2012 R2. When the world becomes more focused on solving ‘Bring Your Own Device’ issues, it is time to become more up to date with the newest technology capabilities: Active Directory Federation Services and Active Directory Domain Services have been extended to comprehend the most popular mobile devices and provide conditional access and access policies. With these policies in place, you can control access based on users, devices, locations, and access times. Come and learn how to establish partnerships with your business parties, how to implement Single Sign On to access corporate resources, how to manage access to devices and how to implement capabilities to work from anywhere in the world! This course is intended for IT professionals who would like to implement and administer Active Directory Federation Services within the organization. Prerequisite for the course is to have a medium level knowledge about Active Directory Domain Services. All exercises are based on Windows Server 2012 R2, Windows 8.1 and Windows Server 2016, Windows 10.


Enterprise administrators, infrastructure architects, security professionals, systems engineers, network administrators, IT professionals, security consultants and other people responsible for implementing network and perimeter security.


To attend this training, you should have good hands-on experience in administering Windows infrastructure.


At the end of the course you will be able to:
    1. Design AD Federation Services infrastructure and identify the implementation requirements
    2. Deploy AD Federation Services to provide claims-aware authentication in a single organization
    3. Implement AD Federation Services high availability
    4. Deploy Web Application Proxy (previous: AD Federation server proxy) to securely publish web applications
    5. Deploy Device Registration Service to enable control of user devices
    6. Deploy Claims-enabled ACLs on File Servers

    Day 1

    Module 1
    • Introduction
    • What are Claims
    • Dynamic Access Control
    • LAB: Dynamic Access Control in 2016
    • LAB (optional): DAC and Groups
    Module 2
    • What are current authentication mechanism in use
    • LAB: Working with SPN
    • Services Accounts – threats and gMS
    • LAB: Enabling gMSA creation
    • LAB (optional): Service credentials recovery (Windows)
    • LAB (optional): IIS app pool password recovery
    • PKI: Quick Overview of certification services – internal and 3rd party
    • LAB: Requesting certificates
    • LAB: Installing ADFS

    Day 2

    Module 3
    • Designing Modern Authentication
    • ADFS Overview
    • LAB (optional/demo): Installing ADFS Cluster
    Module 4
    • Working with ADFS – enable applications
    • LAB: Install Simple Claims applications
    • LAB (optional): Verify application config
    • ADFS Basics – Rules and Rule flow
    • LAB: Configuring Issuing rules
    Module 5
    • Thick applications, and working with multiple Relaying Parties
    • LAB: Configuring Dynamics CRM
    • LAB: Testing with Outlook
    • LAB (optional): Testing with Windows 10
    • Attribute Stores
    • LAB: Configuring application Store
    • LAB: Configuring authorization rules
    • LAB (optional): Using groups in authorization rules

    Day 3

    Module 6
    • Web Application Proxy
    • LAB: Installing WAP
    • LAB: Configuring ADFS publishing
    • LAB: Configuring Claims-aware application
    • LAB (optional): Configure via application
    • LAB (optional): Configure pass-through application
    Module 7
    • Customizing ADFS
    • LAB: ADFS Customization
    • Troubleshooting ADFS
    • LAB: ADFS Troubleshooting
    • Working with MFA
    Module 8
    • Enabling Device Registration Service
    • LAB: Enabling Device Registration Service and working with claims
    • Summary and review
    • Exchange and claims (additional content)
    • SharePoint and claims (additional content)
    • Work Folders (additional content)


    Exercises, presentation slides with notes.

Epost mottat

Du er nå meldt på nyhetsbrevlisten

Epost mottat

Du er nå meldt på nyhetsbrevlisten

Bestill kurset her


Velg kurssted


    Velg dato

    kurs merket med * har startgaranti


    Mailen er sendt:

    Ditt tips er registrert og sendt!
    Vi håper snarlig å se deg på kurs hos oss!


    OBS! Vi har problemer med å sende ditt tips!

    Vi anbefaler deg å sjekke om du har skrevet inn en gyldig mailadresse.

    Tips sjefen

    Lyst til å delta på dette kurset, men må overbevise sjefen først?

    Glasspaper har laget en tips funksjon, som gjør det enklere for deg å overbevise din sjef om at dette kurset er perfekt for deg.
    Det eneste du trenger å gjøre er å fylle ut kontaktinformasjon, så sender vi relevant informasjon om kurset rett til dine utvalgte kontaktpersoner.
    Bruk gjerne funksjonen til å tipse venner og kollegaer om at dette er et nyttig kurs for dem

    Kontakt oss


    Hroar Henriksen

    916 70 066

    Personvern og cookies