In this video, Pete Zerger explains the lab requirements involving Azure AD Premium and Microsoft Enterprise Mobility + Security (EMS). Learn how to follow the demonstrations in the course with a trial subscription or non-production tenant.
- Here are the lab resources necessary to duplicate the demos and other activities described in this course. A Windows 2016 virtual machine configured as a domain controller, a Windows 10 current branch virtual machine joined to your active directory lab domain, a second Windows 10 VM in a workgroup configuration. This makes for a convenient non-compliant device for your testing. No specific virtualization platform is required and all VMs should have internet access on ports 80 and 443.
Your exploration will be more interesting if your active directory contains at least a few user accounts. I provide a link to a script to auto-create a few dozen users in the resources document that accompanies this course. You'll need to sign up for some trial subscriptions. A Microsoft Azure trial, Office 365 E3, and Microsoft Intune. An Azure trial requires a credit card but you will not be charged as the trial does not auto-renew.
Links to the signup page for all of these trials is included in the resources document that accompanies this course. Finally, buy a domain name. It makes setting up the cloud trials and the advanced scenarios in this course much easier. Good luck.
In this course—the first in the series—Microsoft MVP Pete Zerger takes you through the basics of setting up endpoint protection. He begins by explaining how to set up Azure Active Directory Premium. Next, he goes into enabling multi-factor authentication, followed by setting conditions for secure access. To wrap up, Pete covers managing mobile devices with Intune, and publishing applications with Azure AD App Proxy.
- Setting up Azure Active Directory for an organization
- Enabling user-level and application-level multi-factor authentication
- Setting conditions for secure access
- Planning a mobile device management (MDM) strategy
- How Intune (standalone) MDM works
- How Intune mobile application management works
- Publishing applications with Azure AD App Proxy
- Assigning users and groups