Join Scott M Burrell for an in-depth discussion in this video What you should know, part of Windows Server 2016: Active Directory Federation Services.
- [Narrator] In this course we'll be working with several roles and features of Windows Server 2016, some of which have some pretty strict prerequisites and are quite picky about their operating environments. To that end, there are a few things that you should be familiar with to get the most out of this course. The first thing is Active Directory. Every role and service we'll use in this course relies on Active Directory. Now you don't have to be an expert on all the inner workings of Active Directory to benefit from this course, but you should able to set up a domain controller and do basic configure of users and groups.
Also, certificates are incredibly important when discussing privacy, security, and identity. I will introduce the important properties of the certificates needed by the various roles and services, and when it's a good idea to buy your certificates from third party providers. But if you want to follow along with these demonstrations without having to purchase a lot of certificates, you will benefit from knowing how to manage your own certificate authority.
Additionally, you should know that some of these demonstrations have requirements that go beyond Hyper-V servers with buckets of RAM. Sections on claims-based authentication, web application proxies, and rights management services can all be done in a simple virtual machine test lab. But when it comes to federating a connection between your lab and Azure, you're going to need a few things. You're going to need ownership of the domain name used in your test and the ability to modify the public DNS for that domain.
You're also get to need to have a server in your test lab that can be found from the internet. For the demonstrations of these services, I leased servers hosted outside my network so that I could have the access I needed without introducing additional security concerns to the rest of my network. Finally, you should know that this course is only as beneficial as you make it. I will use an example of a hotel with an independent company running the in-house restaurant, but as you go through these videos, you should consider your own organization and where these identity services can be applied to improve the security of your network and the convenience of your users.
This is probably the most important thing that you can do to get the most out of this course.
- Installing and configuring ADFS
- Configuring multi-factor authentication
- Integrating Azure, Office 365, devices, and Microsoft Passport
- Implementing Web App Proxy (WAP)
- Installing and configuring AD Rights Management Service