In this challenge, you will implement and govern an Azure Active Directory (Azure AD) environment. First, you will synchronize accounts from Active Directory Domain Services (AD DS) to a new Azure AD tenant, and then you will implement self-service password reset (SSPR). Next, you will implement Azure Policy and role-based access control (RBAC), and then you will implement a user-assigned managed identity for an Azure virtual machine. Finally, you will enable per-user multi-factor authentication (MFA). Note: Once you begin the challenge, you will not be able to pause, save, or return to your challenge. Please ensure that you have set aside enough time to complete the challenge before you start.
Learning Objectives
In this challenge, you will implement and govern an Azure Active Directory (Azure AD) environment. First, you will synchronize accounts from Active Directory Domain Services (AD DS) to a new Azure AD tenant, and then you will implement self-service password reset (SSPR). Next, you will implement Azure Policy and role-based access control (RBAC), and then you will implement a user-assigned managed identity for an Azure virtual machine. Finally, you will enable per-user multi-factor authentication (MFA). Note: Once you begin the challenge, you will not be able to pause, save, or return to your challenge. Please ensure that you have set aside enough time to complete the challenge before you start.