Configuring the Azure Portal Settings, Microsoft Azure

Using PowerShell Commands- Understanding Azure Active Directory

Table 10.4 contains some of the PowerShell commands available for Azure AD. You must be using a newer version of PowerShell on your onsite servers or client machines. If you run into any issues trying to run these commands, please check out a newer version of Microsoft PowerShell on Microsoft’s website.

TABLE 10.4 PowerShell commands for Azure AD

Add- AzureADAdministrativeUnit MemberThis command allows you to add an administrative unit member.
Add- AzureADApplicationPolicyYou can use this command to add an application policy.

TABLE 10.4 PowerShell commands for Azure AD (continued)

Add- AzureADScopedRoleMembershipThis command allows you to add a scoped role membership to an administrative unit.
Add- AzureADServicePrincipalPolicyYou can use this command to add a service principal policy.
Get- AzureADAdministrativeUnitThis command allows you to view an administrative unit.
Get- AzureADAdministrativeUnit MemberYou can use this command to view a member of an administrative unit.
Get- AzureADApplicationPolicyThis command allows you to view an application policy.
Get- AzureADDirectorySettingYou can use this command to view a directory setting.
Get- AzureADDirectorySetting TemplateThis command allows you to view a directory setting template.
Get- AzureADObjectSettingYou can use this command to view an object setting.
Get- AzureADPolicyThis command allows you to view a policy.
Get- AzureADPolicyAppliedObjectYou can use this command to view the objects to which a policy is applied.
Get- AzureADScopedRoleMembershipThis command allows you to view a scoped role membership from an administrative unit.
Get- AzureADServicePrincipalPolicyYou can use this command to view the service principal policy.
New- AzureADAdministrativeUnitThis command allows you to create an administrative unit.
New- AzureADDirectorySettingYou can use this command to create a directory settings object.
New- AzureADObjectSettingThis command allows you to create a settings object.

Summary

New- AzureADPolicy You can use this command to create a policy. Remove- AzureADAdministrativeUnit This command allows you to remove an administrative unit.

Remove- AzureADAdministrativeUnit You can use this command to remove an

Member                                                                 administrative unit member.

Remove- AzureADDirectorySetting                      This command allows you to delete a directory setting in Azure Active Directory.

Remove- AzureADObjectSetting You can use this command to delete settings in Azure Active Directory.

Remove- AzureADPolicy    This command allows you to delete a policy. Remove- AzureADScopedRoleMembership You can use this command to remove a scoped role membership.

Set- AzureADDirectorySetting                                  This command updates a directory setting in

Azure Active Directory.

Set- AzureADObjectSetting                                 This command allows you to update object settings.

Set- AzureADPolicy                                                  You can use this command to update a policy.

Get- AzureADApplicationProxy This command retrieves the members of an ConnectorGroupMembers   Application Proxy connector group.

Summary

This chapter covered the basics of implementing Azure AD. I showed you all of the benefits and features of Azure AD in addition to the common questions and answers about Azure AD directly from Microsoft’s website.

You were introduced to the Azure AD dashboard and many of its different sections. I showed you how to create an Azure AD users account and an Azure AD group. I then talked about the Azure AD Password Reset option and how to configure that feature.

This chapter also covered the benefits of using the Azure AD Identity Protection feature, and I showed you how to add that feature to your subscription. You learned how to configure Identity Protection and set up an email address so that you can receive alerts.

You saw how you can set up a hybrid network and the importance of setting up an onsite network along with your Azure AD network.

This chapter then covered the various authentication methods and what each method can do for you. I also explained Azure AD Connect and how it can link your onsite AD with Azure AD.

I explained the benefits of using site- to-s ite VPN gateway connections. I showed you the requirements and how to set up and configure the components needed for site- to- site VPN gateway connections.

Exam Essentials

Understand the difference between Active Directory and Azure AD. Make sure you understand the features and benefits of using Azure AD. Not only is this important for taking the Microsoft exams, but it is also important to determine if Azure AD is the correct choice for your organization.

Understand the Q&As of Azure AD. This is very important for a couple of reasons. First, and most obvious, for the Microsoft exam you need to understand what Azure AD can and cannot do. Second, you need to make sure that Azure AD can handle all the services your organization is trying to provide.

Be able to use the Azure AD dashboard. You need to be able to use the Azure AD dashboard and know how to configure the various components for Azure AD. You also need to know how to access other dashboards (like the Azure AD Identity Protection dashboard) so that you can properly navigate Azure AD and its features.

Know how to set up and configure password resets. You should understand what the process is for password resets and how to configure different authentication methods. Understand how to verify the users by using text messages or emails for verification.

Understand Azure AD Identity Protection. Know how to add Azure AD Identity Protection to your Azure subscription. Make sure you know how to configure the different policies and how to set alerts for an Azure administrator.

Understand Azure AD Connect. Understand why we use Azure AD Connect. Azure AD Connect allows you to connect your onsite AD with Azure AD. This allows your user accounts and passwords to be replicated.

Be familiar with site- to- site VPN gateway connections. Know and understand what site- to- site VPN gateways can do for your company. Site-t o- site VPN gateway connections allow you to connect both of your networks over a secure IPsec/IKE VPN tunnel.

Know the Azure AD PowerShell commands. Microsoft announced that all of their Microsoft exams would start asking questions about using PowerShell. This is going to be true for all chapters in this book, so make sure you understand the basic Azure AD PowerShell commands.

You may also like...

Leave a Reply

Your email address will not be published. Required fields are marked *