Hybrid identity allows corporations to have identity solutions that span on-premises and cloud-based solutions. This capability provides unified authentication and authorization capabilities to resources regardless of their location.

Organizations today are adding cloud application to their existing on-premises apps, which makes them hybrid companies. They need to have identity solutions that authenticate and authorize users to access applications and the underlying data in a secure way. An on-premises Active Directory solution isn't enough; extending to the cloud with Azure Active Directory (Azure AD), part of Microsoft Entra is necessary to provide a hybrid identity solution.

In this module, you'll implement and manage a hybrid identity solution using Azure Active Directory and Azure AD Connect. You'll learn how to use the password hash synchronization (PHS) and pass-through authentication (PTA) to ensure you have the right authentication method for your needs. Then you'll explore how single-sign-on (SSO) enables your users to access the apps they need while using secure access methods. Next, you'll see how to connect to other existing external directories with Active Directory Federated Services (ADFS). Finally, you'll learn how Azure AD Connect Health monitors the health of your identity solution and how to troubleshoot some common synchronization errors.

By the end of this module, you'll be able to implement and manage a hybrid identity solution.

Learning objectives

In this module, you'll:

  • Plan, design, and implement Azure AD Connect
  • Manage Azure AD Connect
  • Implement and manage password hash synchronization (PHS)
  • Implement and manage pass-through authentication (PTA)
  • Implement and manage Seamless Single Sign-On (Seamless SSO)
  • Implement and manage federation excluding manual AD FS deployments
  • Troubleshoot synchronization errors
  • Implement and manage Azure AD Connect Health