Chapter 2: Authentication and Security

Now that you have implemented your hybrid identity model, it is equally important to be able to assign access to applications and resources within your Microsoft 365 environment in a manner that is safe and secure, but also user-friendly. Azure AD Premium allows you to do this.

By the end of this chapter, you will be able to create Azure AD groups with dynamic membership rules, configure self-service password reset capabilities for users, and set up Multi-Factor Authentication (MFA). In addition, we will show you how to carry out access reviews to ensure that users have appropriate access.

We will cover these topics in the following order:

• Implementing Azure AD dynamic group membership
• Implementing Azure AD self-service password reset (SSPR)
• Implementing and managing Multi-Factor Authentication (MFA)
• Managing Azure AD access reviews