Active Directory Federation Services - Administering and Configuring ADFS and Claims (ADF)

Active Directory Federation Services and Claims workshop is the best way to learn how to implement the most business oriented server role! Federated Identity and claims based applications are becoming more and more popular – they simplify the resource access both for your employees and business partners.
When the world becomes more focused on solving ‘Bring Your Own Device’ issues, it is time to become more up to date with the newest technology capabilities: Active Directory Federation Services and Active Directory Domain Services have been extended to comprehend the most popular mobile devices and provide conditional access and access policies. With these policies in place, you can control access based on users, devices, locations, and access times.
Come and learn how to establish partnerships with your business parties, how to implement Single Sign On to access corporate resources, how to manage access to devices and how to implement capabilities to work from anywhere in the world!

At the end of the course you will be able to:

• Design AD Federation Services infrastructure and identify the implementation requirements
• Deploy AD Federation Services to provide claims-aware authentication in a single organization
• Implement AD Federation Services high availability
• Deploy Web Application Proxy (previous: AD Federation server proxy) to securely publish web applications
• Deploy Device Registration Service to enable control of user devices
• Deploy Claims-enabled ACLs on File Servers

Module 1:

• Introduction
• Legacy and modern authentication protocols
• What are Claims
• Dynamic Access Controle)Services Accounts threats, attack and working with GMSA

Module 2:

• PKI overview and ADFS certificate consideration
• Working with certificates and ADFS
• Designing Modern Authentication

Module 3:

• ADFS Overview
• Installation, availability and security consideration
• Working with ADFS Cluster

Module 4:

• Working with ADFS –claims aware applications
• SAML passive client flow
• ADFS Basics –Rules and Rule flow
• Configuring Issuing rules
• Claim rules language

Module 5:

• Thick applications, and working with multiple Relaying Parties
• Troubleshooting thick applications
• Additional attribute Stores
• Using groups in authorization rules

Module 6:

• Web Application Proxy
• Working with claims-aware application in WAP
• Configure pass-through application in WAP
• WAP advanced scenarios

Module 7:

• Modern ADFS customization
• Advanced troubleshooting ADFS
• Monitoring ADFS security and performance

Module 8:

• Working with MFA
• Enabling Device Registration Service
• Windows Hello for business
• Integration with Azure cloud

• Enterprise administrators
• infrastructure architects
• security professionals
• systems engineers
• network administrators
• ITprofessionals
• security consultants
• other people responsible for implementing network and perimeter security

• This course is intended for IT professionals who would like to implement and administer Active Directory Federation Services within the organization
• Prerequisite for the course is to have a medium level knowledge about Active Directory Domain Services
• To attend this training, you should have good hands-on experience in administering Windows infrastructure