MY NAME IS ED BAKER. A REGIONAL 
-- TRAINER AND LEADER FOR THE U. 
K. WE'RE GOING TO COVER TODAY THIS 
IS A 75 MINUTE SESSION. THERE IS 
A LOT OF 75 MINUTES SESSION, THIS 
IS 757. THIS EXAM IF IT DOESN'T 
ALREADY, HAVE PERFORMANCE BASED 
TESTING WHICH I WILL GO EXPLAIN 
AND GO THROUGH. WHAT ARE WE GOING 
TO DO TODAY? THE IDEA I TALK ABOUT 
THE EXAM ITSELF, HELP YOU TO PREPARE 
FOR THE EXAMINE, GIVE YOU KEY INFORMATION 
ON WHAT WILL BE EXAMINED. IT'S NOT 
INTENDED FOR YOU TO COME HERE AND 
GET ANSWERS AND GO FROM THIS ROOM 
INTO AN EXAM ROOM. IT'S AN OVER 
ON THIS EXAM. AND THE THINGS WE 
SHOULD BE COVERING AND THE AREAS 
YOU SHOULD BE COVERING. BEFORE I 
GO INTO THIS, I WOULD LIKE TO ASK 
IF ANYONE HERE HAS CERTIFICATION. 
IF YOU HAVEN'T TAKEN ADVANTAGE, 
GET AN ARM BAND, YOU CAN GET INTO 
THE LOUNGE WHERE THERE'S WIFI, AND 
SNACKS. WHERE THE EXAMS CERTIFICATION 
ARE TAKEN. ANYONE TAKEN AN EXAM 
HERE THIS WEEK? I WELT ASK HOW YOU 
DID. THEY'RE FREE. IF YOU WALK UP 
TELL YOU MAY BE ABLE TO GET A SLOT 
THAT'S A NO SHOW. THERE'S EXAMS. 
ANYONE GOT ANY OF THE ROLL BASED 
EXAMS? THAT'S A LOT FEWER. THEY 
HAVE BEEN OUT FOR 12 MONTHS. THEY 
WERE RELEASED AT IGNITE LAST YEAR. 
WE HAVE THE MODERN WORKPLACE TRACK. 
THERE'S THE AZURE TRACK, THE DYNAMICS 
TRACK, OR THE BUSINESS APPLICATIONS 
TRACK, AND THE AZURE TRACK. THIS 
IS THE MODERN WORKPLACE CERTIFICATION 
TRACK. THERE'S FUNDAMENTALS LEVEL, 
WHICH IS THE MS900. WHICH IS A ONE 
HOUR EXAM. AND THERE'S ABOUT 40, 
50 QUESTIONS. IT'S NOT INTENDED 
TO BE FOR PEOPLE WHO REGULARLY WHO 
DO THINGS DAY-TO-DAY. IT'S FOR THOSE 
WHO NEED TO KNOW WHAT THE PRODUCT 
DOES. SOME ARE ASSOCIATE EXAMS. 
SOME SINGLE, AND SOME DOUBLE. THE 
CETFICATE SECURITY EXAM. THE REASON 
I'M TELLING YOU, YOU NEED TO HAVE 
ONE OF THE EXAMS OR ONE OF THE CERTIFICATION 
IN THE CENTRE. IT'S A PREREQUISITE 
TO GET THIS EXPERT LEVEL CERTIFICATION. 
RELEASED VERY REALIZED, THIS WEEK 
THERE ARE TWO NEW ONES. THEY'RE 
BOTH IN BEATER. THE CERTIFIED MICROSOFT 
DEVELOPER AND THE TEAMS ADMINISTRATOR, 
WHICH IS DIFFERENT FROM THE TEAM 
WORK ADMINISTRATOR. THE TEAM WORK 
ADMINISTRATOR IS SHARE POINT, ONE 
DRIVE AND TEAMS. THE TEAMS ADMINISTRATOR 
IS JUST THAT, IT'S JUST TEAMS. AND 
MANAGEMENT AND USAGE OF THE TEAM 
SERVICE AND TEAMS SERVICES AND APPLICATION. 
SO THE PEOPLE THAT MIGHT MICROSOFT 
ANTICIPATE THAT WILL BE TAKING THIS 
SET OF CERTIFICATION EXAMS OR THE 
ROLE IT'S INTEND FOR ARE THESE PEOPLE, 
PEOPLE WHO OPERATE AT THE TENANT 
LEVEL. WHO SETS THE DOMAINS, SERVICE, 
DECIDE WHETHER EXTERNAL SERVICES. 
THE IDENTITY AND POLICIES. DESIGNS 
THAT THE GUYS AND GIRLS TAKING THIS 
EXAM WILL HAVE LOTS OF EXPERIENCE 
OF TAKING THE WORKLOADS, MANAGING 
OF THESE ENVIRONMENTS, AND THAT'S 
WHY IT IS A REQUIREMENT TO HAVE 
THE ASSOCIATE -- ONE OF THE ASSOCIATE 
LEVEL EXAMS BEEN YOU -- BEFORE YOU 
SET IT. HAVING SAID THIS, THIS IS 
NOTHING WRONG IF THIS IS WHAT YOU 
DO, YOU WILL HAVE THE EXAMS, YOU 
WON'T GET THE CERTIFICATION UNLESS 
YOU TAKE ONE OF THE ON OR ABOUT 
ASSOCIATE ONES. WITHIN THIS TRACK, 
IF YOU PASS ON THE ONE CERTIFICATION 
REQUIRED ON THE LEFT-SIDE OF THE 
SCREEN, WHAT ARE WE TESTING, WHAT 
ARE MICROSOFT WANTING YOU
TO UNDERSTAND 
BEFORE YOU SIT THE EXAM. HISTORICALLY 
THE COURSES WOULD OVER 60 PERCENT. 
YOU'RE SUPPOSED TO COME IN 15 TO 
20 PERCENT AND THE TRAINER IS SUPPOSED 
TO HAVE THE REST OF THE KNOWLEDGE 
AND GUIDE YOU THROUGH IT. WHEREAS 
NOW THE COURSE MAP 100 PERCENT OF 
THE EXAM OBJECTIVES WHICH THEY NEVER 
USED TO DO. ALL OF THE ROLE BASED 
COURSES ROLL 100 PERCENT TO THE 
EXAMS. THAT DOESN'T MEAN THAT EVERY 
QUESTION WILL BE COVERED IN THE 
EXAM, IT WON'T. ALL OF THE CURRICULUM 
AND ITEMS WILL BE COVERED. EACH 
EXAM HAVE A OBJECTIVE DOMAINS. TODAY 
WE WILL DO THE TOP 100 TOMORROW 
I'M DOING THE 101, WHICH IS ONLY 
45 WE WILL GO THROUGH THE BOTTOM. 
THERE ARE FOUR AREA, MICRORR, USER 
IDENTITY, ACCESS AND AUTOTHEN INDICATION, 
AND WORKLOADS AND APPLICATIONS. 
YOU'RE EXPECTED TO HAVE EXPERIENCE 
AND KNOWLEDGE IN DOING THESE THING. 
NOWADAYS IF YOU SHREWD THE TESTING, 
IT'S NOT EASY TO PASS ONE OF THESE 
EXAMS UNLESS YOU HAVE EXPERIENCE 
HANDS ON USING THE PRODUCT. SO BEFORE 
IF YOU DON'T USE IT REGULARLY OR 
DON'T DO THESE SET UP SKILL, IT'S 
A IDEA TO GET INTO A TRIAL TENANT 
AND DO THE SET UP. EVEN TO TEXT 
TEND OF SETTING -- BUYING A SET 
UP DOMAIN. IT'S NOT THE SORT OF 
THING YOU DO ON A REGULAR BASIS. 
JUST TO REITERATION, YOU DON'T GET 
THE GRAY CERTIFICATION ON THE LEFT-SIDE 
UNTIL -- ON THE RIGHT SIDE UNTIL 
YOU HAVE PASSED ON THE RIGHT SIDE. 
EXAMS HAVEN'T CHANGED IN THE LENGTH 
OR THE STYLE OVER THE LAST FOUR 
OR TV YEARS. PERFORMANCE BASED TESTING 
HAVE BEEN ADDED. THEY ARE STILL 
BETWEEN 40 AND 60 ODD QUESTIONS. 
IN GENERAL, EXPECT THE EXAM TO TAKE 
ABOUT THREE HOURS WITH ALL OF THE 
BITS AT THE BEGINNING AND END. IF 
YOU TAKE AN EXAM IN NOT YOUR NATIVE 
LANG AND IN YOUR OWN COUNTRY, YOU 
HAVE EXTRA TIME ADDED FOR YOU, NORMALLY 
ABOUT HALF AN HOUR. YOU WILL HAVE 
TO CHECK IT WITH THE TEST CENTRE 
YOU'RE TAKING AT IT. AT THE EXPERT 
LEVEL, ENGLISH IS USED IN A WAY 
THAT MAY NOT BE NATURAL TO PEOPLE 
WHO ENGLISH IS THEIR NATURAL LANG. 
THERE ARE A LOTS AND LOTS OF EXAM 
TYPES. IF YOU GO TO THE MICROSOFT. 
COM LEARN WEBSITE AND GO TO THE 
EXAMS AND LOOK AT EXAMS OVERALL, 
YOU WILL SEE SHORT VIDEOS, GIVING 
YOU EXAMPLES OF INDIVIDUAL TYPES 
OF QUESTIONS. YOU DON'T EXPECT EVERYTHING 
TO BE A SINGLE ITEM OR MULTIPLE 
CHOICE. AND THERE ARE CASE STUDIES 
IN THIS EXAM. IT'S A BLOCK OF TEXT, 
WHICH LOTS OF THINGS THEY'RE EXPECTING 
YOU TO READ AND BETWEEN 5 AND 7 
QUESTIONS NORMALLY. IT'S NOT TIMED 
SEPARATELY. IT USED TO BE. YOU DON'T 
GET TIMED OUT ON YOUR CASE STUDY. 
AS ONE WHO HAS DONE HUNDREDS OF 
THESE THING, I RECOMMEND YOU DON'T 
READ THE CASE STUDY. READ THE QUESTION 
AND GO TO THE CASE STUDY TO FIND 
THE BITS YOU NEED. IT HAS A LOT 
OF TEXT. IF YOU READ IT, THE BEGINNING 
OF -- BEGINNING OF YOUR ONE OUT 
OF EIGHT QUESTIONS BY THE TIME YOU 
GET TO QUESTION THREE, YOU'RE GUARANTEED 
FORGOTTEN WHAT'S IN THE FIRST PART. 
READ THE BIT THAT APPLIES. SCAN 
THROUGH THE CASE STUDY TO FIND ALL 
OF THE INFORMATION RELATING TO THAT 
INDIVIDUAL QUESTION. THEY CAN BE 
COMPLEX CASE STUDIES. SOME OF QUESTIONS 
CAN BE A ONE SENTENCE QUESTION. 
SUCH AS YOU NEED TO DEPLOY THIS 
APP TAKING INTO ACCOUNT THE SECURITY 
REQUIREMENTS. YOU FIND THE SECURITY 
REQUIREMENTS, YOU SEARCH FOR APP 
ONE. IT MAKES QUICKER AND MUCH SIMPLER. 
BUT THEN AFTER YOUR FIRST FEW QUESTIONS, 
THE ODDS ARE IF YOU'RE GOING TO 
BE TAKING A ROLE BASED EXAMS, ONE 
OF THESE OR ONE OF THE OTHER, AND 
IT'S NOT IN BEATER, YOU WILL GET ONE 
OF THESE. IT WILL -- OR TWO OF THEM, 
IT WILL OPEN UP A PORTAL. YOU WILL 
SIGN IT AND IT GIVE YOU CONSIDER 
CREDENTIALS YOU WILL HAVE BETWEEN 
5 TO 10 TASKS. IT WILL SAY IN THE 
FORMAT OF A NORMAL QUESTION, DO 
THIS. YOU HAVE TO DO IT. IT'S PROVING 
THAT YOU CAN DO WHAT THE JOB SUGGESTS 
YOU NEED TO DO. MICROSOFT ARE NOT 
PRESCRIPTIVE HOW YOU DO. THERE ARE 
NORMALLY THREE OR FOUR WAYS OF DOING 
THINGS. THIS ISN'T A SIMULATION 
IT'S A LIVE SYSTEM. IT'S A TENANT 
FOR THE EXAM WITH USERS AND GROUPS. 
ALL YOU NEED TO DO IS GO AND DO. 
IF YOU HAVE ACCESS TO THE POWER 
SHELL, IN AZURE YOU DO, BECAUSE 
YOU HAVE THE COULD, IF THIS IS AN 
AZUURE QUESTION, YOU COULD DO CLOUD 
SHARE. YOU DON'T HAVE TO DO THINGS 
IN A PARTICULAR WAY. WHICH IS A 
GOOD TIME TO MENTION MICROSOFT 365 
YOU CAN DO THINGS IN DIFFERENT PORTAL. 
IF YOU DO THINGS IN M365 PORTAL, 
THEY APPLY TO THE WHOLE TENANT. 
IF YOU DO THINGS IN A SERVICE LIKE 
EXCHANGE ONLINE, NORTHERLY IT WILL 
ONLY APPLY TO THE SERVICE. IF YOU 
THINK THIS IS A DLP QUESTION AND 
YOU DO IT AT THE EXCHANGE LEVEL 
AND THEY WANTED IT FOR SHARE POINT, 
IT MAY NOT READ. MAKE SURE YOU READ 
THE QUESTION AND FOLLOW EXACTLY 
WHAT YOU'RE DOING. YOU WOULD NORMALLY 
GET TWO OF THESE. AND ONCE THEY 
HAVE GONE THROUGH AND FINISHED YOU 
WOULD DO SOME MORE QUESTIONS AND 
ALL THE SCORING WOULD BE DONE AND 
AT THE END YOU GET YOUR RESULT. 
JUST AN EXAM TAKING TOPIC, DO NOT 
PANIC IF THESE STOP WORKING. THERE 
WAS A SLIGHT FLAW WITH AZURE WHERE 
PEOPLE COULDN'T SIGN IT. DON'T WORRY 
THERE ARE PEOPLE THERE TO HELP YOU. 
IF IT FAILS YOU WILL GET MORE TIME 
OR THEY WILL PAUSE THE EXAM. IT'S 
NOT WORTH BANKING IF IT'S NOT SOMETHING 
YOU'RE DOING WRONG. SOMETIMES THEY 
FREEZE. THEY'RE GETTING MUCH BETTER. 
AND IT'S A GOOD WAY OF PROVING YOU 
KNOW WHAT YOU'RE DOING. SO THAT'S 
THE EXAMS AND THE EXAM TECHNIQUE. 
WHAT ABOUT WHAT NIECE THE EXAM. 
FIRST OBJECTIVE DOMAIN, THE FOUR 
OBJECTIVE DOMAINS ARE DESIGNED AND 
ENTERTAINMENT SERVICES, 25 TO 30 
PERCENT OF YOUR QUESTIONS WILL BE 
BASED ON THIS TOPIC. DON'T SPEND 
ALL OF YOUR REVISION TIME ON THIS 
TOPIC. YOU WILL ONLY GET A QUARTER 
OR A THIRD ON THIS TOPIC. SPEND 
MORE TIME ON MANAGING USER ENTITY. 
IN THIS ROLE YOU WOULD BE DOING. 
POSSIBLY EVEN HYBRID IDENTITY. ACCESS 
AND IDENTIFICATION, THE 10 TO 15 
PERCENT, PLAN OFFICE RR WORKLOADS 
AND APPLICATIONS. BUT IT DOESN'T 
LEAVE YOU THERE, IT TELLS YOU WHAT 
IS IN EACH OF THESE. THE FORMAT 
OF THE NEXT 30, 35 MINUTES WILL 
BE ME GOING THROUGH GIVING YOU HINTS 
AND TIPS ON AREAS YOU SHOULD BE 
DOING. FOLLOWED BY A PRACTICE TEST 
QUESTION ON EACH OF THESE DOMAINS. 
YOU'RE GOING TO GET TESTED. HERE 
WE HAVE MANAGING DOMAINS. OBVIOUSLY 
WHEN YOU CREATE A TENANT YOU GAN 
MICROSOFT DOM CONTAIN, WHICH IS 
PART OF THE AZURE DIRECTORY. IN 
A PRODUCTION IT'S UNLIKELY YOU WILL 
BE USING THAT ON MICROSOFT DOM PAIN. 
IT'S A QUESTION TO DEAL WITH, HOW 
DO YOU DEAL WITH CUSTOMER DOMAINS. 
WHAT DO YOU HAVE TO DO FOR CUSTOMER 
DOMAINS. YOU NEED TO KNOW THESE. 
WHAT IF YOU HAVE GOT AN UNPREMISES 
DOMAIN THAT HAS A DOT LOCAL DOMAIN 
NAME. LIKE PEOPLE DID WHEN PEOPLE 
PUT 2003 AND 2008. YOU NEED TO BE 
AWARE WHERE YOU MIGHT USE THAT AND 
THE CIRCUMSTANCES YOU WOULD DO YOUR 
HYBRID IDENTITY. SIMPLE THINGS LIKE 
MAKING THE PRIMARY DOMAIN NAME THE 
NEW ONE NOT THE OLD ONE. THIS AREA 
OF THE EXAM, THIS IS AN EXPERT LEVEL 
EXAM, YOU GET QUESTIONS THAT ASK 
YOU ABOUT PLANNING AND DESIGNING. 
WHICH YOU'RE FUZZY, THEY'RE VERY 
DIRECT AND OPEN, YOU LEAVE YOU TO 
DO MORE THE THINKING ABOUT WHAT 
YOU NEED TO DO FOR AN ANSWER. HOO 
WE HAVE ONE PLAN FOR MICROSOFT 365. 
YOU'RE THINKING IT'S A PASS SOLUTION 
OR SASS. YOU HAVE YOUR HYBRID IDENTITY, 
OTHER YOU CAN USE. YOU CAN USE APPLICATIONS 
THAT YOU AUTHENTICATE INTO USING
MICROSOFT 365.
YOU NEED TO COVER THOSE AREAS.
WHICH IS A GOOD TIME TO MENTION,
THIS IS PERFECT FOR 
COPYING AND PASTING OUT OF THE EXAM 
SPECK, DROPPING INTO THE ONE NOTE, 
WITH THE WONDERFUL NEWS THAT ONE 
NOTE 2016 WILL BE UPDATED AND CARRY
ON THE 
DESK TOP AND APPLY YOUR
ONE TOP BY LINKING ALL OF 
THESE OPTIONS TO THINGS YOU DONE. 
FIND OUT WHAT TO DO. RUN THE TUTORIAL, 
PLAY WITH IT, PRACTICE. SETTING 
UP YOUR TENDENCY AND SCRAPE. THERE 
ARE SO MANY WAYS AND SETTINGS. ONE 
OF THE PROBLEMS WITH TESTING, YOU 
PRACTICE AND PREP READY FOR YOUR 
MOND MORNING CLASS AND YOU TURN 
OCCUPY AND THE PORTAL HAS CHANGED. 
NOW IT'S A SECURITY AND COME COMPLIANCE, 
IF YOU TYPE IT YOU STILL GO TO THE 
OLD PORTAL. THERE ARE FEW QUESTIONS 
THAT RELY ON NAVIGATION, IT'S NOT 
A VALID TEST. YOU NEED TO BE AWARE 
WHERE YOU NEED TO DO THING, SPECIFICALLY
FOR THE 
PERFORMANCE BASED TESTING. IT WON'T TELL YOU, IT WILL 
GIVE YOU A TASK AND LET YOU DO IT.
YOU CAN WASTE 
A LOT OF TIME TRYING TO FIND IT. 
HEALTH, NORMALLY IN THE COURSES 
THAT MICROSOFT RUN, MONITORING
AND HEALTH 
DON'T CARRY THAT MUCH WEIGHT, THEY USED 
TO BE THE LAST MODULE.
IF YOU RUN THE COURSES FOR
THESE, 
MONITORING IS A KEY FEATURE.
AND ONE OF 
THE AREAS THAT CHANGES MORE REGULARLY IS 
THE MONITORING BECAUSE THEY'RE DEVELOPING 
IT AND USING MACHINE LEARNING ON 
ALL OF THEIR REPORTS AND MONITORING 
FEATURES IT CHANGES REGULARLY. OFTEN 
YOU WILL GO TO THE PORTAL AND IT 
SAYS CLICK HERE FOR THE ONE YOU 
WILL SEE IN A WEEK OR TWO. OR CLICK 
FOR THE NEW PORTAL BECAUSE THEY'RE 
GIVING YOU NEW AREAS TO GO THROUGH. 
LICENSING IS KEY. YOU NEED TO DECIDE 
YOUR LICENSING STRATEGY. YOU MIGHT 
NEED HAVE AN E5, YOU MAY HAVE E3. 
IF YOU GO AN M365 TENANT YOU MAY 
HAVE, BUT WITH ADD ONS YOU MAY NOT 
HAVE. READ THE QUESTION. MORE IMPORTANTLY 
WHAT ABOUT APPLYING LICENSING, WHERE 
DO I DO THAT, HOW DO I DO THAT? 
DO I DO IT AT A GROUP LEVEL. WHAT'S 
THE DANGER. IF ANYONE HAS QUESTIONS 
DON'T WAIT. STAND BY THE MIC AND 
SHOUT AT ME. OBVIOUSLY IF YOU APPLIED 
LICENSING AT A GROUP LEVEL AND THE 
PERSON COMES OUCH THE GROUP, THEY 
LOSE THEIR LICENCE. IF YOU DON'T 
PUT THEM INTO ANOTHER GROUP AFTER 
30 DAYS, WHAT HAPPENS? THEIR MAILBOX 
GOES AWAY. THINGS YOU NEED TO THINK 
ABOUT. THINGS THAT IF I WAS WRITING 
EXAM QUESTIONS THAT'S A TRICKY ONE. 
I WOULD WRITE THAT SORT OF THING. 
MIGRATION, IT'S A KEYY OF THIS SECTION. 
SPECIFICALLY MIGRATING MAILBOXES 
AND DATA. AND IMPORTING THOSE WONDERFUL 
PS FILES. YOU'RE SHAKING YOUR HEAD, 
SIR. FOR A SMALL BUSINESS FOR TEN 
PEOPLE, HOW WOULD YOU DO IT? I WOULD 
GET THEM TO SAVE THEIR PST AND IMPORT 
IT. IT WOULD SAVE ME TIME. THERE 
ARE THREE OR FOUR DIFFERENT TYPES 
FOR MY OBLIGATION. AGAIN ON WHAT 
YOU'RE USE, THE NUMBER OF USERS, 
HOW YOU WANT IT TO WORK AFTERWARDS. 
THAT'S A PERFECT BIT OF EXAM QUESTIONING 
TECHNIQUE. I HAVE A WHOLE BALL TO 
ASK YOU QUESTIONS ABOUT WHICH ONE 
WORKS WHERE AND WHY. IF YOU CO-DO 
SOMETHING MORE THAN FOUR WAY, KNOW 
THE DIFFERENCES HOW YOU CAN DO IT 
AND WHEN TO USE THEM. OKAY. I MENTIONED 
MANAGING DOMAINS. MANAGING DOMAINS 
IS IMPORTANT IT'S ALMOST THE FIRST 
THING YOU DO WHEN YOU HAVE A BRAND 
NEW TENANT. AND YOU NEED TO PREVIEW 
YOU OWN THE DOMAIN. YOU CAN DO THAT 
IN ONE OF TWO WAYS. YOU CAN DO IT 
WITH DNS -- SOME DNS DON'T LET ALLOW 
YOU TO RECORDS IN. ONCE YOU HAVE 
DONE THAT, YOU WILL GET A LIST OF ALL OF 
THE OTHER DNS RECORDS THAT IT'S
GOING TO CREATE FOR YOU. 
THAT'S A PERFECT THING TO KNOW. 
WHAT DO YOU KNOW FOR YOUR LINK ONLINE, 
WHAT TYPE OF DMS RECORDS WILL BE 
CREATED ONCE YOU HAVE VERIFIED YOUR DOMAIN? 
IT'S WORTH GOING INTO A DEEP DYE 
ON THE DNS CONFIG. THERE THEY ARE. 
CAN BE DONE AUTOMATICALLY, OR YOU 
CAN SAY, I'M GOING TO DO MANUALLY. 
YOU CAN EVEN LET MICROSOFT 365 MANAGE 
YOUR DNS IN THOSE CIRCUMSTANCES. 
THE VET WILL BE AVAILABLE. WHERE 
THERE'S A HIRE LINK IT WILL TAKE 
TO YOU THE EXAMPLE OF HOW TO DO 
THESE THINGS. ANOTHER TRICKY ONE, 
IMPLEMENTATION, IDENTITY. THERE 
ARE LOTS OF WAY TO USE HYBRID IDENTITY, 
YOU CAN USE CLOUD, HYBRID IDENTITY 
YOU CAN USE IT WITH HASHED PASSWORDS 
AURA THEN INDICATION, READ THE QUESTION 
CAREFULLY WHERE THEY WANT IT TO 
HAPPEN, WHAT'S POSSIBLE WITH HYBRID 
IDENTITY. THE TOP ONE WILL SHOW 
YOU AN ADFS SOLUTION, USING A ADFS 
APPROXIMATESY, IT'S WAP, WEB APPLICATION 
APPROXIMATESY. OBVIOUSLY ALL THEM 
NEED AD CONNECT. CERTAIN PARTS OF 
AD CONNECT WILL RUN THE JOB FOR 
YOU FINE ON THE EXPRESS WIZARD. 
IF YOU NEED ANYTHING DIFFERENT, 
LIKE AN EXCHANGE HYBRID OR MULTIPLE 
FOREST, YOU NEED TO RUN THE WIZARD 
IN CUSTOM MODE. AND AT THE BOTTOM 
WE HAVE PASS THROUGH AUTHENTICATION, 
ALLOWS YOU TO AUTHENTICATE ON PREMISES 
WITHOUT HAVING TO DEPLOY ALL OF 
THAT ADFS. YOU SHOULD BE BE ABLE 
TO GO THROUGH THE PLANNING CYCLE 
HERE. AND BE ABLE TO GIVE REASONABLY 
ANSWERS TO WHAT YOU WOULD DO IN 
THESE AREAS. HOW AM GOING TO MANAGE 
MY MOBILE DISS -- DEVICES. YOU BOUGHT 
MICROMANAGER. AZURE INFORMATION 
PROTECTION. HAVE YOU AZURE -- ADR 
MS ARE YOU GOING TO INTEGRATE OR 
STICK WITH AIP. KNOW ALL OF THE 
SCENARIOS, KNOW THE PROTOCOLS USED 
FOR AUTHENTICATION FOR YOUR AD. 
THERE'S A LOT OF AZUREAD INCLUDED 
IN THIS. SETTING UP YOUR TENSESY, 
THERE'S A SET UP PROGRAM. I RAN 
THIS MORNING WHERE YOU GET FLOATING 
SCREENS YOU CAN DO IT MANUALLY OR 
GO THROUGH A GUIDED PROS. WHICH 
ARE UNIQUE. WE NEED TO KNOW THE 
DIFFERENCE. THERE'S LICENSING, WHAT 
YOU GET IN E3 AND E5. YOU MIGHT 
NEED TO KNOW WHAT YOU GET IN F1 
OR WHAT YOU DON'T GET IN F1. WE 
DON'T HAVE ENOUGH TIME FOR ME TO 
LIST THEM ALL. YOU WILL NEED TO 
KNOW WHAT IS AVAILABLE AND WHAT 
THE DIFFERENCES ARE. OF COURSE YOU 
CAN. CAN I HAVE THE MICROPHONE. 
>> WITH NEW FEATURES, DO YOU KNOW 
ROUGHLY WHAT THE TIMEFRAME -- >> 
I CAN HELP YOU WITH THAT. YOU WHAT 
YOU'RE SAYING HOW LONG ARE THE QUESTIONS 
VALID FOR AND WHEN WILL THEY CHANGE? 
>> YEP. >> DEPENDING ON WHAT EXAM 
IT IS AND THE THROUGH PUT OF THAT 
EXAM AND WHETHER IT'S CLOUD OR NON 
CLOUD BASED EVERY ONE OR THREE MONTHS 
THE ENTIRE POOL IS SCRUBBED. EVERYONE 
GOES THROUGH ETCH QUESTION AND SEE 
WHETHER IT'S A VALID QUESTION OR 
NEEDS CHANGING. OR NOT VALID. IF 
YOU HAVE A STAFF UP QUESTION. THAT'S 
GOING. THAT WON'T BE A VALID QUESTION.
AND 
AT THE SAME TIME NEW
QUESTIONS ARE WRITTEN. 
SO YOU WOULD GET NEW QUESTIONS
ON 
NEW FEATURES AND OLD QUESTIONS REMOVED 
WHEN THEY'RE NO LONGER VALID. FOR 
EXAMPLE, SKYPE FOR BUSINESS. UNTIL 
IT'S NO LONGER AVAILABLE YOU WILL 
STILL GET SKYPE FOR BUSINESS QUESTIONS. 
THAT'S NOT TO SAY THAT YOU MIGHT
FIND A QUESTION THAT IS A 
TOPIC THAT'S GONE AWAY THAT WENT 
AWAY LAST MONTH THAT WE HAVEN'T 
REACHED THE SCRUB. I WOULD HAPPY 
YOU -- YOU WOULD BE ABLE TO ANSWER 
IT. THERE'S A COUPLE OF LITTLE POWER 
SHELLY THINGS I HAVE WRITTEN AT 
THE BOTTOM SO YOU'RE AWARE THAT 
PASHAL CAN COME INTO EXAMS. CERTAIN 
THINGS YOU CAN ONLY DO IN POWER 
SHELL. AND THE THINGS YOU MIGHT 
WANT TO DO BECAUSE IT'S MUCH QUICKER.
ARE THREE EXPECT YOU TO MEMORIZE
POWER SHELL.
NO.
THEY WOULD EXPERT YOU 
TO KNOW THAT THE FOR MICROSOFT -- 
YOU WOULDN'T USED A YOUR POWER SHELL. 
IF IT'S A POWER SHELL QUESTION, 
THEY WOULD EXPECT YOU TO KNOW HOW 
THE COMMAND WORKS. THEY'RE UNLIKELY 
TO PUT FIVE COMMAND LOOKS THERE 
AND SAY PICK ONE OF THESE. MA MAY 
HAVE HAPPENED IN THE PAST. [ INAUDIBLE 
] >> ABSOLUTELY. AT THE MOMENT IT'S 
STILL THERE. YOU CAN ONLY DO THE 
ODD TWO OR THREE THINGS IN IT. [ 
INAUDIBLE ] >> IT'S A TRANSITION. 
EVERYTHING IS A TRANSITION ISN'T 
IT. AN AZURE YOU WOULD DO AN MODULE 
AND YOU SAY HOLD ON I'M SUPPOSED 
TO BE USING AZURE. KEEP CURRENT. 
UP GRATING SUBSCRIPTIONS. THERE 
ARE MANY USERS WITH OFFICE 365 BUT 
DON'T HAVE THE WINDOWS LICENCE ATTACHED. 
YOU NEED TO KNOW HOW TO UPGRADE 
AND WHEN YOU CAN. MOSTLY WIZARD 
BASE. IF YOU'RE CSP YOU GET THROUGH 
A PARTNER AND CHOOSE HOW YOU BUY 
IT AS WELL. TENANT HEALTH, MAKING 
SURE THAT EVERYTHING YOU HAVE DONE 
IS CORRECT AND EVERYTHING YOU'RE 
MANAGING AND MONITORING IS CORRECT. 
ONE THING I MENTION, IF YOU'RE GOING 
TO DO, HYBRID IDENTITY AND PUT ALL 
OF YOUR USERS INTO AZURE ID THERE 
IS ONE THING YOU SHOULD DO FIRST, 
NO MATTER HOW YOU KEEP YOUR DIRECTORY 
THERE ARE THINGS THAT DON'T LOOK 
LIKE RIGHT, . DOWNLOAD AND RUN ID 
FIX. IF YOU HAVEN'T DONE IT, DO 
IT ON YOUR DIRECTORY BECAUSE IT 
WORKS REALLY WELL. OKAY YOU MAY 
FIND SOME URLS THERE AS WELL. BECAUSE 
THERE ARE FOR PORTALS. KNOW THE 
ONES THAT ARE OBVIOUS AND THE DIFFERENCE. 
SERVICE REQUESTS, DO KNOW HOW TO 
RAISE A SERVICE QUESTION. IF IT 
DOESN'T WORK OWN LINE YOU CAN PHONE. 
IF THE WIZARD DOESN'T WORK, DO E-MAIL 
OR PHONE THEM IF YOU WANT. YOU CAN 
EXPORT MOST OF YOUR REPORT INTO 
BI. YOU CAN NO LONGER INTO OMS. 
YOU EXPORT INTO LOG ANALYTICS NOT 
O MS AS A PRODUCT IS GONE AWAY. 
OFFICE 365 REPORTING IN THE REPORTING 
AREAS WILL SHOW YOU HOW TO DO ALL 
OF THAT. THE 365 USAGE, AND ADOPTION 
ANALYTIC, EXCELLENT PREBUILT SOLUTIONS. 
[ INAUDIBLE ] >> MIND JUST STOPPED. 
SECURITY AND COMPLIANCE REPORTS, 
IT'S CRITICAL IN THIS SECTION. KNOW 
HOW TO SCHEDULE, LOOK AT THEM AND 
KNOW WHAT YOU CAN DO WITH YOUR OPTIONS 
SOME THINGS
YOU WILL FIND IN SECURITY, 
SOME
THINGS YOU WILL FIND IN COMPLIANCE. 
THE SECURITY GOES ACROSS THIS AND 
THE 101 EXAM. BE AWARE THAT YOU 
WILL FIND ELEMENTS OF IT IN BOTH. 
USAGE MET TRICKS THIS WAS WHY I 
WAS SUCH A POWERFUL TOOL. IF IT'S 
GOING AWAY IT'S GOING AWAY.
YOU CAN DOWNLOAD AND CONNECT IT
TO 
YOUR M365 TENANT AND SEE ALL OF 
USAGE. YOU NEED TO KNOW WHAT YOU 
CAN DO. IF I SAY I'M USING G MAIL 
AND I WANT TO GET OFF, I CAN ONLY 
MIGRATE IN ONE WAY. I HAVE TO DO 
I MAP. WHAT CAN I DO IN IMAP, CAN 
I GET EVERYTHING? KNOW THE DIFFERENCES. 
KNOW THE DIFFERENT BETWEEN A CUT 
OVER MIGRATION AND A STAGED MIGRATION 
AND WHAT USERS YOU MAY NEED TO DO 
BOTH. ALL OF THOSE SORTS OF THINGS. 
FIND YOUR USERS AND THE MAILBOXES. 
NOTE THE DIFFERENT WAYS OF MIGRATING. 
IMPORT PST FILES. IT'S NICHE, SMALL, 
BUT A USEFUL WAY OF DOING SMALL 
BUSINESS MIGRATION IF IT'S A VERY 
SMALL BUSINESS. AND IF YOU WANT 
YOUR USERS TO DO IT, YOUR USERS 
CAN DO MOST OF IT FOR THEM. SO, 
FIRST TEST. HAVE A QUICK READ OF 
IT. YOUR COMPANY HAS DECIDED TO 
MOVE TO MICROSOFT 365. YOU NEED 
TO CONFIGURE DOMAIN FOR NEW USERS 
FOR THE CLOUD WHAT SHOULD YOU DO 
FIRST. THIS ISN'T A QUESTION FROM 
THE EXAM. IF YOU WANT MORE QUESTIONS 
LIKE THIS, LOTS OF THEM, IN THE 
HUB IN THE HANDS ON LAB AREA, THE 
MEASURE UP PRACTICE TESTS ARE AVAILABLE. 
IF YOU THINK THEY'RE GOOD, SIGN 
UP FOR THEM AND IT'S A COST THEM. 
SIGN UP WITH MEASURE UP. 150 QUESTION 
FOR EACH EXAMINE AND THEY'RE MICROSOFT'S 
PREFERRED PROVIDER. WHAT SHOULD 
YOU DO FIRST IS A KEY TYPE OF QUESTION. 
BECAUSE IN YOUR MIND YOU WILL HAVE 
WHAT YOU WANT TO DO. WHAT'S THE 
FIRST -- FIRST THING YOU HAVE TO 
DO. HAVE A LOOK. ANYBODY THINK ANYTHING 
OTHER THAN C. USER IDENTITY. AND 
ROLES. DON'T WE LOVE ROLE BASED 
ACCESS. IT'S FANTASTIC. HOWEVER, 
YOU NEED TO MAKE SURE THAT THE ROLE 
YOU'RE USING OR THE ROLE GROUP IN 
CERTAIN CIRCUMSTANCES IS THE RIGHT 
ONE AND HAS THE LEAST PRIVILEGE. 
YOU WILL SEE QUESTIONS. YOU NEED 
TO GIVE THE PERSON THE ABILITY TO 
DO THIS AND THIS. WHAT ROLE SHOULD 
YOU GIVE THEM. USE THE LEAST PRIVILEGE. 
DON'T GIVE THEM GLOBAL ADMIN. THAT 
AGAIN, RELEVANT TO YOUR QUESTION 
ABOUT POWER SHELL. YOU WON'T BE 
EXPECTED TO KNOW EVERYTHING ABOUT 
EVERYTHING. YOU WILL BE EXPECTED 
TO KNOW CRITICAL ROLES LIKE READER, 
SECURITY ADD MINUTE, WHAT THEY CAN 
DO AND WHAT THEY CAN'T DO. ALSO 
YOU HAVE ROLES IN EXCHANGE THAT 
DON'T APYRE AT THE SAME LEVEL AS 
ROLES IN YOUR AD. AD ROLES THAT 
DON'T APAIR IN THE MICROSOFT 365 
BECAUSE THEY NEED ROLE GROUPS. YOU 
-- YOU NEED TO KNOW WHAT YOUR ROLES 
ARE CALLED AND WHAT PERMISSIONS 
YOU CAN GIVE TO PEOPLE AND HOW TO 
USE THEM. THIS IS THE ACTIVE DIRECTORY 
CORRECT AREA. YOU NEED TO HOW TO 
DEPLOY IT . PRACTICE MAKES PERFECT. 
I LEARNED BY DOING. I KEEP LEARNING 
AND PRACTICING. YOU CAN DO IT FREE. 
WINDOWS 10 HAS HYPER V. YOU DON'T 
NEED A VPN YOU JUST NEED AN E CONNECT. 
AD CONNECT HEALTH. SOUNDS LIKE A 
FANTASTIC PRODUCT. IT IS. YOU NEED 
WHAT TO USE AD CONNECT HEALTH? YOU 
NEED A LINES. IT WILL MONITOR THE 
HEALTH OF YOUR ACTIVE MAIN CONTROLLERS 
AND YOUR ADF IF YOU'RE USING THEM. 
FOR FREE IT WILL MANAGE YOUR AD 
CONNECT. YOU NEED P1 TO MANAGE THE 
CONNECT. TO USE IT AS INTENDED FOR 
ADFS AND MAIN CONTROLLERS. YOU NEED 
P1 OR AN E3 LICENCE OF EMS OR M36 
APPEAR -- M365. I MENTIONED MULTIPLE 
FOREST. UNDERSTAND WHAT YOU NEED 
TO WITH CONNECT. LOOK AT ALL OF 
THE OPTIONS. CLICK ALL OF THE BUTTONS. 
THE WAY OF LEARNING. IF YOU CLICK 
ONE BUTTON YOU CAN GET FOUR MORE 
YOU CAN CHOOSE. THERE BE QUESTIONS 
IN THERE ABOUT CLOUD ONLY IDENTITIES. 
QUESTIONS ABOUT HYBRID AND WHERE 
YOU MANAGE YOUR IDENTITIES. I HAVE 
SINKED INTO AZUREAD. HOW DO I MANAGE 
THE USERS? THROUGH AD BECAUSE THERE'S 
WHERE THEY CAME FROM. GROUPS, DYNAMIC 
GROUPS, IF YOU WANT TO USE DYNAMIC 
GROUPS, I NEED AD PREMISE UNANIMOUS 
OR D3. PASSWORDS WHEN YOU SET UP 
A NEW TENANT DOES NINO THE LENGTH 
OF TIME IT'S VALID FOR? 90 DAYS. 
WHO SAID -- ANOTHER ONE? >> 90 DAYS. 
>> IT'S NOT SET. NOT CHANGING. YOU 
DO NOT TO CHANGE YOUR PASSWORD. 
IF YOU ENABLE IT TO BE SET, IT'S 
720 DAYS. MICROSOFT ARE TELLING 
YOU DON'T CHANGE YOUR PASSWORDS, 
YOU MFA. NOW YOU HAVE GOT THE BEST 
PRACTICE OF MFA MAKING SURE YOU 
HAVE TWO BREAK GLASS USERS SO THEY 
CAN SIGN IF. IF YOU CAN'T GET IN, 
YOU CAN'T GET IN TO SWITCH OFF MFA. 
HOW DO WE DELEGATE RIGHTS, WHO ROLES 
ARE WE GOING TO GIVE THEM. AND SECURITY 
AND COMPLIANCE ROLES? QUITE A LOT 
OF ON SECURITY AND COMPLIANCE. WHICH 
SECURITY ROLES CAN DO WHAT? GOOD 
LITTLE FLOWCHART HERE ON I WANT 
TO SET UP SYNCHRONIZATION TELLING 
ME WHAT I TO DO. YOU CAN'T SEE IT 
THERE. YOU HAVE IT IN THE DECK. 
YOU WILL BE ABLE TO SEE IT. WHEN 
YOU WOULD USE PASSWORD AND HASH, 
AND SEAMLESS SIGN ON. WHEN YOU USE 
PASSWORD HASH, -- IF YOUR UNPREMISES 
DROPS, YOU HAVE THE ABILITY TO SIGN 
IN USING PASSWORD HASH. WE GO THROUGH 
THE FIRST NATION SIGN IN AS WELL. 
IT'S UNLIKELY TO TEST YOU ON YOUR 
KNOWLEDGE OF ADFS. BEYOND THE FACT 
YOU NEED TO KNOW WHAT IT IS. AND 
BUILD IT IN AD CONNECT AUTOMATICALLY 
AND WHAT COMPONENTS IT HAS. IT'S 
UNLIKELY TO BE TESTING YOU ON THE 
NITTY GRITTY OF ADFS. IT'S NOT A 
GUARANTEE. BECAUSE IT'S TOO INDEPTH 
AND TOO NIC HE RECOLLECTS. HEIR 
THE WIZARD OR THE TOOL WITH RECALL 
OF THE INSTALLATIONS. YOU CAN SEE 
IN THERE WHETHER YOU WILL USE FIRST 
NATION, WHETHER YOU CAN CONFIGURE 
IT. WE HAVE GROUP RIGHT BACK AND 
DEVICE RIGHT BACK. GROUP IS FOR 
EXCHANGE ONLINE HYBRID. PASSWORD 
RIGHT BACK YOU CAN DO AS WELL. AND 
AD CONNECT HEALTH THAT'S THE WINDOWFOR 
MANAGING YOUR AD CONNECT HEALTH 
IN YOUR ENVIRONMENT. LISTING ALL 
OF YOUR DIRECTORY CONTROLLERS. AZURE 
AD. THE FUNDAMENTAL FOR GETTING 
ANY OF THIS IN YOUR HAND IS -- AHEAD 
NOTHING EVERYTHING YOU CAN ABOUT 
AZURE AD. WHAT YOU CAN DO WITH IT, 
WHERE THE USERS GO, HOW YOU MANAGE 
THEM. WHAT YOU NEED P2 FOR. WHAT 
FEATURES OF ARIZONA DO WE P2 FOR. 
ACCESS USERS IS ONE OF THEM THAT 
COMES UNDER YOUR PROTECTION. YOU 
CAN SET UP ACCESS REVIEWS TO ALLOW 
MANAGE WHO IS IN WHAT GROUP, AND 
SET IT TO AUTO REMOVE PRIVILEGES 
IF THEY'RE NOT USING IT OR THEY 
DON'T RESPOND TO THEIR ACCESS REVIEW. 
UNDERSTAND PIM PRIVILEGE IDENTITY 
MANAGEMENT, ID PROTECTION, AND REVIEWS. 
NOT FEATURE, BUT YOUR FEATURES THAT 
YOU NEED TO KNOW. GROUPS DYNAMIC 
GROUPS. GROUP MANAGEMENT, DIFFERENCE 
BETWEEN SECURITY GROUP , DISTRIBUTION, 
OFFICE 365 GROUPS. KNOW THE QUERY 
LANGS FOR DYNAMIC GROUPS. BUILD 
YOURSELF A COUPLE OF DYNAMIC GROUPS. 
IF YOU HAVEN'T A TENANT WITH AD 
PREMISE UNANIMOUS, TAKE A TIME. 
TECHNICALLY IF YOU'RE USING DYNAMIC 
GROUPS YOU'RE USING AD PREMISE UNANIMOUS. 
EVERY USER SHOULD HAVE A LINES TO 
BE LICENCED. IT'S NOT REQUIRED TO 
DO THAT BECAUSE IT WILL PHYSICALLY 
WORKED, BUT TO BE LICENCED YOU NEED 
A PREMIUM LICENSES THAT WILL DO 
THAT. IT'S UNLIKELY IN THIS ONE, 
BUT IN 101 TALK ABOUT AUTO PILOT. 
IT'S AN EXCELLENT WAY OF WORKING 
WHICH WAY YOUR DEVICES SIT. USER 
ROLES. HERE WE'RE LOOKING AT MY 
ROLES FOR A USER WE'RE GOING TO 
ADD HIM TO A NEW ROLE. THIS WILL 
SHOW FOR ME ALL OF THE. >> AZURE 
ROLES. EXCHANGE ADMINISTRATOR IS 
SHOWN HERE. IN EXCHANGE HE'S NOT 
CALLED ADMINISTRATOR. IN MICROSOFT 
365 HE'S NOT CALLED EITHER, BUT 
COMPANY ADMINISTRATOR. WE HAVE LOTS 
OF DIFFERENT ROLES WE NEED TO KNOW 
THE DIFFERENCES. PRACTICE QUESTION 
FOR SECTION 2. YOU HAVE AN ON PREMISE 
ACTIVE DOMAIN CALLED KONTOTO. GET 
USE. YOU PLAN TO CONFIGURATION SIN 
CONSCIOUS BETWEEN KATOT AND AZUER 
YOU WILL OPT THE PASSWORD OPT -- 
YOU'RE AUTHENTICATING IN THE CLOUD, 
YOU PREP A CHECKLIST TO SET UP AS 
YOUR AD CONNECT. YOU NEED TO CHECK 
FOR ERRORS -- THAT'S ON PREMISES, 
I HAVE -- ON PREMISES ACTIVE DIRECTORY 
BEFORE YOUR FIRST SYNCHRONIZATION 
WHAT SHOULD YOU DO FIRST? YOU SHOULD 
AD FIX. IF YOU HAVEN'T GOT IT, DOWNLOAD 
AND RUN IT. YOU SHOULD USE -- ID 
FIX. COME ON. THERE WE GO. ACCESS 
AND AUTHENTICATION. YOU'VE SEEING 
WHERE THIS EXAM FOCUS, SECURITY, 
DOMAIN, AUTHENTICATION. IT'S ALL 
SECURITY AND THE THREE AS. YOU COULD 
STILL GET QUESTIONS ON MFA RECEIVERRER. 
THE ON PREMISES SOLUTION YOU COULD 
CONNECT INTO AZURE. YOU CAN NO LONGER 
DEPLOY IT. IF YOU YOU HAVE GOT IT 
YOU CAN USE IT. IF YOU GO TO THE 
PORTAL IT WILL SAY NO . BECAUSE 
AZURE AD WILL DO IT FOR YOU. MFA 
DEPENDING ON YOUR LICENCE, IS AN 
AD PREMISE UNANIMOUS FEATURE IF 
YOU DON'T HAVE M365 -- CP AND BUSINESS 
IT'S NOT. FOR E3 IT IS. BUSINESS 
IS DIFFERENT. YOU GET MFA FOR BUSINESS. 
EACH ONE IS SLIGHTLY DIFFERENT. 
UNLESS THEY HAVE CHANGED IT IN THE 
LAST WEEK. [ INAUDIBLE ]. >> THE 
BASELINE. AND YOU NEED TO KNOW HOW 
TO SET IT UP AND WHERE TO SET IT 
UP. YOU CAN SET UP MFA IN IDENTITY 
PROTECTION, WITH USER RISK POLICY, 
YOU CAN SET IT UP IN CONDITIONAL 
ACCESS YOU CAN FORCE MFA AND SET 
IT UP IN THE MFA PROVIDER. YOU NEED 
TO BE AWARE WHEN THE QUESTION ASKS 
YOU ABOUT -- IS IT MFA ARE THEY 
DIRECTING YOU TO CONDITIONAL ACCESS 
OR SIGN IN RISK POLICY. [ INAUDIBLE 
] >> THE QUESTION SENSE THEY NO 
LONGER RECOMMEND ENABLING FORCE, 
IS THAT WHAT THEY'RE GOING TO ASK 
YOU. IT WON'T BE AS SPECIFIC IT. 
IT WILL BE YOU WANT TO DO THIS, 
THIS AND THIS. DO IT IF IT'S A PERFORMANCE 
BASED TEST OR HOW WOULD YOU DO IT 
OR WHY WOULD YOU DO IT OR WHAT TO 
DO. IT'S VERY SPECIFIC, THE DIFFERENT 
BETWEEN THE MFA PROVIDER GOING IN 
AND SETTING UP -- MFA QUESTIONS 
ARE MORE LIKELY TO BE TRUSTED IP 
ADDRESS OR MEMORIZED DEVICES. THAT 
SORT OF THING. AND WHAT HAPPENS 
WITH GRADUATE ALERTS. DO YOU AUTO 
BLOCK AND ALL OF THAT SORT OF THING. 
OBVIOUSLY MFA FOR GLOBAL ADMINISTRATES 
YOU HAVE ANYWAYS BUILT IN. THE MANAGEMENT 
AUTHENTICATION YOU WILL BE LOOKING 
AUTHENTICATED ON PREMISES, OR IN 
THE CLOUD IN THE DIFFERENT METHODS 
AND DIFFERENT WAYS. APPLICATION 
PROCESS. KNOW THE APPROXIMATEY IS 
AND HOW TO USE IT. VERY IMPORTANT. 
I DON'T KNOW HOW MANY PEOPLE ARE 
USING IT OUT THERE. IT'S LIKELY 
TO GET QUESTIONS A FANTASTIC PRODUCT, 
WORKS WELL. WHEN I SAY IT'S NICHE 
I WOULDN'T SAY 90 USING IT AS YOUR 
APPROXIMATEY. NOW HO REGISTER AN 
APP IN AZURE AD. WE GO INTO THE 
REALM OF AZURE WITH OUR B TO B ACCOUNTS 
INVITING GUEST USERS AND CREATING 
GUEST ACCOUNTS. HOW WE ALLOW PEOPLE 
ACCESS TO OUR SERVICES AND PRODUCTS 
FROM AN EXTERNAL DOMAIN. SOME THEM 
IS DONE IN AZUER AD. WHAT LEVEL 
OF SHARING DO WE ALLOW. IT'S REALLY 
JUST FARMIZATION WITH THE AREAS 
BEING USED AND QUESTIONED. SO WE 
HAVE THE AUTHENTICATION IN AZUER 
AD. THERE'S ONLY ONE EQUIVALENT 
OF A PASSWORD IN AZURE. YOU HAVE 
A PASSWORD SET UP. WE HAVE DECIDED 
THAT MICROSOFT WANTS US TO GO THROUGH 
MFA AND NOT CHANGE. AND IF YOU THINK 
YOU DON'T NEED IT GO TO MY SIGN 
INS TO MICROSOFT 365. WHEN I FIRST 
DID THIS AS DEMONSTRATION, I HAD 
HUNDREDS OF BRAZILIANS, CHINESE, 
ATTEMPTS. IT WILL SHOW YOU WHAT 
PRODUCT THEY'RE TRYING TO GET IN 
AND WHAT PRODUCTS THEY WERE USING. 
NO WHEN TO USE THE CUSTOM BAND PASSWORD 
LIFT AS OPPOSED TO THE BUILT IN 
LIST. >> THERE A MY SIGN INS FOR 
THE ADD MINUTE SIDE TO VIEW YOUR 
USERS? >> YOU CAN SEE -- IF YOU 
GO TO THE AUDIT LOG YOU CAN GO INTO 
EVERYBODY'S SIGN IN. ADD MINUTES 
CAN SEE THAT. BUT IF YOU GO INTO 
-- I CAN'T REMEMBER IF IT'S YOUR 
AUDIT LOGS IT WILL SHOW ALL USER 
SIGN INS. NO THAT IF YOU'RE SETTING 
UP SELF SERVICE PASSWORD RESET, 
AN ADMINISTRATOR CANNOT USE SECURITY 
QUESTIONS. THEY HAVE TO USE TWO 
FACTORS,. A USER YOU CAN SET UP, 
YOU CAN BE DEVIOUS. I WANT FIVE 
SECURITY QUESTIONS OR THREE FACTORS 
OR HAVE ONE. AS AN ADMINISTRATORS 
YOU HAVE TO HAVE TWO FACTORS AND 
YOU CAN'T HAVE ONE OF THEM AS SECURITY 
QUESTIONS. KNOW WHAT YOU CAN USE 
IN TERMS OF APP, APP NUMBERS AND 
APP AUTHENTICATION AS WELL. I MENTIONED 
APPLICATION ACCESS, REGISTER YOUR 
APPLICATIONS IN AZURE. HOW DO YOU 
DO IT? IF IT'S CREATED, ONE YOU'RE 
CREATING, WHETHER IT'S A BUSINESS 
APP, YOU NEED TO KNOW ABOUT THOSE. 
B TO B ACCOUNTS USED TO BE DONE 
DIFFERENT. CREATE A USER. THEY GET 
A E-MAIL. THEY SIGN IN WITH THEIR 
OWN CREDENTIALS AND GET THE ACCESS 
TO YOUR APPLICATIONS AND SERVICES. 
YOU ALSO GET, IF YOU DO THIS, YOU 
HAVE FIVE EXTRA LICENSES FOR THEM 
TO USE. IF YOU HAVE USED THEM, YOU 
HAVE TO PROVIDE THEM WITH A LINES, 
UNLESS THEY HAVE THEIR OWN LICENCE, 
IN THAT CASE THEY BRING THEIR OWN 
WITH THEM. ADDED AND SET UP IN THE 
MAIN PORTAL, THE ADMIN PORTAL FROM 
THE ORGANIZATIONAL RELATIONSHIPS 
AREA. PRACTICE QUESTION HERE. YOU 
MANAGE A MICROSOFT 365 TENANT FOR 
YOUR COMPANY. YOU WANT USERS TO 
ACCESS AN ON PREMISE APPLICATION 
USING THEIR MICROSOFT 365. YOU HAVE 
WINDOWERS RECEIVERS WITH IIS TO 
USE INTERNALLY YOU WANT THEM TO 
AUTHENTICATE USING THEIR CLOUD CREDENTIALS. 
YOU NEED TO CONFIGURE YOUR DIRECTLY 
TO DO THIS. WHAT SHOULD YOU DO? 
IS THAT LESS CLEAR, MORE TRICKY. 
WE HAVE BS AND CEST. THERE'S NO 
FIRST. IT SAYS WHAT SHOULD YOU DO? 
PROXY, APPLICATION PROXY. CREATING 
AN ANREGISTRATION WILL NOT WORK 
ON ITS OWN. YOU NEED THE PROXY TO 
BE ABLE TO DO THAT. FINAL SECTION 
OF THE OBJECTIVE DOMAIN. PLAN YOUR 
WORKLOADS AND APPLICATIONS. SO THIS 
IS THE FIRST TIME WHERE EAR -- LOOKING 
AT SERVICES AND WORKLOADS WITHIN 
WAFT RR. THE REST HAS BEEN TENANT 
BASE, SECURITY BASED AND AUTHENTICATION 
BASED. YOU KNOW WHERE TO DO YOUR 
REVISION. LET'S SAY YOU HAVE 50 
QUESTIONS YOU WILL HAVE FIVE QUESTIONS 
TO SIX QUESTIONS OR SEVEN QUESTIONS 
MAXIMUM ON THIS QUESTION IF YOU 
HAVE THAT LEVEL OF PERCENTAGE. BUT 
IT DOESN'T MAKE IT EASY. WE'RE LOOKING 
AT HYBRID, CERTIFICATION CHANGE 
HI BRIDE IS ONE OF THE MOST COMPLICATED 
THINGS TO WORK OUT TEMPERATURE TO 
USE CHANGE YOU HAVE TO USE HYBRID 
AND YOU HAVE TO USE IT IN THE CUSTOM 
MODE. THERE'S AREA ON OFFICE DEPLOYMENT. 
YOU WILL -- WILL BE CONFUSING THE 
DEPLOYMENT TOOL AND THE XML FILE 
TO GENERATE REQUIREMENTS. YOU WILL 
-- YOU WILL GET QUESTIONS BETWEEN 
OFFICE ONLINE AND OFFICE PRO PLUS. 
THEY SHOULD BE EASY TO WORK OUT. 
NOSNECESSARYLY BUT THEY SHOULD BE. 
PLAN MY COMPLIMENT. HERE WE GO THROUGH 
THE OF UPDATE PANELS. WHAT'S AVAILABLE. 
HAVE THEY CHANGED THE NAMES AGAIN. 
WILL IT BE SEMIANNUAL, SEMIANNUAL 
TARGETED, MONTHLY TARGETED. NO WHAT 
THEY MEAN, KNOW HOW THEY WORK. HOW 
WILL WE DISTRIBUTE THIS STUFF? DO 
WE USE CONFIG MANAGER OR INTUNE. 
ARE WE USING THE OFFICE DEPLOYMENT 
TOOL? IT'S ALL ABOUT PLANNING. SO 
IF I WAS GOING TO DEPLOY PRO PLUS, 
AND THE QUESTION SAID WITH THE LEAST 
ADMINISTRATIVE EFFORT, WHICH IS 
YET ANOTHER ONE OF THOSE GUIDE YOU 
DOWN WHERE WE'RE TELLING YOU TO 
DO SOMETHING. I WOULDN'T SUGGEST 
IT'S NOT GOING TO BE CONFIG MANAGER, 
I WOULD SAY IT WILL BE USING THE 
DEPLOYMENT TOOL OR THE OFFICE 365 
CONTENT AND DELIVERY. [ INAUDIBLE 
]. >> YOU CAN DO IT -- GROUP POLICY, 
SORT OF THING. [ INAUDIBLE ] >> 
THE USER MIGHT DECIDE HE ONLY WANTS 
THESE APPS. YOU WANT HIM TO HAVE 
THE RIGHT APPS. THEY MAY UP GRATED 
FROM BUSINESS TO ENTERPRISE. YOU 
HAVE TO REINSTALL THEM BECAUSE E 
ABOUT DID HAVE THE FEATURES. IT'S 
NOT LIKE WINDOWS 10 WHICH YOU SAY 
I HAVE NOW HAVE A LINES. YOU HAVE 
TO RUN THE APPS AND REINSTALL THEM. 
THEY'VE DIFFERENT FEATURES AND APPLIQUEINGS. 
-- APPLICATIONS. >> [ INAUDIBLE 
]. >> I COULDN'T COMMENT ABOUT USERS 
IGNORING YOU. YOU WANT CONTROL. 
YOU ARE DEPLOYMENT. USER DEPLOYMENT 
COULD BE AN ANSWER IN THE QUESTIONS. 
SO YOU HAVE AN UNPREMISES ACTIVE 
DEMAIN. YOUR COMPANY USES G MAIL. 
MY PROOFREADER IS IN A LOT OF TROUBLE. 
THAT WASN'T AN INTENTIONAL PUN. 
YOU PURCHASE MICROSOFT 365 AND CONFIGURE 
AS YOUR HYBRID CONNECT USING PASS 
THROUGH AUTHENTICATION. YOU WILL 
FIND THE QUESTION HAVE THINGS DESIGNED 
TO DISTRACT YOU INTO AN AREA. YOU 
PLAN TO MIGRATE ALL E-MAIL TO PASS 
ONLINE AND USE I MAP MY GRATE. YOU 
NEED TO IDENTIFY WHAT YOU CAN MIGRATE. 
WHAT CAN YOU MIGRATE? BOXES AND 
FOLDER, INBOXES FOLDERS AND CONTEXT, 
INBOXES FOLDERS AND CALENDARS. INBOXES 
TASKS AND CALENDARS. UNLESS YOU 
NODE THAT, YOU WON'T GUESS THAT 
RIGHT. >> LIMITATIONS. >> IF YOU 
KNOW IMAP YOU'RE FINE. IF IT'S NOT 
SOMETHING YOU KNOW OR EVER DONE, 
YOU WON'T KNOW. YES YOU ARE RADIO 
IT. IS IT AN DIFFICULT EXAM. NO 
EXAM IS DIFFICULT UNLESS YOU KNOW 
THE ANSWER. READING THE QUESTIONS 
IS SOMETIMES DIFFICULT. OKAY, SO 
MS100. 15 PERCENT DEPLOY WINDOWS, 
35 TO 40 PERCENT THAT'S ENTIRELY 
WRONG. LET ME HOPE IT'S STILL IN 
THERE. NO, IT'S NOT. SOMEBODY HAS 
CHANGED THAT FROM MS100. I SHOULD 
TAKE YOU TO THE ORIGINAL ONE WHICH 
IS THE SECURITY AND DEPLOYMENT, 
-- GO BACK. I CAN'T BELIEVE THAT'S 
ON THAT DECK. IT'S NOT THE MOST 
CURRENT DECK. APOLOGIES FOR THAT, 
FOLKS. 20 TO 25 PERCENT ON AUTHENTICATION. 
AND THERE YOU GO. BEAR WITH ME TWO 
SECONDS. SOMETHING HAS TO GO EVERY 
TIME YOU'RE ON STAGE. THAT'S MORE 
LIKE IT, YOU CAN'T AFTERWARD TO 
IGNORE ANY OF THEM. THE EXAM WHEN 
WE GO INTO THE NEXT SET, WHICH IS 
DOWN HERE ABOUT THE EXAM ITSELF, 
, ABOUT HOW TO PREPARE. MICROSOFT 
HAVE PRODUCED A WHOLE BUNCH OF LEARNING 
RESOURCES. WE HAVE GOT THE MICROSOFT. 
COM LEARN PLATFORM, WHICH I WILL 
SHOW YOU BEFORE WE FINISH. YOU CAN 
COME TO TRAINING EVENTS OR GO TO 
CLASSROOM TRAINING. THE LEARN PLATFORM 
IS NOT DESIGNED TO GIVE YOU EVERYTHING 
YOU NEED. IT'S DESIGNED TO HELP 
YOU ALONG. YOU WON'T FIND A LEARNING 
PASS THAT WILL GIVE YOU FOR MS100 
OR 101, THE LEARNING WILL BE SOMETHING 
ABOUT SECURITY, AND AUTHENTICATION. 
YOU NEED TO KNOW THE PARTS -- MORE 
THINGS ARE BEING ADDED ALL THE TIME. 
THE FIRST THING I WOULD SUGGEST 
EVERYONE DONE IS CREATE A ONE NOTE. 
DOWNLOAD THE DOMAIN AND START WRITING 
WHAT YOU KNOW AND WRITE IT. THINGS 
CHANGE REGULARLY. WHEN YOU LEARN 
IT, TAKE SCREEN SHOOT, DROP IT INTO 
ONE NOTE. SO YOU GO BACK SO YOU 
KNOW WHAT IT'S LIKE. IF YOU TAKE 
TWO TO THREE MONTHS AND THINGS HAVE 
CHANGED, YOU MAY WANT TO KNOW WHERE 
IT WAS WHEN YOU STUDDYING IT. THE 
COURSES HAVE JUST BEEN RELEASED 
AS OF THE 25TH OF OCTOBER. THEY'RE 
BRAND NEW CONTENT. THEY WERE ONLY 
RELEASED LAST YEAR. AND RELEASED. 
AND I MENTIONED PRACTICE TESTS. 
I USE IT AS A LEARNING TOOL NOT 
CERTIFICATIONS. I ANSWER THE QUESTION, 
AND LOOK AT ALL OF THE ANSWER. I 
LOOK AT THE WRONG ANSWERS AS TO 
THE RIGHT ANGS. YOU GET EXPLANATION 
WHY IT'S WRONG. IF I GOT IT WRONG, 
IT WILL -- IT WILL TELL ME WHAT 
-- WHY IT'S WRONG. YOU MAY BE AWARE 
THAT THERE ARE FREE EXAMS HERE. 
YOU CAN TAKE ONE FREE EXAM ON SITE. 
IT'S ONLY WALK UP BECAUSE EVERYTHING 
IS FULL. EVERY ATTENDEE GETS ONE 
EXAM TO TAKE ANYWHERE IN THE LAST 
SIX MONTHS. GO TO THAT ADDRESS, 
SIGN IN THE -- WITH THE E-MAIL TO 
REGISTER. IF IT'S NOT YOUR SER FI 
INDICATION CERTIFICATION. IT WILL 
KNOW YOU WERE AN ATTENDEE. >> THERE 
COURSES AVAILABLE ON THE EEX. >> 
LEARN IS THE PLACE TO GO. ONE OF 
MICROSOFT'S HISTORY CONCENTRATES 
SO THERE'S CHANNEL 9, THERE'S ED 
EX AND ALL DIFFERENT PLATFORMS. 
IT WAS DESIGNED FOR LEARNING PARTNERS 
TO PUT COURSES ON AND GIVE PEOPLE 
-- >> DO YOU HAVE SIX MONTHS TO 
DO THIS? >> YES. HOW GOOD IS THAT. 
>> WE DON'T HAVE TO REGISTER. >> 
YOU DON'T HAVE TO REGISTER HERE 
AND NOW. SCHEDULE IT WHEN YOU LIKE. 
YOU MUST TAKE THE EXAM, YOU CAN'T 
REGISTER AND TAKE IT IN NINE MONTH, 
IT MUST BE TAKEN IN SIX MONTHS. 
[ INAUDIBLE ] >> YES, IT IS. IN 
ADDITION. TAKE A FREE ONE HERE IF 
YOU CAN GET SPACE. TAKE IT FREE 
AT HOME. TWO FREE EXAMS. I COULDN'T 
COMMENT BECAUSE I'M ON A MICROPHONES. 
I WOULD AGREE WITH YOU. THEY ALSO 
OFFER OFTEN WHEN THERE'S GNAW EXAM, 
THEY WILL PUBLISHING SHORT TERM 
BEATER CODES WHICH GIVE YOU A REDUCED 
COST EXAM. WHEN A NEW EXAM COMES 
UP, THEY NEED A CERTAIN AMOUNT TO 
TAKE IT. YOU DON'T GET THE SAME 
RESULTS IN BEATER. WE HAVE A FEW 
MINUTES LEFT. I WANTED TO GIVE YOU 
A FEW EXAMS. IF YOU GO TO THE LEARN 
STAND, YOU WILL GET A BETTER SLIDE. 
I'M GOING TO COME OUT OF HERE AND 
HOPE THAT THIS HASN'T GONE BAD AND 
WRONG. NUMBER SIX. SO I MENTIONED 
CUSTOM DO MAINS. IF YOU GO TO SET 
UP. IT WILL TAKE ME THROUGH A WIZARD 
I CAN GO THROUGH MY ADMIT DOMAIN 
OR ADVANCED SET UP. IN ADVANCED 
SET UP, I CAN GO BACK TO GUIDED 
SET UP. YOU HAVE GOT THE PASSWORD 
SET TO NEVER EXPIRE. I CAN CHANGE 
THAT AT THE TIME I SET IT UP. MICROSOFT 
DON'T RECOMMEND IF YOU DO. IF I 
ENABLE THAT, I MANAGE IT, AND SWITCH 
IT OFF. IT WILL GIVE ME 14 DAYS 
NOTIFICATION ABOUT A USER EXPIRY. 
THEY WANT ME TO HAVE IT AS MANAGE 
PASSWORDS ALWAYS NOT EXPIRING. I 
CAN GO BACK ONE. AND BACK ONE. AND 
THEN I CAN ALSO SET UP AM I GOING 
ALLOW USERS TO RESET -- THEY'RE 
GUIDING YOU THROUGH SETTING UP YOUR 
NEW TENANT. THIS IS ALL FAIRLY NEW. 
DO I WANT TO GIVE ADMINS ONLY THE 
ACCESS THEY NEED. IT WILL BE SOMETHING 
LIKE PIM. I HAVE ALSO GOT ALL OF 
THE OTHER OPTIONS. SO INTUNE, IF 
YOU HAVE ANY QUESTIONS ABOUT TENANT 
LEVEL, THE INTUNE PORTAL IN AZURE 
IS DIFFERENT TO THE DEVICE MANAGEMENT 
PORTAL. THE DEVICE PORTAL IS NOT 
CUT DOWN, IT'S A GUIDED SCENARIO. 
IF I GO TO MY INTUNE TENANT AND 
LOOK AT DEVICE ENROLLMENT. NOTICE 
THAT NEW TENANT, WHICH I SPUN OUT 
YESTERDAY IS SET TO INTUNE BECAUSE 
IT'S A M365 TENANT. AND FINALLY, IF I GO TO LEARN,
THIS IS THE NEW LEARN SCREEN. 
YOU'RE ABLE TO BROWSE ANY OF THE 
LEARNING SOLUTIONS AND GO THROUGH 
ANY OF THE LEARNING SOLUTION YOU 
WANT TO. MICROSOFT 365 PROTECTION, 
PROBABLY MORE 0 OF THE 101. SOME 
OF THAT WOULD BE USEFUL IN HERE. 
IT'S NOT SPECIFICALLY AIMED AT THIS 
ROLE AND THIS EXAM, BUT IT'S CONTENT 
THAT WILL BE BE COVERED IN THIS 
ROLE AND EXAM. OKAY, WHILE I SWITCH 
BACK. MOVE ON ONE. IF I LEAVE THE 
EVALUATE, PLEASE EVALUATE. NO POINT 
IN DOING THIS STUFF IF PEOPLE DON'T 
EVALUATE AND TELL US WHAT THEY THINK. 
WE HAVE SIX MINUTE, ANY OTHER QUESTIONS. 
I KNOW YOU ASKED QUESTIONS AS YOU 
GO THROUGH. NO QUESTIONS AT ALL. 
EXCELLENT. YOU SIR. >> HELLO THANK 
YOU FOR YOUR PRESENTATION. IF WE 
ARE GOING TO SCHEDULE OUR SECOND 
EXAM, I TRIED TO DO THIS, I CLICKED, 
IT DENIED WAS IT BECAUSE I CHOSE 
THIS LOCATION -- >> BECAUSE YOU 
CHOSE THIS LOCATION. IT DOESN'T 
WANT YOU TO TAKE IT ON SITE IT WANTS 
YOU TO TAKE AT HOME. GO TO THE AREA 
AND SPEAK TO ONE OF THE PEARSON 
PEOPLE THERE HE WILL BE HELP YOU. 
>> THERE WILL BE ANYTHING ON THE 
GPL SETTINGS RELATED TO ENROLLMENT 
OR AAD CONNECT? >> HIGHLY UNLIKELY. 
I CAN'T RULE IT OUT IT'S NITTY GRITTY, 
IT'S MORE LIKELY TO BE 101. THANK 
YOU FOR COMING. PLEASE DO EVALUATE. 
NO FURTHER QUESTIONS THANK YOU VERY 
