Synopses & Reviews
Direct from Microsoft, this Exam Ref is the official study guide for the new Microsoft MCSA 70-346 Managing Office 365 Identities and Requirements certification exam. It offers professional-level preparation that helps candidates maximize their exam performance and sharpen their skills on the job.
Microsoft Exam Ref publications stand apart from third-party study guides because they:
- Provide guidance from Microsoft, the creator of Microsoft certification exams
- Target IT professional-level exam candidates with content focused on their needs, not "one-size-fits-all content
- Streamline study by organizing material according to the exam's objective domain (OD), covering one functional group and its objectives in each chapter
- Feature Thought Experiments to guide candidates through a set of what if? scenarios and prepare them more effectively for Pro-level style exam questions.
- Explore big picture thinking around the planning and designing aspects of the IT pro's job role, as opposed to the more task-driven work of by the technology specialist
Exam Ref 70-346 Managing Office 365 Identities and Requirements focuses on the expertise measured by these objectives:
- Provision Office 365
- Plan and implement networking and security in Office 365
- Manage cloud identities
- Implement and manage identities by using DirSync
- Implement and manage federated identities (single sign-on [SSO])
- Monitor and troubleshoot Office 365 availability and usage
Managing Office 365 Identities and Requirements
About the Exam
Exam 70-346 focuses on the skills and knowledge needed to securely and efficiently manage Office 365 identities and cloud services in any environment.
About Microsoft MCSA: Office 365 Solutions Associate Certification
Passing this exam helps you earn an MCSA: Office 365 Solutions Associate certification, demonstrating your skills in transitioning to and administering cloud-hosted business applications with Office 365.
You can earn this certification by passing Exam 70-346, Managing Office 365 Identities and Requirements; and Exam 70-347, Enabling Office 365 Services.
See full details at: microsoft.com/learning
Synopsis
Prepare for Microsoft Exam 70-346--and demonstrate your real-world mastery of the skills needed to provision, manage, monitor, and troubleshoot Microsoft Office 365 identities and cloud services. Designed for experienced IT pros ready to advance their status, Exam Ref focuses on the critical-thinking and decision-making acumen needed for success at the MCSA level.
Focus on the expertise measured by these objectives:
- Provision Office 365
- Plan and implement networking and security in Office 365
- Manage cloud identities
- Implement and manage identities by using DirSync
- Implement and manage federated identities (SSO)
- Monitor and troubleshoot Office 365 availability and usage
This Microsoft Exam Ref:
- Organizes its coverage by exam objectives
- Features strategic, what-if scenarios to challenge you
- Provides exam preparation tips written by a top trainer, consultant, and sysadmin
- Assumes you have experience with the Office 365 Admin Center and an understanding of Microsoft Exchange Online, Skype for Business, SharePoint Online, Office 365 ProPlus, and Azure Active Directory
About the Author
Orin Thomas is a consultant, writer, server administrator, speaker, and Microsoft MVP who has authored more than 30 books for Microsoft Press. His IT experience ranges from providing first-level networking support at a university to administering systems for one of Australia’s largest companies. He currently specializes in network security, knowledge management, and collaboration technologies.
Table of Contents
Introduction xi Microsoft certifications xi Free ebooks from Microsoft Press xii Errata, updates, & book support xii We want to hear from you xii Stay in touch xiii Preparing for the exam xv
Chapter 1: Provision Office 365 1 Objective 1.1: Provision tenants 1 Setting up an Office 365 trial 1 Configure the tenant name 6 Tenant region 6 Administrator roles 7 Manage tenant subscriptions and licenses 8 Objective summary 12 Objective review 13 Objective 1.2: Add and configure custom domains 14 Specify domain name 14 Confirm ownership 15 Specify domain purpose 22 Move ownership of DNS to Office 365 25 Objective summary 26 Objective review 26 Objective 1.3: Plan a pilot 27 Designate pilot users 28 Identify workloads that don’t require migration 28 Run the Office 365 on-ramp readiness tool 29 Create a test plan or use case 31 Connect existing email accounts for pilot users 32 Service descriptions 34 Objective summary 36 Objective review 36 Answers 38 Objective 1.1: Thought experiment 38 Objective 1.1: Review 38 Objective 1.2: Thought experiment 39 Objective 1.2: Review 39 Objective 1.3: Thought experiment 41 Objective 1.3: Review 41
Chapter 2: Plan and implement networking and security in Office 365 43 Objective 2.1: Configure DNS records for services 43 Exchange DNS records 44 Skype for Business Online DNS records 49 SharePoint Online DNS records 52 Objective summary 54 Objective review 54 Objective 2.2: Enable client connectivity to Office 365 55 Proxy server configuration 56 Outbound firewall ports 56 Recommend bandwidth 57 Internet connectivity for clients 58 Deploy desktop setup for previous versions of Office clients 58 Objective summary 59 Objective review 59 Objective 2.3: Administer rights management 60 Activate Azure Rights Management 60 Office integration with Rights Management 64 Assign roles for Microsoft Azure Active Directory RM 67 Enable recovery of protected document 68 Objective summary 69 Objective review 69 Objective 2.4: Manage administrator roles in Office 365 70 Global administrator 71 Billing administrator 71 User management administrator 72 Service administrator 72 Password administrator 73 Delegated administrator 73 Manage role membership 74 Objective summary 78 Objective review 79 Answers 80 Objective 2.1: Thought experiment 80 Objective 2.1: Review 80 Objective 2.2: Thought experiment 81 Objective 2.2: Review 81 Objective 2.3: Thought experiment 82 Objective 2.3: Review 82 Objective 2.4: Thought experiment 83 Objective 2.4: Review 83
Chapter 3: Manage cloud identities 85 Objective 3.1: Configure password management 85 Working with cloud identities 85 Configuring password policies 86 Following password complexity policies 87 Resetting passwords 88 Objective summary 94 Objective review 94 Objective 3.2: Manage user and security groups 95 Using the bulk import process 95 Using soft delete 98 Enabling multi-factor authentication 100 Using Azure Active Directory Graph API 104 Objective summary 107 Objective review 108 Objective 3.3: Manage cloud identities with Windows PowerShell 109 Managing user passwords with Windows PowerShell 109 Hard deleting users 111 Performing bulk account operations 112 Using Azure Active Directory cmdlets 114 Objective summary 122 Objective review 122 Answers 124 Objective 3.1: Thought experiment 124 Objective 3.1: Review 124 Objective 3.2: Thought experiment 125 Objective 3.2: Review 125 Objective 3.3: Thought experiment 127 Objective 3.3: Review 127
Chapter 4: Implement and manage identities by using DirSync 129 Objective 4.1: Prepare on-premises Active Directory for DirSync 129 Using Active Directory synchronization tools 130 Cleaning up existing Active Directory objects 135 Using UPN suffixes and non-routable domains 138 Planning for filtering Active Directory 143 Supporting multiple forests 143 Objective summary 144 Objective review 145 Objective 4.2: Set up DirSync 146 Meeting the DirSync installation requirements 146 Installing DirSync 150 Filtering 160 Identifying synchronized attributes 163 Syncing passwords 165 Objective summary 166 Objective review 166 Objective 4.3: Manage Active Directory users and groups with DirSync in place 167 Creating users and groups 168 Modifying users and groups 169 Deleting users and groups 169 Scheduling synchronization 170 Forcing synchronization 170 Objective summary 173 Objective review 173 Answers 175 Objective 4.1: Thought experiment 175 Objective 4.1: Review 175 Objective 4.2: Thought experiment 176 Objective 4.2: Review 176 Objective 4.3: Thought experiment 177 Objective 4.3: Review 178
Chapter 5: Implement and manage federated identities (single sign-on) 179 Objective 5.1: Plan requirements for Active Directory Federation Services 179 Deploying AD FS topologies 180 Using certificates 181 Using namespaces 191 Meeting network requirements 191 Configuring multi-factor authentication 192 Accessing filtering using claims rules 193 Objective summary 194 Objective review 194 Objective 5.2: Install and manage AD FS servers 195 Creating AD FS service accounts 196 Configuring farm or stand-alone settings 198 Installing and configuring AD FS 199 Adding additional servers 207 Converting from standard to federated domain 217 Managing certificate life cycle 218 Objective summary 220 Objective review 220 Objective 5.3: Install and manage AD FS Proxy servers 221 Setting up perimeter network name resolution 221 Setting up certificates 222 Installing required Windows roles and features 222 Configuring AD FS Web Application Proxy 225 Setting custom proxy forms login page 229 Objective summary 230 Objective review 231 Answers 232 Objective 5.1: Thought experiment 232 Objective 5.1: Review 232 Objective 5.2: Thought experiment 233 Objective 5.2: Review 233 Objective 5.3: Thought experiment 234 Objective 5.3: Review 235
Chapter 6: Monitor and troubleshoot Office 365 availability and usage 237 Objective 6.1: Analyze reports 237 Office 365 reports 238 Mail reports 238 Usage reports 239 Skype for Business 240 SharePoint 241 OneDrive for Business 242 Auditing reports 242 Protection reports 243 Rules reports 244 Data Loss Prevention reports 244 Objective summary 245 Objective review 245 Objective 6.2: Monitor service health 246 Service Health Dashboard 246 Office 365 Management Pack 251 Windows PowerShell cmdlets 264 Objective summary 265 Objective review 265 Objective 6.3: Isolate service interruption 266 Create a service request 267 Microsoft Remote Connectivity Analyzer 272 Microsoft Connectivity Analyzer 277 Transport Reliability IP Probe 279 Hybrid Free/Busy Troubleshooter 280 Objective summary 284 Objective review 285 Answers 286 Objective 6.1: Thought experiment 286 Objective 6.1: Review 286 Objective 6.2: Thought experiment 287 Objective 6.2: Review 287 Objective 6.3: Thought experiment 288 Objective 6.3: Review 288