I have prepared for my azure interview watching ur videos and got selected. These are greatly explained and i love the way u make things easy to understand. Thank you John and keep going!
I appreciated his comment on not enabling MFA for all services, instead only for anomalies or when privileges need to be elevated etc. I could see how users would be accustomed to always clicking yes for MFA because of being so used to doing so. Great overview!!
I'm watching your videos in order to prepare for AZ-500 certification. Not so evident since I do not have any Azure experience. Your videos help me understand Azure a lot better. So thank you very much.
One of the best Azure UA-cam channel presently available with the overall content from Basic till Advanced. Thanks for all your hard work to teach us all your knowledge.
Having worked with Azure / AD, it is really great to have a broken down explanation how it all REALLY works together instead of imagining the magic in between them
Thanks for this excellent video, a good starting point to connect the different dots regarding Azure AD together. To understand how AD Connect, ADFS, Tokens etc. work together is quite a challenge if you rely on the Microsoft documentation or the Azure AD Exam Ref alone. With this video it is easier to understand the general concept and then going into the details.
I have started taking a course in Coursera targeting AZ-500. Coming here I get a lot ... mean a lot more clarity over the Coursera course content. It does introduces a lot, but, you give the clarity that is needed for me to be successful in exams and be authentic in work. Thank you, Savill.
Absolutely great videos John.I was searching for Azure videos in safari,udemy etc but i was not happy.Your videos and Knowledge are great.Thanks for sharing your awesome work.
Hi John, this is the first time I came across your training video. I found very informative and helpful. It was very thought out and structured which made it easy to follow. Thank you!
Excellent video, John . Your videos are part of my "after dinner" routine when I relax in lounge and watch youtube videos. Could you explain a mystery of PTR tokens and how they affect MFA? Folks are struggling to force MFA if users are signing in from unfamiliar locations, for example.
Thanks, assuming you mean PRT (primary refresh token). I talk about tokens in other videos. Authz will drive MFA requirements, eg conditional access if the refresh token is not marked as strong auth.
Thank you John. Job well done. Wanted to ask if you have any video for multicloud federation with azure ad? I know you touched it bit in here but will you be able to make some video which focus on IAM using AAD with AWS, google etc? And for app hosted in on prem, azure and other clouds? Thank you again. Appreciate it
John - Thanks for teaching us for free , quick question how do i learn myself with AD by creating a free account also not get caught up with any cost to it. How efficient is to use that free AD that comes with the free credit. Could you please make a video out of how to configure that free AD in azure portal ? Thanks Matt
I have a question. I have a number of computers connected to AAD and every time they need to install applications on that computer. Is there a way to create a power user account so a user in the company can allow them to install app instead of Global admin?
I see that using PTA also requires to connect to on-prem infra to auth. Why is it "better" than FED? Does it mean FED is kind of "cumbersome" or "overcomplicated"? PS: I've watched this video 2nd time. I don't want to miss anything 😄
Hi John, In above video at 17:00, you said if there is any ransomware attack on Prem then you can flip to cloud. But how you can use the cloud identity since credentials across on Prem and in the cloud are sync n same. An attacker could use Cloud as well. Looking for your advice please, thanks.
it depends on the attack. wannacry for example encrypted servers making them offline, e.g. domain controllers. if that happens you could flip to cloud auth as the attack would not have took down AAD to enable cloud trusting services to continue working.
I never understood why companies fear syncing passwords to Azure AD, its managed by Microsoft themselves so its always going to be more secure than your own on-prem environment
Hi John, if email migration to Exchange Online is taking too long (the syncing process could take weeks or even months for a 100GB mailbox), what options could we have to improve that?
Can we use azure ad services to administrate devices like mac linux and win and how much we can can we encrypt devices authentication group policy's for linux and mac too patch management etc
Super helpful content. Just wondering, since this is a 2 year old video, is any of the stuff mentioned here be considered legacy or "not applicable" anymore?
just got my first job after 10 years due to a stroke and having to learn all about the cloud and loving it, your vidoe's are really helpfull.
Wow, sorry to hear that happened to you but glad you are now back working and best of luck 🤙
I have prepared for my azure interview watching ur videos and got selected. These are greatly explained and i love the way u make things easy to understand. Thank you John and keep going!
Good luck!!
Two years later, still pure gold. :] Re-watched it today to reiterate the concepts on a high level - so well done!
I appreciated his comment on not enabling MFA for all services, instead only for anomalies or when privileges need to be elevated etc. I could see how users would be accustomed to always clicking yes for MFA because of being so used to doing so. Great overview!!
Right tie it to the activity, risk etc.
I'm watching your videos in order to prepare for AZ-500 certification. Not so evident since I do not have any Azure experience. Your videos help me understand Azure a lot better. So thank you very much.
Quite simply the best Azure trainer around. Thanks for sharing John - Love your work!
One of the best teacher I have ever came across.
Thank you 🙏
YOU are the One to be treasured 😇. Thanks for teaching us with lots of efforts!
It's my pleasure
One of the best Azure UA-cam channel presently available with the overall content from Basic till Advanced.
Thanks for all your hard work to teach us all your knowledge.
Thanks you John. You are the best Azure AD maestro.
Having worked with Azure / AD, it is really great to have a broken down explanation how it all REALLY works together instead of imagining the magic in between them
Thanks for this excellent video, a good starting point to connect the different dots regarding Azure AD together. To understand how AD Connect, ADFS, Tokens etc. work together is quite a challenge if you rely on the Microsoft documentation or the Azure AD Exam Ref alone. With this video it is easier to understand the general concept and then going into the details.
Glad it was useful. Thanks for watching!
Binge-watching this playlist. Thanks a mil for all your effort John! Hero!!!
I have started taking a course in Coursera targeting AZ-500. Coming here I get a lot ... mean a lot more clarity over the Coursera course content. It does introduces a lot, but, you give the clarity that is needed for me to be successful in exams and be authentic in work. Thank you, Savill.
very welcome
Really on point and in particular great b2b and b2c explanations.
Nice one John. I'm using you quite a lot now to get up to speed with Azure. I always learn something useful and get motivated to do press-ups after.
Lol, happy to help :)
Hi John, you are my guru in "Azure AD", you video's are really informative
Thank you, you explain this in a very clear comprehendible format
Really enjoyed your content, exactly what I was after - a Primer on AzureAD. Thank you 😊
Absolutely great videos John.I was searching for Azure videos in safari,udemy etc but i was not happy.Your videos and Knowledge are great.Thanks for sharing your awesome work.
Very kind, thank you.
Thanks John, you are indeed a Cloud Guru.
Hehe thank you
I was slacking in physical and virtual training, watching this video has motiviated me to do both
Go for it!
Hi John, this is the first time I came across your training video. I found very informative and helpful. It was very thought out and structured which made it easy to follow. Thank you!
its insane how relevant this still is
Love the videos John. Long time fan of your books too.
Very kind, thank you!
Very well done. Using this to prepare for SC-300
Great overview!! love your videos and always learn a ton. I really appreciate it.
Thanks, John your videos helped me a lot. Best Azure AD video I've watched.
Wow, thanks!
Thank you very much, John! You explain сomplicated things in a simple way.
My pleasure. Thanks for watching
Thank you John! I am studying for AZ-500. Your videos are a great aid!!!
Thanks! Good luck
Wondering how you are using Lab for Azure AD . I am also studying for AZ-500 and new to Azure just completed my AZ-103 and AZ-900. mate
Excellent explanation of AAD architecture. Thank you !!!
You are welcome!
This was effing fantastic!!! Thanks so much, John!!!
Better than 99.9% of Udemy Azure course
Good Lesson and well spend 45 min during Corona evenings.
Thanks! 😃
Awesome, well put together review of AAD... thank you!
Another great presentation and a great shirt !!!!
Glad you like it!
Great overview John. Much appreciated.
Glad you enjoyed it
really clear, easy to understand and very informative, thank you
My pleasure.
Great video John, thank you.
Nice T-Shirt, John.
Thanks :)
Great session John. Thanks for sharing
Thanks for watching
Thank you so much John!!!
Great presentation. Crystal clear.
Glad it was helpful!
Magnificent, very informative, great job!
Excellent video, John . Your videos are part of my "after dinner" routine when I relax in lounge and watch youtube videos.
Could you explain a mystery of PTR tokens and how they affect MFA? Folks are struggling to force MFA if users are signing in from unfamiliar locations, for example.
Thanks, assuming you mean PRT (primary refresh token). I talk about tokens in other videos. Authz will drive MFA requirements, eg conditional access if the refresh token is not marked as strong auth.
Outstanding content.
Thank you!
Superb as always John!
Glad you enjoyed it
Thank you John. Job well done. Wanted to ask if you have any video for multicloud federation with azure ad? I know you touched it bit in here but will you be able to make some video which focus on IAM using AAD with AWS, google etc? And for app hosted in on prem, azure and other clouds? Thank you again. Appreciate it
Apps on prem I’ve talked about aad app gateway and of course could native use aad. Other clouds I have not.
Thank you! Well done and much appreciated. :)
My pleasure!
John - Thanks for teaching us for free , quick question how do i learn myself with AD by creating a free account also not get caught up with any cost to it. How efficient is to use that free AD that comes with the free credit. Could you please make a video out of how to configure that free AD in azure portal ?
Thanks
Matt
I have a video on learning Azure where I talk about the free account.
I have a question.
I have a number of computers connected to AAD and every time they need to install applications on that computer. Is there a way to create a power user account so a user in the company can allow them to install app instead of Global admin?
Not an aad issue. Things like in tune or store for business can help for central install help.
Thanks for this session John
My pleasure. Thanks for watching.
I see that using PTA also requires to connect to on-prem infra to auth. Why is it "better" than FED? Does it mean FED is kind of "cumbersome" or "overcomplicated"?
PS: I've watched this video 2nd time. I don't want to miss anything 😄
Federation is complex, requires lots of components, requires you to have ports open to the Internet.
Awesome video Again John!!!!
Thank you
nice one, John!
👍
This is great detail as always. Thank you
Glad you liked it!
Hi John,
In above video at 17:00, you said if there is any ransomware attack on Prem then you can flip to cloud.
But how you can use the cloud identity since credentials across on Prem and in the cloud are sync n same. An attacker could use Cloud as well. Looking for your advice please, thanks.
if the on-prem infra was offline such as wannacry then AAD would still be functioning so could switch to cloud auth.
@@NTFAQGuy Thanks, but the attackers will go for On-Prem and Off-Prem both same time since they know credentials are synched across.
it depends on the attack. wannacry for example encrypted servers making them offline, e.g. domain controllers. if that happens you could flip to cloud auth as the attack would not have took down AAD to enable cloud trusting services to continue working.
@@NTFAQGuy hmm..It does make sense. Thanks a lot.
I never understood why companies fear syncing passwords to Azure AD, its managed by Microsoft themselves so its always going to be more secure than your own on-prem environment
Great thinking !
If AAD is totally separate from Azure/subscriptions then can we provision AAD without creating any subscription for new Org?
yes.
Hi John, if email migration to Exchange Online is taking too long (the syncing process could take weeks or even months for a 100GB mailbox), what options could we have to improve that?
I'm not an Exchange Online person I'm afraid, no idea. That's not really anything to do with AAD.
Can we use azure ad services to administrate devices like mac linux and win and how much we can can we encrypt devices authentication group policy's for linux and mac too patch management etc
no. you should watch my new video of the line between AD and Azure AD.
Nailed it as usual!
Thank you!
Super helpful content. Just wondering, since this is a 2 year old video, is any of the stuff mentioned here be considered legacy or "not applicable" anymore?
No
Thanks man
I got have decent biceps to explain Azure AD :)
100% lol
very smart man
very kind but only about Azure :-)
You explain things well - a great skill - you are also a humble man
@@harry6555 thank you!
Thanks John! Was a great one!
Glad you enjoyed it! Thanks for watching.
An Azure maven