Chapter 1:  Introduction To AAD

Chapter Goal: This chapter will introduce core concepts necessary to understand Azure AD and authentication/ authorization in general.

No of pages    10-15

Sub -Topics

1.       Core AD concepts

2.       Key Terms (Authentication Vs. Authorization, Token - JWT, SAML, Identity, SPN, OAuth, Tenant, Client, Resource, Claims, Multi-tenant)

3.       Azure AD understanding and need

4.       Azure B2C

5.       Azure B2B

Chapter Goal: This chapter introduces 2.  OpenID Connect, OAuth and its flows.

No of pages: 10-15

Sub - Topics  

1.      Types of token: ID Token, Access Token, Refresh Token

2.       OpenID Connect

3.       Implicit Flow

4.       Code Grant Flow

5.       On Behalf Of

6.       Client Credentials

Chapter Goal: In this chapter we dive deep into integrating web applications with Azure AD, for user-based authentication

No of pages: 25-30

Sub - Topics: 

1.       Single Page Application (Implicit Flow)

2.       Web-App to Web API (Code Grant Flow, Token storage: Cookie based/ Distributed cache/ ADAL/ Session Storage/ Local Storage)

3.       Web-App to Azure Function Endpoint (Code Grant Flow)

4.       API1 to API1 (On Behalf Of)

5.       Enabling Multi-Factor Authentication

6.       Authentication for Integration tests

7.       Authentication for Build Verification Test

Chapter Goal: In this chapter we dive deep enabling integration of various native applications with Azure AD, for user-based authentication

No of pages: 10-15

Sub - Topics:

1.       Console - Web-Job, Azure Functions

2.       WPF

3.       UWP

4.       Android

Chapter Goal: Understand authenticating applications with Azure AD

No of pages: 5-10

Sub - Topics:

1.       Client Credentials

2.       Certificate based Authentication

Chapter Goal: This chapter covers collaboration with external users and other AD tenants

No of pages: 15-20

Sub - Topics:

1.       Azure B2B

2.       Azure B2C

Chapter Goal: Covers extending schema of AD objects like users etc. to add custom attributes on top of attributes predefined by Azure AD

No of pages: 10-15

Sub - Topics:

1.       Need for schema extensions

2.       CRUD operations using C#

3.       CRUD operations using PowerShell

Chapter Goal: Understand how to support multi-tenancy in Azure AD

No of pages: 10-15

Sub - Topics:

1.       Introduction

2.       Application design for Multi-tenancy

3.       Storage design for Multi-tenancy

Chapter Goal: This chapter introduces designing authorization with Azure AD

No of pages: 15-20

Sub - Topics:

1.       Role based Authorization

2.       Claims based Authorization

3.       Policy based Authorization

4.       Resource base Authorization

5.      Security Group

Manas is currently working as a senior consultant with Microsoft and has 12+ years of experience in IT. He has diverse experience in both products and custom support. He has  4+ years of experience as development/ technical lead, ensuring end-to-end delivery of custom solutions from project requirements to stabilization.