On the Create an Azure VM with a new AD Forest<\/strong> blade, click Edit parameters<\/strong>.<\/p>\n\n\n\n<\/p>\n\n\n\nOn the Edit parameters<\/strong> blade, click Load file<\/strong>, in the Open<\/strong> dialog box, click \\\\AllFiles\\Labs\\06\\active-directory-new-domain\\azuredeploy.parameters.json<\/strong>, click Open<\/strong>, and then click Save<\/strong>.<\/p>\n\n\n\n<\/p>\n\n\n\nOn the Create an Azure VM with a new AD Forest<\/strong> blade, specify the following settings (leave others with their existing values):<\/li><\/ul>\n\n\n\nSetting<\/strong><\/td>Value<\/strong><\/td><\/tr><\/thead>Subscription<\/td> the name of you Azure subscription<\/td><\/tr> Resource group<\/td> click Create new<\/strong> and type the name rg-exceed13102021<\/strong><\/td><\/tr>Region<\/td> the Azure region you identified in the previous task<\/td><\/tr> Admin Username<\/td> exceedstudent<\/strong><\/td><\/tr>Admin Password<\/td> Pa55w.rd1234<\/strong><\/td><\/tr>Domain Name<\/td> adatum.com<\/strong><\/td><\/tr>Dns Prefix<\/td> Exceedlab09142021<\/td><\/tr> VM Size<\/td> Standard_D2s_v3<\/strong><\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\nOn the Create an Azure VM with a new AD Forest<\/strong> blade, click Review + create<\/strong>, and then click Create<\/strong>.<\/li><\/ul>\n\n\n\n<\/p>\n\n\n\nNote<\/strong>: Do not wait for the deployment to complete but instead proceed to the next exercise. The deployment might take about 15 minutes. You will use the virtual machine deployed in this task in the third exercise of this lab.<\/p>\n\n\n\nResult: After you completed this exercise, you have initiated deployment of an Azure VM that will host an Active Directory domain controller by using an Azure Resource Manager template<\/p>\n\n\n\n
<\/p>\n\n\n\n
Practical Labs 2: Create and configure an Azure Active Directory tenant<\/strong><\/p>\n\n\n\nIn this exercise, you will complete the following tasks:<\/p>\n\n\n\n
Task 1: Create an Azure Active Directory (AD) tenant<\/li> Task 2: Add a custom DNS name to the new Azure AD tenant<\/li> Task 3: Create an Azure AD user with the Global Administrator role<\/li><\/ul>\n\n\n\nTask 1: Create an Azure Active Directory (AD) tenant<\/strong><\/p>\n\n\n\nIn this task, you will create a new Azure AD tenant to use in this lab.<\/p>\n\n\n\n
In the Azure portal, in the Search resources, services, and docs<\/strong> text box at the top of the Azure portal page, type Azure Active Directory<\/strong> and press the Enter<\/strong> key.<\/li>On the blade displaying Overview<\/strong> of your current Azure AD tenant, click Manage tenant<\/strong>, and then on the next screen, click + Create<\/strong>.<\/li><\/ul>\n\n\n\n<\/p>\n\n\n\nOn the Basics<\/strong> tab of the Create a directory<\/strong> blade, ensure that the option Azure Active Directory<\/strong> is selected and click Next: Configuration ><\/strong>.<\/li>On the Configuration<\/strong> tab of the Create a directory<\/strong> blade, specify the following settings:<\/li><\/ol>\n\n\n\nSetting<\/strong><\/td>Value<\/strong><\/td><\/tr><\/thead>Organization name<\/td> AdatumSync<\/strong><\/td><\/tr>Initial domain name<\/td> a unique name consisting of a combination of letters and digits<\/td><\/tr> Country or region<\/td> United States<\/strong><\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\nNote<\/strong>: Record the initial domain name. You will need it later in this lab.<\/li>Note<\/strong>: The green check mark in the Initial domain name<\/strong> text box will indicate whether the domain name you typed in is valid and unique. (Record your initial domain name for later use).<\/li><\/ul>\n\n\n\n<\/p>\n\n\n\nClick Review + create<\/strong> and then click Create<\/strong>.<\/li><\/ul>\n\n\n\nNote<\/strong>: Wait for the new tenant to be created. Use the Notification<\/strong> icon to monitor the deployment status.<\/p>\n\n\n\n<\/p>\n\n\n\nValidate the check – you are not a robot<\/p>\n\n\n\nClick on Submit for the creation of the tenant<\/p>\n\n\n\n
<\/p>\n\n\n\n
Task 2: Add a custom DNS name to the new Azure AD tenant<\/strong><\/p>\n\n\n\nIn this task, you will add your custom DNS name to the new Azure AD tenant.<\/p>\n\n\n\n
In the Azure portal, in the toolbar, click the Directory + subscription<\/strong> icon, located to the right of the Cloud Shell icon.<\/li>In the Directory + subscription<\/strong> blade, click the newly created tenant, AdatumSync<\/strong>.<\/li><\/ol>\n\n\n\nNote<\/strong>: You may need to refresh the browser window if the AdatumSync<\/strong> entry does not appear in the Directory + subscription<\/strong> filter list.<\/p>\n\n\n\n<\/p>\n\n\n\nClick on Switch<\/p>\n\n\n\n
On the AdatumSync | Azure Active Directory<\/strong> blade, in the Manage<\/strong> section, click Custom domain names<\/strong>.<\/li><\/ul>\n\n\n\n<\/p>\n\n\n\nOn the AdatumSync | Custom domain names<\/strong> blade, click + Add custom domain<\/strong>.<\/p>\n\n\n\n<\/p>\n\n\n\nOn the Custom domain name<\/strong> blade, in the Custom domain name<\/strong> text box, type adatum.com<\/strong> and click Add Domain<\/strong>.<\/p>\n\n\n\n<\/p>\n\n\n\nOn the adatum.com<\/strong> blade, review the information necessary to perform verification of the Azure AD domain name.<\/p>\n\n\n\n<\/p>\n\n\n\nNote<\/strong>: You will not be able to complete the validation process because you do not own the adatum.com<\/strong> DNS domain name. This will not prevent you from synchronizing the adatum.com<\/strong> AD DS domain with the Azure AD tenant. You will use for this purpose the initial DNS name of the Azure AD tenant (the name ending with the onmicrosoft.com<\/strong> suffix), which you identified in the previous task. However, keep in mind that, as a result, the DNS domain name of the AD DS domain and the DNS name of the Azure AD tenant will differ. This means that Adatum users will need to use different names when signing in to the AD DS domain and when signing in to Azure AD tenant.<\/p>\n\n\n\n<\/p>\n\n\n\n
Task 3: Create an Azure AD user with the Global Administrator role<\/strong><\/p>\n\n\n\nIn this task, you will add a new Azure AD user and assign them to the Global Administrator role.<\/p>\n\n\n\n
On the AdatumSync<\/strong> Azure AD tenant blade, in the Manage<\/strong> section, click Users<\/strong>.<\/li>On the Users | All users<\/strong> blade, click + New User<\/strong>.<\/li><\/ul>\n\n\n\nOn the New user<\/strong> blade, ensure that the Create user<\/strong> option is selected, specify the following settings (leave all others with their default values) and click Create<\/strong>:<\/li><\/ul>\n\n\n\nSetting<\/strong><\/td>Value<\/strong><\/td><\/tr><\/thead>User name<\/td> syncadmin<\/strong><\/td><\/tr>Name<\/td> syncadmin<\/strong><\/td><\/tr>Password<\/td> ensure that the option Auto-generate password<\/strong> is selected and click Show Password<\/strong><\/td><\/tr>Groups<\/td> 0 groups selected<\/strong><\/td><\/tr>Roles<\/td> click User<\/strong>, then click Global administrator<\/strong>, and click Select<\/strong><\/td><\/tr>Usage Location<\/td> United States<\/strong><\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n
![\"\"\/](\"https:\/\/exceedthecloud.com\/wp-content\/uploads\/2022\/02\/img01-3.png\")
<\/figure>\n\n\n\n![\"\"\/](\"https:\/\/exceedthecloud.com\/wp-content\/uploads\/2022\/02\/img02-3-1024x528.png\")
<\/figure>\n\n\n\n![\"\"\/](\"https:\/\/exceedthecloud.com\/wp-content\/uploads\/2022\/02\/img03-3.png\")
<\/figure>\n\n\n\n![\"\"\/](\"https:\/\/exceedthecloud.com\/wp-content\/uploads\/2022\/02\/img04-3-1024x692.png\")
<\/figure>\n\n\n\n![\"\"\/](\"https:\/\/exceedthecloud.com\/wp-content\/uploads\/2022\/02\/img05-3-1024x858.png\")
<\/figure>\n\n\n\n![\"\"\/](\"https:\/\/exceedthecloud.com\/wp-content\/uploads\/2022\/02\/img06-2.png\")
<\/figure>\n\n\n\n![\"\"\/](\"https:\/\/exceedthecloud.com\/wp-content\/uploads\/2022\/02\/img07-2-1024x612.png\")
<\/figure>\n\n\n\n![\"\"\/](\"https:\/\/exceedthecloud.com\/wp-content\/uploads\/2022\/02\/img08-2-1024x222.png\")
<\/figure>\n\n\n\n![\"\"\/](\"https:\/\/exceedthecloud.com\/wp-content\/uploads\/2022\/02\/img09-2-1024x480.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/exceedthecloud.com\/wp-content\/uploads\/2022\/02\/img10-2-6-1024x478.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/exceedthecloud.com\/wp-content\/uploads\/2022\/02\/img11-2-6.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/exceedthecloud.com\/wp-content\/uploads\/2022\/02\/img12-2-6-1024x288.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/exceedthecloud.com\/wp-content\/uploads\/2022\/02\/img13-2-6-1024x598.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/exceedthecloud.com\/wp-content\/uploads\/2022\/02\/img14-2-6-1024x255.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/exceedthecloud.com\/wp-content\/uploads\/2022\/02\/img15-1-5-1024x477.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/exceedthecloud.com\/wp-content\/uploads\/2022\/02\/img16-1-5-1024x210.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/exceedthecloud.com\/wp-content\/uploads\/2022\/02\/img17-1-5-1024x164.png\")
<\/figure>\n\n\n\n