Skip to content

Contact sales

By filling out this form and clicking submit, you acknowledge our privacy policy.
  • Labs icon Lab
  • A Cloud Guru
Azure icon
Labs

Configure Just Enough Administration (JEA)

This lab walks through the process of configuring Just Enough Administrative (JEA).

Try for free Contact sales
Azure icon
Labs

Path Info

Level
Clock icon Advanced
Duration
Clock icon 1h 0m
Published
Clock icon Jan 17, 2022

Contact sales

By filling out this form and clicking submit, you acknowledge our privacy policy.

Table of Contents

  1. Challenge

    Configure Active Directory

    1. Create the two organizational units (OUs), one for privileged user accounts named Privileged Admins and another for non-privileged user accounts named User Accounts.
      1. Move the privileged user account admin_user to the privileged user account OU.
      2. Move the non-privlileged user account helpdesk_user to the non-privileged account OU.
    2. Create a Domain Local Active Directory security group named Helpdesk Staff.
    3. Add the helpdesk_user user to the Helpdesk Staff group.

  2. Challenge

    Configure Just Enough Administration (JEA)

    1. Configure Just Enough Administration (JEA) to allow helpdesk staff to unlock accounts and reset passwords for non-privileged user accounts using the Active Directory powershell module:
      1. Create a module.
      2. Define role capabilities.
      3. Create the session configuration.
      4. Register the configuration.

    Please note: You can refer to the following code snippets when creating your role capabilities: Code Snippets

  3. Challenge

    Test the Configuration

    1. Log on to BRAWKS1 as our non-privileged domain user account [email protected].
    2. Connect to BRADC1 using PowerShell Remoting and specify the configuration you created.
    3. Test unlocking accounts and resetting user accounts for prilvileged like admin_user and non-prilveged users like helpdesk_user.
A Cloud Guru - Labs - Configure Just Enough Administration (JEA)
Author
A Cloud Guru

The Cloud Content team comprises subject matter experts hyper focused on services offered by the leading cloud vendors (AWS, GCP, and Azure), as well as cloud-related technologies such as Linux and DevOps. The team is thrilled to share their knowledge to help you build modern tech solutions from the ground up, secure and optimize your environments, and so much more!

What's a lab?

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.

Provided environment for hands-on practice

We will provide the credentials and environment necessary for you to practice right within your browser.

Guided walkthrough

Follow along with the author’s guided walkthrough and build something new in your provided environment!

Did you know?

On average, you retain 75% more of your learning if you get time for practice.

Start learning by doing today

View Plans