AAD - ADConnect Flashcards

1
Q

AAD Authentication Methods

A

PHS - Password Hash Synchronization
PTA - Pass-Through Authentication
Federation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

AAD Tools

A

Sync Scheduler
Rules Editor
AD Connect Health

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Federation

Benefits and Issues

A
  • Support smartcard
  • On-Prem MFA
  • Password Expiry Notification
  • Account lifecycle/timing supported
  • Complex / Expansive
  • Do not support seamless Authentication
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Federation Requirements

A

AD-FS Server - internal sign-in
WAP Proxy - external sign-in
Load Balancer
Multiple Servers for HA

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Seem less Login

A

Internal Access, no Username/password needed

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

PHS

Password Hash Sync

A

Hash - Double Hashed
Supports O365 hybrid identity
Backup of Federation Authn. system
MFA only works with Azure AAD - no 3rd party

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

PTA
Pass-Through Authentication

  • best
A
All on-prem account policies enforceable
No on-prem MFA supported
Detection of user with leaked credentials not possible
Seem less SSO is supported
Multiple PTA Agents are required
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Sync Scheduler runs after

A

every 3o minutes by default

How well did you know this?
1
Not at all
2
3
4
5
Perfectly