AAD - ADConnect Flashcards
1
Q
AAD Authentication Methods
A
PHS - Password Hash Synchronization
PTA - Pass-Through Authentication
Federation
2
Q
AAD Tools
A
Sync Scheduler
Rules Editor
AD Connect Health
3
Q
Federation
Benefits and Issues
A
- Support smartcard
- On-Prem MFA
- Password Expiry Notification
- Account lifecycle/timing supported
- Complex / Expansive
- Do not support seamless Authentication
4
Q
Federation Requirements
A
AD-FS Server - internal sign-in
WAP Proxy - external sign-in
Load Balancer
Multiple Servers for HA
5
Q
Seem less Login
A
Internal Access, no Username/password needed
6
Q
PHS
Password Hash Sync
A
Hash - Double Hashed
Supports O365 hybrid identity
Backup of Federation Authn. system
MFA only works with Azure AAD - no 3rd party
7
Q
PTA
Pass-Through Authentication
- best
A
All on-prem account policies enforceable No on-prem MFA supported Detection of user with leaked credentials not possible Seem less SSO is supported Multiple PTA Agents are required
8
Q
Sync Scheduler runs after
A
every 3o minutes by default