Authentication and Authorization Flashcards
What are the components of Authentication and Authorization ?
Identity Services
Azure AD (AAD)
MFA
SSO
What is Authentication ?
first test for Access - confirming identity
confirming you are you
username / password , biometrics
What is Authorisation ?
do you get access to a resource ?
much more granular
What is Azure AD (AAD) ?
mandatory service within Azure as 1st user is needed
Powerful Hybrid cloud potential
What is a Tenant ?
dedicated AAD instance representing organisation
one user = one tenant, can be guest on other tenants
What is the purpose of a subscription ?
cost separation
What is MFA ?
recommended as default
critical to current solutions using 2 or more auth methods
What are the MFA Auth Methods ?
Something you know (username/password)
Something you have (phone)
Something you are (biometrics)
What is SSO ?
Azure Active Directory Seamless Single Sign On
a number of apps take advantage of this - Skype, Outlook, Azure
one pair of credentials - multiple apps