Azure AD Connect

Question 1

Azure AD Connect

Answer 1

Designed to facilitate hybrid identities, including interdirectory provisioning from Active Directory to Azure AD

Question 2

Azure AD Connect Cloud Sync

Answer 2

-an agent that is designed to facilitate hybrid identity goals
-it provides a lightweight interdirectory provisioning experience between Active Directory and Azure AD and is configured via the portal.

Question 3

Hybrid identity authentication methods

Answer 3

-Password Hash Sync (PHS)
-Pass-Through Authentication (PTA)
-Federation: a set of domains that have established trust, allowing for authentication and authorization

Question 4

Password Hash Sync

Answer 4

Azure AD Connect Syncs a hash of a user’s password from an on-prem Active Directory instance to a cloud-based Azure AD instance

Question 5

Pass-Through Authentication

Answer 5

-Allows users to access both on-prem and cloud apps using identical passwords. This feature verifies user’s passwords directly agaisnt the on-prem Active Directory.
-Works seamlesly with Conditional Access features
-Does not store passwords in the cloud

Question 6

For Azure AD Connect, on the on-prem side you need someone with this role:

Answer 6

Enterprise Admin. to help implement the Azure AD Connect
-You need the Global Adminstrator role on the Azure AD side

Question 7

You have an existing AD Connect implementation. You have to prevent users from a certain department to be synced to Azure AD. What tool should you use?

Answer 7

Synchronization Rules Editor on the AD connect server