Chapter 1 Flashcards
What is a DNS CNAME record
The “Canonical Name” CNAME record is used in lieu of an A record, when a domain or subdomain is an alias of another domain. For example www.mydomain.com has as CNAME mydomain.com
What is a DNS TXT record
The DNS ‘text’ (TXT) record lets a domain administrator enter text into the Domain Name System (DNS)
What is an A record
A Records are the most basic type of DNS record and are used to point a domain or subdomain to an IP address. Assigning a value to an A record is as simple as providing your DNS management panel with an IP address to where the domain or subdomain should point and a TTL.
What is an AAAA record
An AAAA record maps a domain name to the IP address (Version 6) of the computer hosting the domain. An AAAA record is used to find the IP address of a computer connected to the internet from a name
Conditional Access
Conditional Access allows rules to be created that specifies specific criteria like where selected users usually sign in from when they sign in from another location they should be met with an MFA challenge to complete their login
Identity Protection
Identity Protection is mainly associated with risky sign-ins and can request the user to authenticate via MFA as well
Privilege Identity Management
Privilege Identity management enables users to activate additional roles with their identity like Global Admin
What is Azure Identity Protection
Identity Protection is a tool that allows organizations to accomplish three key tasks:
1) Automate the detection and remediation of identity-based risks.
2) Investigate risks using data in the portal.
3) Export risk detection data to third-party utilities for further analysis.
Access through search > Azure Identity Protection
Conditional Access
Conditional Access policies at their simplest are if-then statements, if a user wants to access a resource, then they must complete an action. Example: A payroll manager wants to access the payroll application and is required to perform multi-factor authentication to access it.
Access through Security > Conditional Access
Account Commands
cli:
az ad user create
Powershell:
New-AzureADUser
Show all VM
Get-AzVM -Status
List all the subscriptions an Azure Account can access in the tenant
Get-AZSubscription
Powershell Visualize
Get-AzResourceGroup
Get-AzStorageAccount
Get-AzVM
Powershell Create
New-AzVM
New-AzStorageAccount
New-AzResourceGroup