Describe Azure identity, access, and security Flashcards
Define ‘Microsoft Entra ID’
Cloud-based directory service that enables you to sign in and access both Microsoft cloud applications and cloud applications that use Entra ID as an IDP.
What is Microsoft Entra ID also referred to as?
Identity and access management service.
How can app developers leverage Microsoft Entra ID?
Adding SSO functionality to an app or enabling an app to work with a user’s existing credentials.
What are the four main functions of Microsoft Entra ID?
- Authentication
- Single sign-on (SSO)
- Application management
- Device management
Define ‘Microsoft Entra Connect’
Method of synchronizing user identities and changes to identities between on-premises AD and Entra ID.
Define ‘Microsoft Entra Domain Services’
A cloud based DC; Provides managed domain services such as domain join, group policy, LDAP, and Kerberos/NTLM authentication.
How can legacy applications leverage Microsoft Entra Domain Services?
Entra Domain Services lets you run legacy applications in the cloud that can’t use modern authentication methods.
How is a Microsoft Entra Domain Service established?
By defining a unique namespace (domain name); A replica set (two DCs) of DCs are deployed into your azure region.
Who manages the DCs that are apart of Microsoft Entra Domain Services?
The Azure platform manages, configures, updates, backups, and encrypts the replica set.
How is information synched in a managed domain?
Configured to perform a one-way synchronization from Microsoft Entra ID to Microsoft Entra Domain Services.
How is information synched in a hybrid AD and Entra ID domain?
Microsoft Entra Connect synchronizes identity information with Microsoft Entra ID, which is then synchronized to the managed domain.
How are applications, services, and VMs in azure managed?
If they connect to a managed domain, they can used Microsoft Entra Domain Services.
Define ‘Microsoft Entra multifactor authentication’
A Microsoft service that provides multifactor authentication capabilities.
Define ‘passwordless authentication’
Replaces passwords with something you have, plus something you are, or something you know.
How does passwordless authentication function?
Passwordless authentication needs to be set up on a device before it can work; The computer is registered to a user (something you have) and is tied to the users PIN/Fingerprint (something you know/something you are).