Describe Identity Concepts Flashcards
Define authentication and authorization
1.) Authentication: is the process of providing that a person is who they say they are. When you want to login to your computer the username and password is a form of authentication as you are authenticating that it is you.
2.) Authorization: how much access is given to an individual. What are they allowed to access or not.
Define Identity and its 4 pillars
Identity: is the set of things that define or characterize someone or something.
4 pillars:
1.) Administration - as an administrator you manage how and under what circumstances the characteristics of identities can change (be created, updated, deleted.).
2.) Authentication - it tells the story of how much an IT system needs to know about an identity to have sufficient proof that they are who they say they are.
3.) Authorization - is the process of using the incoming identity data to determine the level of access this person has.
4.) Auditing - is about tracking who does what, when, where, and how.
Describe the role of the identity provider
With a central identity provider, organizations can establish authentication and authorization policies, monitor user behavior, identify suspicious activities, and reduce malicious attacks.
In modern authentications, the client communicates with the identity provider by giving an identity that can be authenticated. When the identity has been verified, the identity provider issues a security token that the client sends to the server.
Microsoft Entra ID is an example of a cloud-based identity provider.
Single sign-on is another fundamental capability of an identity provider. The user logs in once and the credential is used to access multiple applications or resources. it is called a federation.
Define Single sign one