Implement Initial configuration of Azure Active Directory Flashcards

1
Q

What licenses do you require to have Company Branding

A

Azure AD Premium 1, Premium 2, or Office 365 (365 apps)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Global Administrator

A
  • Manage access to all admin in features in Azure AD
  • Assign admin roles
  • Resets passwords for any other users
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

User Administrator

A
  • Creates & managers all of aspects of users and groups
  • Manage support tickets
  • Monitor service health
  • Change passwords for users, helpdesk admins and user admins
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Billing Administrator

A
  • Make purchases
  • Manages Subscriptions
  • Manage support tickets
  • Monitors service health
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Azure Roles

A
  • Manage access to Azure resources
  • Scope can be specified at multiple levels (management group, subscription, resource group, resource)
  • Role info can be accessed in the Azure portal, Azure CLI, Azure Powershell, ARM templates, and REST API
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Azure AD Roles

A
  • Manage access to Azure AD resources
  • Scope is at tenant level or can be applied to an Administrative Unit
  • Role info can be accessed in the azure admin portal. M365 admin center, Microsoft Graph, Azure AD Powershell
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is an Administrative Unit

A
  • Administrative Units are resources that can be containers for other Azure AD resources.
  • An administrative unit can only contain users or groups
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is an Application Administrator

A

Grants the ability to manage all applications in the directory, including registrations, SSO-settings, user and group assignments, licensing Application Proxy settings, and consent.
- Doesn’t let you manage Conditional Access.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is a Cloud Application Administrator

A

Grants the same as an Application Administrator except Application Proxy Settings (due to no on-prem permission)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is an Enterprise Application Owner

A

Grants the ability to manage the enterprise app that the users own including SSO-settings, users, and group assignments, adding more owners.
- Doesn’t grant you the ability to manage App Proxy settings or Conditional Access.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is an Application Registration Owner

A

Grants the ability to manage application registrations for apps that the user owns, including the app’s manifest and adding other owners.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is an Application Registration Owner

A

Grants the ability to manage application registrations for apps that the user owns, including the app’s manifest and adding other owners.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What is a permission

A

Consent or authorization to perform a specific action.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Default permissions for a Member

A

Manage their profile photo, and mobile number, change their own password and invite, B2B guests. Can read all directory information.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Default permissions for a guest

A

Manage their own profile, change their own password, and retrieve some info about other users.
- Can also be added to administrator roles, which grant them full read and write permissions contained in the role.
- Guests can invite other guests
- Can’t read all directory info (e.g. list of users, groups etc)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly