SC-900 Entra Concepts

Question 1

Define a 365 tenant

Answer 1

Instance of entra ID where the information about objects reside along with compliance policies related to them.

Question 2

Which parts of a 365 tenant are always unqiue to it?

Answer 2

The ID and domain.

Question 3

Define a 365 directory

Answer 3

Logical container within the tenant that holds/organizes the resources and objects related to identity and access management (database/catalog of identities and resources associated with the tenant)

Question 4

Define at least 4 normal types of users within 365.

Answer 4

Internal members, external guest, external member, and internal guest

Question 5

Define a service principal

Answer 5

An identity for an application that is created when an application is registered to entra ID. Often allowing authentication and authorization to resources.

Question 6

Define a managed identity service principal

Answer 6

Service principal that is automatically managed in entra ID.

Question 7

Define the 2 types of managed identity service principals

Answer 7

System Assigned (tied to specific lifecycle) or user assigned (where it can be used for multiple VM’s.

Question 8

Define at least 3 types of method to register devices with Azure

Answer 8

Entra registered (Often with mobile devices/byod to allow access to organizational resources without an organizational account to sign in)

Entra joined ( Uses an organizational account to sign in)

Entra hybrid (Devices that are joined to an on-premise domain)

Question 9

Define a security group in entra

Answer 9

Common group type that is normally used to manage user and device access to shared resources.

Question 10

Define a 365 group in entra

Answer 10

Common group type used most often for collaboration needs (shared mailbox, files, sharepoint sites, etc)

Question 11

Define entra cloud synch

Answer 11

Feature made available through a lightweight agent that provisions and synchronizes identity information regardless of location.

Question 12

Define B2B collaboration

Answer 12

Way in which a user outside of your organization can interact with you while using their own preferred identity (no creds are managed on entra)

Question 13

Define B2B direct connect

Answer 13

Way in which trust relationships are formed between organizations in order to access shared resources without being managed by a user object.

Question 14

Define entra external ID

Answer 14

CIAM solution intended for businesses that want to make their apps available to customers using Entra for identity and access.

Question 15

Define OAUTH

Answer 15

Open standard that is used to specify how one time codes are generated weather being a software (IT Glue) or hardware (key fob)

Question 16

What is Windows Hello for Business?

Answer 16

Authentication technology that allows users to sign in to devices with biometric information or a pin

Question 17

Define password protection

Answer 17

Feature in entra that attempts to reduce the likelhood and risk of users setting bad passwords (Entra ID P1 or P2 licensing)

Question 18

List any forms of authentication that can be used as a primary source

Answer 18

Windows Hello for Business, Microsoft Authenticator, Fido 2 Security Key, Certiifcate Based Authentication, SMS, and Password