💻
AZ-900 Notes
  • Intro to me
  • CAPEX vs OPEX
    • CAPEX vs OPEX
  • Core Azure Things
    • Regions
    • Region Pairs
    • Geographies
    • Availability Options
    • Availability Sets
    • Availability Zones
    • Resource Groups
    • Resource Manager
  • Compute
    • Virtual Machines
    • Virtual Machine Scale Sets
    • App Service
    • Functions
  • Container
    • Container Instances
    • Kubernetes Service
  • Networking
    • Virtual Network
    • Load Balancer
    • Virtual Private Network (VPN) Gateway
    • Application Gateway
    • Content Delivery Network
  • Storage
    • Disk Storage
    • Containers (Blobs)
    • Files
    • Queues
    • Tables Storage
  • Database
    • Cosmos DB
    • SQL Database
    • Database Migration
  • Marketplace
    • Marketplace
  • Internet of Things (IoT)
    • IoT Central
    • IoT Hub
  • Big Data and Analytics
    • Synapse Analytics
    • HDInsight
    • Data Lake Analytics
  • Artificial Intelligence
    • Cognitive Services
    • Machine Learning Service
    • Bot Service
  • Serverless Computing
    • Functions
    • Logic Apps
    • Event Grid
  • DevOps
    • Azure Boards
    • Azure Pipelines
    • Azure Repos
    • Azure Test Plans
    • Azure Artifacts
    • DevOps Services
    • Lab Services
  • App Service
    • App Service
  • Management Tools
    • Portal
    • PowerShell
    • Command Line Interface (CLI)
    • Cloud Shell
    • Mobile App
    • REST API
  • Azure Advisor
    • Azure Advisor
  • Securing Networks
    • Azure Firewall
    • Azure Distributed Denial of Service protection
    • Network Security Groups
    • Application Security Groups
    • Network Security Solutions
  • Identity
    • Authentication vs Authorization
    • Active Directory
    • Multi-Factor Authentication
  • Security Tools and Features
    • Security Centre
    • Key Vault
    • Azure Information Protection (AIP)
    • Advanced Threat Protection (ATP)
  • Azure Governance
    • Azure Policy
    • Implementing Azure Policy
    • Policy Initiatives
    • Role-Based Access Control (RBAC)
    • Resource Locks
    • Blueprints
    • Subscription Governance
  • Monitoring
    • Tags
    • Azure Monitor
    • Azure Service Health
    • Monitoring
  • Privacy and Compliance
    • Compliance
    • Microsoft Privacy Statement
    • Trust Centre
    • Service Trust Portal
    • Azure Government Services
    • Azure China 21Vianet
    • Azure Germany
  • Azure Subscriptions
    • Azure Subscriptions
    • Subscriptions Offers
    • Azure Free Account
    • Management Groups
    • Support Plans
  • Managing Costs
    • Purchasing Azure Resources
    • Factors affecting costs
    • Zones For Billing Purposes
    • Pricing Calculator
    • Total Cost of Ownership Calculator
    • Cost Management
    • Costs Best Practices
  • Service Level Agreements (SLAs)
    • Service Level Agreements (SLAs)
    • SLAs Percentages
    • Composite SLA
    • Application SLA
  • Service Lifecycle
    • Public and Private Preview
    • How to access Previews
    • How to access Portal Previews
    • General Availability
    • Monitor updates
Powered by GitBook
On this page

Was this helpful?

  1. Identity

Active Directory

  • Microsoft cloud-based identity and access management service.

  • Azure AD helps employees of an organization sign in and access resources:

    • External resources - Microsoft 365, the Azure portal, and thousands of other software as a service (SaaS) applications.

    • Internal resources - Apps on your corporate network and intranet, along with any cloud apps developed by your own organization.

  • Provides services such as:

    • Authentication - Functionality such as self-service password reset, multi-factor authentication (MFA), a custom banned password list, and smart lockout services.

    • Single sign-on (SSO).

    • Application management - Manage your cloud and on-premises apps.

    • Business to business (B2B) identity services - Manage your guest users and external partners while maintaining control over your own corporate data.

    • Business-to-customer (B2C) identity services - Customize and control how users sign up, sign in, and manage their profiles when using your apps with services.

    • Device management - Manage how your cloud or on-premises devices access your corporate data.

  • Single sign-on:

    • Users need to remember only one ID and one password.

    • Access across applications is granted to a single identity tied to a user, simplifying the security model.

PreviousAuthentication vs AuthorizationNextMulti-Factor Authentication

Last updated 4 years ago

Was this helpful?