Entra ID
This Microsoft-managed directory service operates as a PaaS offering in the cloud, providing features like multi-factor authentication and self-service password reset.
What is Microsoft Entra ID?
A feature that provides operational insights into Microsoft Entra ID with alerts, performance counters, and usage patterns
What is Microsoft Entra Connect Health?
A user account that is defined only in Microsoft Entra ID and includes administrator accounts
What is a cloud identity?
A level of scope and control above subscriptions in Azure
What are Azure management groups?
A system that allows you to control access to Azure resources by specifying roles and access privileges.
What is Azure Role-Based Access Control (RBAC)?
This represents a company or organization that signed up for a Microsoft cloud-based service and is associated with an Azure subscription to grant permissions via RBAC
What is a Microsoft Entra tenant?
This functionality allows configuring additional security levels for privileged users such as administrators
What is Microsoft Entra Privileged Identity Management?
This type of user account is defined in an on-premises Active Directory and synchronized to Azure
What is a Directory-synchronized identity?
The maximum number of levels a management group tree can support.
What is six levels of depth?
The security concept that states that a user should have the permissions they need to do their job, nothing more.
What is Least Privilege?
A flat structure for users and groups, no OUs or GPOs, and the use of REST API over HTTP and HTTPS for queries.
What distinguishes Microsoft Entra ID from AD DS?
This license level provides Privileged Identity Management for the most secure accounts in the Azure environment
What is Entra ID P2?
These user accounts are useful for external vendors or contractors needing access to Azure resources
What are guest user accounts?
A service in Azure that allows you to create, assign, and manage enforced rules on your resources
What is Azure Policy?
This is the level at which access applies in Azure, and can be specified at multiple levels such as management group, subscription, resource group, or resource
What is scope in Azure RBAC?
A hierarchical X.500-based structure and the use of DNS for locating resources such as domain controllers.
What are characteristics of AD DS (Active Directory Domain Services)?
A feature that provides enhanced functionalities for monitoring and protecting user accounts in Microsoft Entra ID P2
What is Microsoft Entra ID Protection?
This type of group in Microsoft Entra ID is used for managing member and computer access to shared resources
What are security groups?
A collection of policies, sometimes used for regulatory compliance.
What are initiatives?
This pane in the Azure portal shows who has access to a particular area and their role, and allows you to grant or remove access
What is the Access control (IAM) pane?
This feature allows the user to access resources both on-premises and in the cloud without requiring the user to authenticate multiple times.
What is an SSO experience?
Administrators don't need to manage, update, and monitor domain controllers. There’s no need to have Domain Admins or Enterprise Admins groups for domains that Microsoft Entra ID manages.
What is Microsoft Entra Domain Services?
This security group feature applies dynamic rules to automatically manage devices based on their attributes.
What is dynamic device access?
This tab on Azure Policy provides insight on where policies have been successfully applied, and where there might be a potential problem.
What is Compliance?
These are the four fundamental built-in roles in Azure, including Owner, Contributor, Reader, and User Access Administrator
What are the basic Azure RBAC roles?