Network Client Pro Module 5.4 Azure AD Users and Groups

Azure AD Basics

Identity & Access

Azure AD Services

Groups & Roles

Benefits of Azure AD

100

What does AD stand for in Azure AD?

Active Directory

100

What does SSO stand for?

Single Sign-On

100

What does Azure AD DS stand for?

Azure Active Directory Domain Services

100

What can Azure AD groups be used for?

Assigning permissions/resources to multiple users at once

100

One benefit of using Azure AD for users.

Single sign-on, no multiple passwords

200

Is Azure AD a cloud-based or on-premises service?

Cloud-based

200

What does SSO allow users to do?

200

Name one feature of Azure AD DS.

Domain Join, Group Policy, LDAP, Kerberos

200

What is RBAC?

Role-Based Access Control

200

One benefit of using Azure AD for organizations.

Centralized management, increased security, reduced risk

300

What is Microsoft’s cloud-based authentication service called?

Azure Active Directory

300

What is IDaaS?

Identity as a Service — third-party cloud identity management

300

Which connector allows Azure AD to manage on-premises computer objects?

Intune Connector for AD

300

Give an example of when you’d use RBAC

Assigning admin rights to IT staff without giving global admin

300

How does Azure AD eliminate the need for apps to store credentials?

Apps rely on Azure AD for authentication instead of storing passwords themselves

400

What tool can integrate on-premises AD with Azure AD?

Azure AD Connect

400

Name a protocol that Azure AD uses for authentication instead of LDAP?

HTTP/SAML/OpenID/OAuth 2.0

400

How do applications communicate with Azure AD to authenticate users?

Through HTTP requests to Azure’s user database

400

What’s one benefit of using groups in Azure AD?

Simplifies management of users and permissions

400

What advanced protections does Microsoft provide for Azure AD?

Threat detection, encryption, multi-factor authentication, conditional access

500

Name one difference between Azure AD and traditional Active Directory.

Azure AD uses HTTP/SAML/OpenID/OAuth instead of LDAP; no traditional domain controllers

500

Why does centralizing user data in Azure AD improve security?

Fewer places store data, reducing attack surface

500

What’s one way Azure AD can be managed?

Graphical web interface or PowerShell

500

What’s the difference between a security group and a Microsoft 365 group?

Security group = access to resources; Microsoft 365 group = collaboration tools like Teams, Outlook, SharePoint

500

Why might applications still be less secure than Azure AD itself?

Apps may not have the same advanced security resources