AZ-104 - Identity and Access Management Flashcards
Microsoft Azure Administrator Associate AZ-104 Flashcards
| Front | Back |
| How can Azure AD (Entra ID) integrate with external identity providers? | Through federation and protocols like SAML, OAuth, or OpenID Connect to enable single sign-on and secure access |
| How do risk-based Conditional Access policies work? | They evaluate sign-in context and user behavior to adjust access controls based on the assessed risk |
| How do you assign a role using RBAC? | By linking a user, group, or service principal to a specific role at a defined scope (subscription, resource group, or resource) |
| How does Multi-Factor Authentication (MFA) enhance security? | It requires users to provide additional verification methods beyond just a password |
| What are Conditional Access Policies? | Policies that restrict or allow access based on conditions such as user location, device state, and risk level |
| What are some best practices for managing identities in Azure? | Implement MFA, apply least privilege through RBAC, regularly monitor sign-ins, and enforce Conditional Access policies |
| What is a service principal in Azure AD (Entra ID)? | An identity created for use with applications, services, or automation tools to access specific Azure resources |
| What is Azure Active Directory? | A cloud-based identity and access management service used for authentication and authorization |
| What is identity protection in Azure AD (Entra ID)? | Techniques and tools used to monitor, detect, and respond to identity-related risks and suspicious activities |
| What is Role-Based Access Control (RBAC) in Azure? | A method for managing access to resources by assigning roles to users, groups, or service principals |
| What is the difference between identity and authentication? | Identity is the representation of a user or entity, while authentication is the process of verifying that identity |
| What is the primary purpose of Conditional Access? | To enforce security policies that balance user productivity with appropriate risk management |
About the Flashcards
Flashcards for the Microsoft Azure Administrator Associate exam focus on mastering Azure identity and access foundations. Review what Azure Active Directory is, distinguish identity from authentication, and learn how Role-Based Access Control allocates permissions through users, groups, and service principals. These cards reinforce the terminology and workflows you need to govern resources confidently.
Build exam-ready security skills by practicing Multi-Factor Authentication scenarios, Conditional Access rules, and risk-based policies that protect modern cloud environments. The deck also covers identity protection features and federation protocols such as SAML, OAuth, and OpenID Connect, ensuring you can integrate external providers while maintaining least-privilege access strategies.
Topics covered in this flashcard deck:
- Azure Active Directory
- Role-Based Access Control
- Multi-Factor Authentication
- Conditional Access Policies
- Identity Protection & Risk