Bash, the Crucial Exams Chat Bot
AI Bot
AZ-104 - Identity and Access Management Flashcards
Microsoft Azure Administrator Associate AZ-104 Flashcards
| Front | Back |
| How can Azure AD (Entra ID) integrate with external identity providers? | Through federation and protocols like SAML, OAuth, or OpenID Connect to enable single sign-on and secure access |
| How do risk-based Conditional Access policies work? | They evaluate sign-in context and user behavior to adjust access controls based on the assessed risk |
| How do you assign a role using RBAC? | By linking a user, group, or service principal to a specific role at a defined scope (subscription, resource group, or resource) |
| How does Multi-Factor Authentication (MFA) enhance security? | It requires users to provide additional verification methods beyond just a password |
| What are Conditional Access Policies? | Policies that restrict or allow access based on conditions such as user location, device state, and risk level |
| What are some best practices for managing identities in Azure? | Implement MFA, apply least privilege through RBAC, regularly monitor sign-ins, and enforce Conditional Access policies |
| What is a service principal in Azure AD (Entra ID)? | An identity created for use with applications, services, or automation tools to access specific Azure resources |
| What is Azure Active Directory? | A cloud-based identity and access management service used for authentication and authorization |
| What is identity protection in Azure AD (Entra ID)? | Techniques and tools used to monitor, detect, and respond to identity-related risks and suspicious activities |
| What is Role-Based Access Control (RBAC) in Azure? | A method for managing access to resources by assigning roles to users, groups, or service principals |
| What is the difference between identity and authentication? | Identity is the representation of a user or entity, while authentication is the process of verifying that identity |
| What is the primary purpose of Conditional Access? | To enforce security policies that balance user productivity with appropriate risk management |
This deck covers Azure AD concepts, role-based access control (RBAC), multi-factor authentication (MFA), conditional access policies, and identity protection techniques essential for managing permissions and securing identities.