Manage Identity and Access Flashcards
Microsoft Azure Security Engineer Associate AZ-500 Flashcards
| Front | Back |
| How can you audit access changes in Azure AD | Using activity logs and log analytics. |
| How can you secure Azure identities | MFA (Multi-Factor Authentication) and Conditional Access. |
| What does RBAC stand for | Role-Based Access Control. |
| What is a group in Azure AD | A collection of users that can have the same permissions assigned. |
| What is a Managed Identity | A feature that automatically manages identities for Azure resources like VMs or functions. |
| What is a role assignment in RBAC | The act of granting a role to a user, group, or service principal. |
| What is a role in Azure AD | A set of permissions defining what actions a user or group can perform. |
| What is a Service Principal | A security identity that enables apps or services to access Azure resources. |
| What is a user in Azure AD | A digital identity representing an individual person. |
| What is an Azure AD B2C tenant | A directory used for managing identities of external customers. |
| What is Azure Active Directory | A cloud-based identity and access management service. |
| What is Conditional Access | Policies that control access based on conditions like location, device, or user risk. |
| What is Just-In-Time access in PIM | Temporary access granted to perform specific tasks. |
| What is Privileged Identity Management (PIM) | A service that manages, monitors, and controls access to Azure resources. |
| What is the default role given to users in Azure AD | User. |
| What is the difference between a system-assigned and a user-assigned managed identity | System-assigned is tied to an Azure resource, while user-assigned can be shared among multiple resources. |
| What is the difference between users and service principals | A user represents an individual person while a service principal represents an app or service. |
| What is the Global Administrator role in Azure AD | The role with the highest level of access, allowing full control of Azure AD. |
| What is the principle of least privilege | Granting users only the permissions they need to perform their tasks. |
| What is the purpose of RBAC in Azure | To manage access to Azure resources using roles. |
About the Flashcards
Flashcards for the Microsoft Azure Security Engineer Associate exam provide concise definitions and explanations of core Azure identity and access management concepts. The deck covers Azure Active Directory fundamentals, users, groups, roles, RBAC role assignments, and service principals and managed identities.
Designed to help students review terminology and core ideas, the cards reinforce security controls such as MFA and Conditional Access, Privileged Identity Management (PIM) and Just-In-Time access, the principle of least privilege, and auditing via activity logs. Use these flashcards to memorize role scopes, differences between users and service principals, and the purpose of an Azure AD B2C tenant.
Topics covered in this flashcard deck:
- Azure Active Directory
- RBAC and role assignments
- Users and groups
- Service principals and managed identities
- Conditional Access and MFA
- Privileged Identity Management