Bash, the Crucial Exams Chat Bot
AI Bot
Identity and Access Fundamentals Flashcards
Microsoft Security, Compliance, and Identity Fundamentals SC-900 Flashcards
| Front | Back |
| How does Azure AD B2C differ from Azure AD | Azure AD B2C is used for consumer identity and access management while Azure AD is for organizational use |
| What are Azure AD Connect Health features used for | To monitor the health of on-premises identity infrastructure connected to Azure AD |
| What are security defaults in Azure AD | Preconfigured settings to increase security in the tenant |
| What does a Claims-Based authentication system rely on | Relying on claims made about a user to verify identity and permissions |
| What does Hybrid Identity refer to in Azure environments | The integration of on-premises Active Directory and Azure Active Directory |
| What does MFA stand for | Multi-Factor Authentication |
| What does SCIM stand for | System for Cross-domain Identity Management |
| What does SSO stand for | Single Sign-On |
| What does the acronym IAM stand for | Identity and Access Management |
| What does the acronym OpenID Connect (OIDC) relate to | An authentication layer on top of OAuth 2.0 to verify user identities |
| What does the acronym SPN stand for in Azure AD context | Service Principal Name |
| What does the term Identity Federation mean | The process of linking identities between different systems or providers |
| What does WAF stand for in relation to security | Web Application Firewall |
| What is a managed identity in Azure | An identity automatically managed by Azure for use with applications and services |
| What is a Refresh Token in the context of Azure AD | A token used to renew access tokens without prompting the user to reauthenticate |
| What is a service principal in Azure AD | An identity used by applications or services to access resources |
| What is a User Principal Name (UPN) in Azure AD | A unique identifier for a user account consisting of a username and domain |
| What is Access Review in Azure AD | A feature to review and manage user access to resources |
| What is Account Lockout Protection in Azure AD | A mechanism to prevent brute force attacks by limiting failed login attempts |
| What is an Azure AD tenant | A dedicated instance of Azure Active Directory for an organization |
| What is Azure Active Directory | A cloud-based identity and access management service from Microsoft |
| What is Conditional Access | A tool in Azure Active Directory to enforce policies for resource access |
| What is Dynamic Group in Azure AD | A group where membership is automatically determined based on rules or attributes |
| What is Identity Protection in Azure AD | A tool to identify, assess, and mitigate risks related to user accounts |
| What is Just-In-Time (JIT) access | A mechanism to provide temporary access to resources as needed |
| What is OAuth 2.0 | A protocol for authorization to grant access to resources without sharing credentials |
| What is Privileged Identity Management (PIM) | A service to manage, control, and monitor access to sensitive resources in Azure |
| What is Self-Service Password Reset (SSPR) | A feature allowing users to reset their passwords without admin intervention |
| What is the difference between Azure AD and Microsoft AD | Azure AD is cloud-based while Microsoft AD is on-premises |
| What is the function of B2B collaboration in Azure AD | To allow external users access to resources in your organization |
| What is the main purpose of Role-Based Access Control (RBAC) | To assign permissions based on user roles |
| What is the purpose of an Azure AD domain join | To connect devices directly to Azure AD |
| What is the purpose of Application Proxy in Azure AD | To provide secure remote access to on-premises applications through Azure AD |
| What is the purpose of password hash synchronization in Azure AD Connect | To sync passwords between on-premises AD and Azure AD |
| What is the purpose of the Azure AD Enterprise Application feature | To manage and integrate third-party applications with Azure AD |
| What is the purpose of the Microsoft Authenticator app | To enhance security for sign-ins and provide Multi-Factor Authentication |
| What is the role of Directory Roles in Azure AD | To assign administrative permissions across Azure AD resources |
| What is the role of Federation in Azure AD | To enable identity federation between Azure AD and external identity providers |
| What is token-based authentication | A method to authenticate users by issuing a security token |
Front
What is Just-In-Time (JIT) access
Click the card to flip
Back
A mechanism to provide temporary access to resources as needed
Front
What is Self-Service Password Reset (SSPR)
Back
A feature allowing users to reset their passwords without admin intervention
Front
What is Dynamic Group in Azure AD
Back
A group where membership is automatically determined based on rules or attributes
Front
What does MFA stand for
Back
Multi-Factor Authentication
Front
What is Access Review in Azure AD
Back
A feature to review and manage user access to resources
Front
What is token-based authentication
Back
A method to authenticate users by issuing a security token
Front
How does Azure AD B2C differ from Azure AD
Back
Azure AD B2C is used for consumer identity and access management while Azure AD is for organizational use
Front
What is a Refresh Token in the context of Azure AD
Back
A token used to renew access tokens without prompting the user to reauthenticate
Front
What is Azure Active Directory
Back
A cloud-based identity and access management service from Microsoft
Front
What is a service principal in Azure AD
Back
An identity used by applications or services to access resources
Front
What is the role of Federation in Azure AD
Back
To enable identity federation between Azure AD and external identity providers
Front
What does the acronym SPN stand for in Azure AD context
Back
Service Principal Name
Front
What is Identity Protection in Azure AD
Back
A tool to identify, assess, and mitigate risks related to user accounts
Front
What is the role of Directory Roles in Azure AD
Back
To assign administrative permissions across Azure AD resources
Front
What does the acronym OpenID Connect (OIDC) relate to
Back
An authentication layer on top of OAuth 2.0 to verify user identities
Front
What is Privileged Identity Management (PIM)
Back
A service to manage, control, and monitor access to sensitive resources in Azure
Front
What does WAF stand for in relation to security
Back
Web Application Firewall
Front
What is the purpose of the Azure AD Enterprise Application feature
Back
To manage and integrate third-party applications with Azure AD
Front
What is the difference between Azure AD and Microsoft AD
Back
Azure AD is cloud-based while Microsoft AD is on-premises
Front
What does Hybrid Identity refer to in Azure environments
Back
The integration of on-premises Active Directory and Azure Active Directory
Front
What is a managed identity in Azure
Back
An identity automatically managed by Azure for use with applications and services
Front
What are Azure AD Connect Health features used for
Back
To monitor the health of on-premises identity infrastructure connected to Azure AD
Front
What is the main purpose of Role-Based Access Control (RBAC)
Back
To assign permissions based on user roles
Front
What are security defaults in Azure AD
Back
Preconfigured settings to increase security in the tenant
Front
What is OAuth 2.0
Back
A protocol for authorization to grant access to resources without sharing credentials
Front
What does SSO stand for
Back
Single Sign-On
Front
What is the function of B2B collaboration in Azure AD
Back
To allow external users access to resources in your organization
Front
What is the purpose of an Azure AD domain join
Back
To connect devices directly to Azure AD
Front
What is the purpose of Application Proxy in Azure AD
Back
To provide secure remote access to on-premises applications through Azure AD
Front
What does the acronym IAM stand for
Back
Identity and Access Management
Front
What is a User Principal Name (UPN) in Azure AD
Back
A unique identifier for a user account consisting of a username and domain
Front
What is the purpose of the Microsoft Authenticator app
Back
To enhance security for sign-ins and provide Multi-Factor Authentication
Front
What does the term Identity Federation mean
Back
The process of linking identities between different systems or providers
Front
What is Conditional Access
Back
A tool in Azure Active Directory to enforce policies for resource access
Front
What is the purpose of password hash synchronization in Azure AD Connect
Back
To sync passwords between on-premises AD and Azure AD
Front
What is an Azure AD tenant
Back
A dedicated instance of Azure Active Directory for an organization
Front
What does a Claims-Based authentication system rely on
Back
Relying on claims made about a user to verify identity and permissions
Front
What does SCIM stand for
Back
System for Cross-domain Identity Management
Front
What is Account Lockout Protection in Azure AD
Back
A mechanism to prevent brute force attacks by limiting failed login attempts
1/39
This deck focuses on Azure Active Directory, authentication methods, role-based access control, and securing identities in Microsoft environments.