Bash, the Crucial Exams Chat Bot
AI Bot
Identity and Access Fundamentals Flashcards
Microsoft Security, Compliance, and Identity Fundamentals SC-900 Flashcards
Study our Identity and Access Fundamentals flashcards for the Microsoft Security, Compliance, and Identity Fundamentals SC-900 exam with 39+ flashcards. View as flashcards, a searchable table, or as a fun matching game.
| Front | Back |
| How does Azure AD B2C differ from Azure AD | Azure AD B2C is used for consumer identity and access management while Azure AD is for organizational use |
| What are Azure AD Connect Health features used for | To monitor the health of on-premises identity infrastructure connected to Azure AD |
| What are security defaults in Azure AD | Preconfigured settings to increase security in the tenant |
| What does a Claims-Based authentication system rely on | Relying on claims made about a user to verify identity and permissions |
| What does Hybrid Identity refer to in Azure environments | The integration of on-premises Active Directory and Azure Active Directory |
| What does MFA stand for | Multi-Factor Authentication |
| What does SCIM stand for | System for Cross-domain Identity Management |
| What does SSO stand for | Single Sign-On |
| What does the acronym IAM stand for | Identity and Access Management |
| What does the acronym OpenID Connect (OIDC) relate to | An authentication layer on top of OAuth 2.0 to verify user identities |
| What does the acronym SPN stand for in Azure AD context | Service Principal Name |
| What does the term Identity Federation mean | The process of linking identities between different systems or providers |
| What does WAF stand for in relation to security | Web Application Firewall |
| What is a managed identity in Azure | An identity automatically managed by Azure for use with applications and services |
| What is a Refresh Token in the context of Azure AD | A token used to renew access tokens without prompting the user to reauthenticate |
| What is a service principal in Azure AD | An identity used by applications or services to access resources |
| What is a User Principal Name (UPN) in Azure AD | A unique identifier for a user account consisting of a username and domain |
| What is Access Review in Azure AD | A feature to review and manage user access to resources |
| What is Account Lockout Protection in Azure AD | A mechanism to prevent brute force attacks by limiting failed login attempts |
| What is an Azure AD tenant | A dedicated instance of Azure Active Directory for an organization |
| What is Azure Active Directory | A cloud-based identity and access management service from Microsoft |
| What is Conditional Access | A tool in Azure Active Directory to enforce policies for resource access |
| What is Dynamic Group in Azure AD | A group where membership is automatically determined based on rules or attributes |
| What is Identity Protection in Azure AD | A tool to identify, assess, and mitigate risks related to user accounts |
| What is Just-In-Time (JIT) access | A mechanism to provide temporary access to resources as needed |
| What is OAuth 2.0 | A protocol for authorization to grant access to resources without sharing credentials |
| What is Privileged Identity Management (PIM) | A service to manage, control, and monitor access to sensitive resources in Azure |
| What is Self-Service Password Reset (SSPR) | A feature allowing users to reset their passwords without admin intervention |
| What is the difference between Azure AD and Microsoft AD | Azure AD is cloud-based while Microsoft AD is on-premises |
| What is the function of B2B collaboration in Azure AD | To allow external users access to resources in your organization |
| What is the main purpose of Role-Based Access Control (RBAC) | To assign permissions based on user roles |
| What is the purpose of an Azure AD domain join | To connect devices directly to Azure AD |
| What is the purpose of Application Proxy in Azure AD | To provide secure remote access to on-premises applications through Azure AD |
| What is the purpose of password hash synchronization in Azure AD Connect | To sync passwords between on-premises AD and Azure AD |
| What is the purpose of the Azure AD Enterprise Application feature | To manage and integrate third-party applications with Azure AD |
| What is the purpose of the Microsoft Authenticator app | To enhance security for sign-ins and provide Multi-Factor Authentication |
| What is the role of Directory Roles in Azure AD | To assign administrative permissions across Azure AD resources |
| What is the role of Federation in Azure AD | To enable identity federation between Azure AD and external identity providers |
| What is token-based authentication | A method to authenticate users by issuing a security token |
About the Flashcards
Flashcards for the Microsoft Security, Compliance, and Identity Fundamentals exam give you a quick way to master Azure Active Directory and core identity services tested on the certification. Each card defines essential terminology-from tenants and managed identities to service principals-so you can recall key concepts under exam pressure.
Review access control models like RBAC and Conditional Access, strengthen security understanding with MFA, PIM, Identity Protection, and account lockout controls, and refresh protocol knowledge on OAuth 2.0 and OpenID Connect. The deck also covers hybrid identity synchronization, SSO, application proxy, dynamic groups, and monitoring tools such as Azure AD Connect Health.
Topics covered in this flashcard deck:
- Azure AD fundamentals
- Authentication protocols
- Role & access control
- Security and MFA
- Hybrid identity & sync
- Application integration