Describe the function and identity types of Microsoft Entra ID Flashcards

1
Q

Describe Microsoft Entra ID

A

Formerly Azure Active Directory, is Microsoft’s cloud-based identity and access management service.

It simplifies the way organizations manage authorization and access by providing a single identity system for their cloud and on-premise applications. As well as internal (networks and cloud apps) and external (Microsoft office, azure portal, saas applications) services.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Describe what is an Identity secure score

A

Microsoft Entra ID includes an identity secure score, which is a percentage that functions as an indicator of how aligned you are with Microsoft’s best practice recommendations for security.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Define Microsoft Entra ID basic terminology

A

1.) Tenant - is an instance of Microsoft Entra ID in which information about a single organization resides including organizational objects such as users, groups, devices, and application registrations. It also contains access and compliance policies. Each Entra ID has a unique ID and domain name (contoso.onmicrosoft.com)

2.) Directory - This term is sometimes interchangeable with tenant. It is a logical container within a Microsoft Entra tenant that holds and organizes the various resources and objects related to identity and access management including users, groups, applications, devices, and other objects.

3.) Multi-tenant - is an organization that has more than one instance of Microsoft Entra ID. Like as organizations that merge or acquire companies, multiple geographical boundaries, etc.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What can you assign an identity to in Microsoft Entra ID?

A

1.) People - Internal and external users
2.) Physical devices - mobile phones, desktop computers.
3.) software-based objects - applications, virtual machines, and containers.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Describe user-type members

A

1.) Internal members: employees of the organization.
2.) External guests: consultants, vendors, and partners.
3.) External member: this scenario is when you have multiple tenants. ex. zoom and workvivo.
4.) Internal guest: this is when organizations set up an internal Microsoft entra account for outside users like distributors, contractors, and suppliers.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Define Workload Identities

A

is an identity you assign to a software workload. Examples are applications, service principals, and managed identities.

A service principal is essentially, an identity for an application.
Managed identities are a type of service principal that are automatically managed in Microsoft Entra ID and eliminate the need for developers to manage credentials.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Define device and the ways it can be set up

A

A device is a piece of hardware, such as mobile devices, laptops, servers, or printers.

1.) Microsoft Entra registered devices: In these scenarios, a user can access your organization’s resources using a personal device.
2.) Microsoft Entra joined: is a device joined to Microsoft Entra ID through an organizational account, which is then used to sign in. These devices are owned by the org.
3.) Microsoft Entra hybrid joined devices: orgs. with existing on-premise active directory implementations can benefit from the functionality provided by MEID by implementing a hybrid joined devices.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Name type of Microsoft Entra ID identities

A

User Identities
workload identities
device identities
external identities
hybrid identities

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Describe hybrid identity

A

It is the process of creating a common identity for authentication and authorization of all resources, regardless of location. Whether it is on the cloud or on-premise.

Hybrid identity is accomplished through provisioning and synchronization:

  • Inter-directory provision is provisioning an identity between two different directory services systems.
    -Synchronization is responsible for making sure identity information for your on-premise users and groups matches the cloud.

One of the methods for accomplishing inter-directory and synchronization is through Microsoft Entra Cloud Sync.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Define B2B Collaboration - external identities

A

B2B collaborations enable employees of an organization to collaborate with external users by letting them use their preferred identity to sign in to your Microsoft applications or other enterprise applications.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Define B2B Direct connect - external identities

A

Is a new way to collaborate with other Mircosoft Entra organizations using Microsoft Teams shared channels.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Define Microsoft Entra External ID for customers -external identities

A

is Microsoft’s new customer identity and access management solution (CIAM). Pretty much it is the option of signing in with social accounts like google, facebook, and yahoo.com

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q
A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly