Manage Azure Identies & Governance Flashcards
What are the 3 ways Azure AD defines users:
- Cloud identities
- Directory-synchronized identities
- Guest users
How does synchronization occur for Directory-synchronized identities?
Azure AD Connect
https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-sync-whatis
What is the source of a Guest user?
Invited user
What are the diffirent ways you can add new users?
- Azure Portal
- Microsoft 365 Admin Center
- Microsoft Intune admin console
- Azure CLI
Deleted users can be restored for how many days?
30 days
What roles is required to create users in Azure?
- Global administrator
- User administrator
What is another option for bulk user uploads besides the csv template?
PowerShell Script
What are the two types of group accounts?
- Security groups
- Microsoft 365 groups
What type of group would you use to for a specific security policy?
Security groups
What role is required to create a Security group?
Azure AD administrator
What type of security group would you use to give users access to a SharePoint site?
Microsoft 365 groups
What are the three different ways you can assign access rights to groups?
- Assigned
- Dynamic user
- Dynamic Device (Security groups only)
What methods can you use to manage administrative units?
- Azure portal
- PowerShell cmdlets and scripts
- Microsoft Graph
How can you restrict administrative scope?
Administrative Units
https://docs.microsoft.com/en-us/azure/active-directory/roles/administrative-units
Define Azure AD
Microsoft’s multi-tenant cloud based directory and identity management service
What is an identity?
An object that can get authenticated. A user, applications and servers. Applications might require access through secret keys or certs.