Bash, the Crucial Exams Chat Bot
AI Bot
AZ-104 - Identity and Access Management Flashcards
| Front | Back |
| How can Azure AD (Entra ID) integrate with external identity providers? | Through federation and protocols like SAML, OAuth, or OpenID Connect to enable single sign-on and secure access |
| How do risk-based Conditional Access policies work? | They evaluate sign-in context and user behavior to adjust access controls based on the assessed risk |
| How do you assign a role using RBAC? | By linking a user, group, or service principal to a specific role at a defined scope (subscription, resource group, or resource) |
| How does Multi-Factor Authentication (MFA) enhance security? | It requires users to provide additional verification methods beyond just a password |
| What are Conditional Access Policies? | Policies that restrict or allow access based on conditions such as user location, device state, and risk level |
| What are some best practices for managing identities in Azure? | Implement MFA, apply least privilege through RBAC, regularly monitor sign-ins, and enforce Conditional Access policies |
| What is a service principal in Azure AD (Entra ID)? | An identity created for use with applications, services, or automation tools to access specific Azure resources |
| What is Azure Active Directory? | A cloud-based identity and access management service used for authentication and authorization |
| What is identity protection in Azure AD (Entra ID)? | Techniques and tools used to monitor, detect, and respond to identity-related risks and suspicious activities |
| What is Role-Based Access Control (RBAC) in Azure? | A method for managing access to resources by assigning roles to users, groups, or service principals |
| What is the difference between identity and authentication? | Identity is the representation of a user or entity, while authentication is the process of verifying that identity |
| What is the primary purpose of Conditional Access? | To enforce security policies that balance user productivity with appropriate risk management |
Front
How do risk-based Conditional Access policies work?
Click the card to flip
Back
They evaluate sign-in context and user behavior to adjust access controls based on the assessed risk
Front
What is a service principal in Azure AD (Entra ID)?
Back
An identity created for use with applications, services, or automation tools to access specific Azure resources
Front
What are some best practices for managing identities in Azure?
Back
Implement MFA, apply least privilege through RBAC, regularly monitor sign-ins, and enforce Conditional Access policies
Front
How can Azure AD (Entra ID) integrate with external identity providers?
Back
Through federation and protocols like SAML, OAuth, or OpenID Connect to enable single sign-on and secure access
Front
How do you assign a role using RBAC?
Back
By linking a user, group, or service principal to a specific role at a defined scope (subscription, resource group, or resource)
Front
What is the primary purpose of Conditional Access?
Back
To enforce security policies that balance user productivity with appropriate risk management
Front
What is Role-Based Access Control (RBAC) in Azure?
Back
A method for managing access to resources by assigning roles to users, groups, or service principals
Front
How does Multi-Factor Authentication (MFA) enhance security?
Back
It requires users to provide additional verification methods beyond just a password
Front
What is Azure Active Directory?
Back
A cloud-based identity and access management service used for authentication and authorization
Front
What are Conditional Access Policies?
Back
Policies that restrict or allow access based on conditions such as user location, device state, and risk level
Front
What is the difference between identity and authentication?
Back
Identity is the representation of a user or entity, while authentication is the process of verifying that identity
Front
What is identity protection in Azure AD (Entra ID)?
Back
Techniques and tools used to monitor, detect, and respond to identity-related risks and suspicious activities
1/12
This deck covers Azure AD concepts, role-based access control (RBAC), multi-factor authentication (MFA), conditional access policies, and identity protection techniques essential for managing permissions and securing identities.