« Microsoft Azure - System administration » : différence entre les versions
| Ligne 26 : | Ligne 26 : | ||
* Identity : it concerns any object that can be authenticated. It could be a user, a group, managed identity or service principle. Managed identity stands for a virtual machine, app, service and more. | * Identity : it concerns any object that can be authenticated. It could be a user, a group, managed identity or service principle. Managed identity stands for a virtual machine, app, service and more. | ||
* Account : if you want to associate data attributes to an identity, you have to use an account. A user could have multiple attributes like location, | * Account : if you want to associate data attributes to an identity, you have to use an account. A user could have multiple attributes like location, department manager, phone number etc. | ||
* Microsoft Entra ID Account : All the account who are created on Entra ID or Microsoft Cloud services like XBOX 360, Outlook, Hotmail, and more are considered as this type of account and can be work or school account. | |||
* Microsoft Entra ID, Tenant or Directory : | |||
Version du 16 mai 2024 à 14:45
Identity
Here is an overview of what will be covered in this section :
We will start with Entra ID, which serves as a central hub for identity management. It acts as an intermediary between different types of identities and services.
On-premises identities focus on security measures such as multi-factor authentication (MFA) and conditional access policies. We will not explore this topic in detail, as it is covered in the AZ-500 course.
Next, B2B stands for Business-to-Business, which allows us to integrate external identities into our Entra ID. This involves enabling guest users from partner companies to access our resources, which helps us avoid creating new users in our directory.
Finally, Entra ID encompasses users and groups that belong to the organisation in the cloud.
Entra ID
Entra ID is a crucial point of Microsoft Cloud Services as it centrally manages access for Azure service, Microsoft 365, and other SaaS applications. If you're seeking seamless access to your emails, calendars, documents, and more, all through a single sign-up process, Microsoft Entra proves invaluable for any company. This service operates upstream, verifying your identity and seamlessly granting access to the necessary tools.
Entra ID primarily ensures cloud-based identity and directory management, facilitating access to all SaaS solutions. Additionally, it provides self-service options for users, allowing them to reset passwords, manage authentication, and handle device management.
It seamlessly integrates with on-premise applications, ensuring secure collaboration across the company, device management, and connections to both SaaS applications and Active Directory.
Concepts
Entra ID is divide in four main concepts :
- Identity : it concerns any object that can be authenticated. It could be a user, a group, managed identity or service principle. Managed identity stands for a virtual machine, app, service and more.
- Account : if you want to associate data attributes to an identity, you have to use an account. A user could have multiple attributes like location, department manager, phone number etc.
- Microsoft Entra ID Account : All the account who are created on Entra ID or Microsoft Cloud services like XBOX 360, Outlook, Hotmail, and more are considered as this type of account and can be work or school account.
- Microsoft Entra ID, Tenant or Directory :