On a journey to add some qualifications for Azure under our belt, studying for exams is needed to ensure we pass. Alternatively, being familiar with identity and security terms helps us bolster our tech security. Find the below questions, answers and topics for studying for your AZ-900 exam.
AZ-900 Exam material
- What is Zero Trust?
- Zero Trust is when all users are not granted access unless proven otherwise.
- Your identity proves trust for access.
- Your location does not matter, you must prove your identity.
- Least privilege access. You only get access to what you need to accomplish your job.
- Central location for conditional access to data.
- Trust through the individual level.
- Multi-factor authentication
- Layered security for identity.
- Needs two pieces of something you know, have or are.
- Conditional Access
- An additional layer of security that uses if/then rules to permit or deny access.
- MFA is often implemented with Conditional Access.
- Passwordless Authentication
- Aims to remove the password by using MFA with a physical device.
- Entra External ID for partners vs. for customers
- Partners interact with internal resources, customers interact with external facing resources like websites.
- Partners user have identity in Entra ID, customers user have identity at 3rd party provider like Google or Facebook.
- Azure AD DS (Active Directory Domain Services)
- No need for OS config / management
- Standalone domain. Just like an on-prem domain.
- Cloud hosted legacy application with Azure AD DS.
- One way sync from Entra ID to Azure AD DS.
- Legacy access methods of authentication.
- Group Policy
- LDAP
- NTLM
- Kerberos
- Role-Based Access Control (RBAC)
- Control access based on your role.
- Scope based on needed permissions to the needed resources for the appropriate amount of time.
- Defense in Depth (layered defense)
- mitigate unauthorized access to data.
- Identity
- identity is the unique Identifier for any digital object
- authentication proves identity
- authorization scopes identity
- all are needed and Entra ID provides these.
- A user can be a member or guest of up to 500 tenants.
Study Completed!
Check out my previous blog post here.
More information on the AZ-900 exam here.
Enter your email address to subscribe to this blog and receive notifications of new posts!
If you enjoy this blog check out my affiliate links here to support this site: https://powersjo.com/powersjo-affiliate-links/
God bless you!