====== Identity and Access ======
  * //Azure AD/Entra// is a cloud native identity management system that supports protocols like, OIDC, SAML and WS-Fed, and OAuth2.

  * user risk vs. sign-in risk, user risk is the //"who"// aspect of the risk. that is, user risk is one where the user account was potentially compromised and is being used by someone other than the true user. Sign-in risk is the //"where"// aspect of the sign-in activity. That is, if the user is signing-in from a location they usually do not sign-in from.