Differences

This shows you the differences between two versions of the page.

--- azure:az-500:identity_access_management [2022/07/22 02:02] – mmuze
+++ azure:az-500:identity_access_management [2022/07/23 12:50] (current) – mmuze
@@ Line 6: / Line 6: @@
 > Identity is the new perimeter.
-====== Identity Protection ======
-  * Identity Protection provides policies for a few common scenarios.
-  * These policies require an AAD P2 license
-  * [[https://docs.microsoft.com/en-us/azure/active-directory/identity-protection/concept-identity-protection-policies]]
-  * These are under ''Azure AD/Manage/Security/Identity Protection/Protect'' and include these:
-    * **Azure AD MFA registration policy** - requires users to register for MFA
-    * **Sign-in risk policy** - a risk score is calculated to indicate the likelihood that a sign-in was not performed by the user. Based on this score administrators can choose to block access, allow access or allow access but require multi-factor authentication.
-    * **User risk policy** - a risk score is calculate to indicate the likelihood that a user account has been compromised. Based on this score administrators can choose to block access, allow access or allow access but require a password change.
+===== Topics =====
+  * Azure AD
+  * Role Based Access Controls (RBAC)
@@ Line 41: / Line 36: @@
 ==== Azure AD Roles ====
+  * [[https://docs.microsoft.com/en-us/azure/active-directory/roles/]]
 The following are the four fundamental Azure AD administrator roles.
   * Global Administrator
@@ Line 58: / Line 55: @@
 {{:azure:az-500:roles.png|}}
-====== AD Connect ======
-  * [[https://docs.microsoft.com/en-us/azure/active-directory/hybrid/reference-connect-accounts-permissions|Permissions]] needed to install AD Connect