azure:az-500:manage_azure_active_directory_azure_ad_identities

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision		 Previous revision
azure:az-500:manage_azure_active_directory_azure_ad_identities [2022/06/27 22:57] – [Users & Groups] mmuzeazure:az-500:manage_azure_active_directory_azure_ad_identities [2022/07/22 13:44] (current) mmuze
Line 21: Line 21:
     * **Security groups** - Azure AD Security Groups are analogous to Security Groups in on-prem Windows Active Directory. They are Security Principals, which means they can be used to secure objects in Azure AD.     * **Security groups** - Azure AD Security Groups are analogous to Security Groups in on-prem Windows Active Directory. They are Security Principals, which means they can be used to secure objects in Azure AD.
     * **Microsoft 365 groups** - are a membership object in Microsoft 365 that eases the task of ensuring a group of people have consistent permissions to a group of related resources.     * **Microsoft 365 groups** - are a membership object in Microsoft 365 that eases the task of ensuring a group of people have consistent permissions to a group of related resources.
 +      * [[https://docs.microsoft.com/en-us/microsoft-365/community/all-about-groups]]
 +      * The group's files are in SharePoint, the real time collaboration is in Teams, the email discussions are in Exchange, but they're all secured and managed as a Microsoft 365 Group.
 +      * used for collaboration
  
 ====== Managed Identity ====== ====== Managed Identity ======
Line 44: Line 47:
  
 ====== B2C ====== ====== B2C ======
 +  * [[https://docs.microsoft.com/en-us/azure/active-directory-b2c/overview]]
 +
 > Azure Active Directory B2C provides business-to-customer identity as a service. Your customers use their preferred social, enterprise, or local account identities to get single sign-on access to your applications and APIs. > Azure Active Directory B2C provides business-to-customer identity as a service. Your customers use their preferred social, enterprise, or local account identities to get single sign-on access to your applications and APIs.
  
 {{ :azure:az-500:b2c.png?800 |}} {{ :azure:az-500:b2c.png?800 |}}
 +
 ====== Administrative Unit ====== ====== Administrative Unit ======
  
-  * An [[https://docs.microsoft.com/en-us/azure/active-directory/roles/administrative-units|Administrative Unit (AU)]] is a mechanism for limiting the permissions of an Azure AD role to apply to a selected set of users and/or groups. It limits the scope of the role. When a group is selected the scope only applies to the group itself, not the users that are a member of the group.+  * An [[https://docs.microsoft.com/en-us/azure/active-directory/roles/administrative-units|Administrative Unit (AU)]] is a mechanism for limiting the permissions of an Azure AD role to apply to a selected set of users and/or groups instead of an entire AAD directory. It limits the scope of the role. When a group is selected the scope only applies to the group itself, not the users that are a member of the group.
  
 >  An administrative unit is an Azure AD resource that can be a container for other Azure AD resources. An administrative unit can contain only users, groups, or devices. >  An administrative unit is an Azure AD resource that can be a container for other Azure AD resources. An administrative unit can contain only users, groups, or devices.
  • azure/az-500/manage_azure_active_directory_azure_ad_identities.1656370675.txt.gz
  • Last modified: 2022/06/27 22:57
  • by mmuze