On a journey to add some qualifications for Azure under our belt, studying for exams is needed to ensure we pass. Alternatively, being familiar with identity and security terms helps us bolster our tech security. Find the below questions, answers and topics for studying for your AZ-900 exam.
AZ-900 Exam material
- What is Zero Trust?
- Zero Trust is when all users are not granted access unless proven otherwise.
- Your identity proves trust for access.
- Your location does not matter, you must prove your identity.
- Least privilege access. You only get access to what you need to accomplish your job.
- Central location for conditional access to data.
- Trust through the individual level.
- Multi-factor authentication
- Layered security for identity.
- Needs two pieces of something you know, have or are.
- Conditional Access
- An additional layer of security that uses if/then rules to permit or deny access.
- MFA is often implemented with Conditional Access.
- Passwordless Authentication
- Aims to remove the password by using MFA with a physical device.
- Entra External ID for partners vs. for customers
- Partners interact with internal resources, customers interact with external facing resources like websites.
- Partners user have identity in Entra ID, customers user have identity at 3rd party provider like Google or Facebook.
- Azure AD DS (Active Directory Domain Services)
- No need for OS config / management
- Standalone domain. Just like an on-prem domain.
- Cloud hosted legacy application with Azure AD DS.
- One way sync from Entra ID to Azure AD DS.
- Legacy access methods of authentication.
- Group Policy
- LDAP
- NTLM
- Kerberos
- Role-Based Access Control (RBAC)
- Control access based on your role.
- Scope based on needed permissions to the needed resources for the appropriate amount of time.
- Defense in Depth (layered defense)
- mitigate unauthorized access to data.
- Identity
- identity is the unique Identifier for any digital object
- authentication proves identity
- authorization scopes identity
- all are needed and Entra ID provides these.
- A user can be a member or guest of up to 500 tenants.
Study Completed!
More information on the AZ-900 exam here.
Check out my previous blog post here.
This post was originally from my blog, referenced below.
Haven't joined Publish0x yet? Join up by using my referral code.
Support work you enjoy with Brave Rewards here.
You can get a 25 PRE token bonus if you use my referral code here. This is to support a decentralized web search engine with presearch.org.
You can earn crypto at Odysee.com, an alternative to YouTube. Use my affiliate link here to watch and earn.
God bless you!