šŸ”„ Check out my documented journey on how to set up Configuration Manager (MECM) and my updated notes on the Azure AZ-104 Exam! šŸ”„
Posts
Microsoft
Microsoft Endpoint Manager
Microsoft Endpoint Manager Course Notes
MECM Stormwind Studios Course Notes
Chapter 6 - Azure and Devices
Chapter 6.1 - Introduction to Azure Active Directory

Microsoft Endpoint Manager Notes

Chapter 6.1 - Introduction to Azure Active Directory

What is Azure Active Directory (AAD)?

Azure AD is a cloud based identity and access management service. It's a key piece of Microsoft's cloud platform, as it provides a single place to manage users, groups, and the permissions they hold in relation to the applications and devices published in Azure AD.

  • Azure Active Directory
    • Users
    • Devices
    • Software as a Service (SaaS)
    • Resources
    • Access Management

Identity of Devices, Users, Groups and MFA

  • Azure AD Multi-Factor Authentication works by requiring two or more of the following authentication methods:
    • Something you know, typically a password
    • Something you have, such as a trusted device that's not easily duplicated, like a phone or hardware key
    • Something you are - biometrics like a fingerprint or face scan

What is Needed by MEM for Azure AD?

  • Azure AD Tenant
  • Azure AD Licenses

Azure AD Licensing Options

  • Free vs. Basic Office 365
    • O365 offers Unlimited Directory Objects
    • O365 offers Multi-Factor Authentication
  • Premium P1 vs. Premium P2
    • P2 comes with Identity Protection, allowing you to manage conditional access to apps
    • P2 provides you Privileged Identity Management (PIM). It provides you with extra management on privileged accounts
    • P2 provides Access Review

Topic Summary

  • Introduction
    • What is AAD
    • Identity of Devices, users, groups and multi-factor authentication
    • Turning on MFA
    • What is needed for AAD
      • Tenants
      • Licenses
Chapter 5.5 - Autopilot FAQ's and Troubleshooting TipsChapter 6.2 - Azure Device Identities