Why This Cheat Sheet Matters for AZ-104
This cheat sheet covers the most important Microsoft Entra ID concepts tested on the AZ-104 (Azure Administrator Associate) certification exam. It contains 2 sections with 8 key points that you should memorize before exam day. Manage users, groups, licenses, administrative units, and external identities in Microsoft Entra ID. Use this as a quick-reference guide during your final review sessions.
User Management
- Create users in Entra ID or sync from on-premises AD with Entra Connect.
- Bulk operations available for user creation, invitation, and deletion.
- Administrative units restrict admin permissions to a subset of the organization.
- Guest users are external identities invited via B2B collaboration.
RBAC
- Built-in roles: Owner, Contributor, Reader, User Access Administrator.
- Custom roles define specific allowed/denied actions and data actions.
- Role assignments combine security principal + role definition + scope.
- Deny assignments block actions even when role assignments grant access.
Practice Entra ID Questions
Put your knowledge to the test with practice questions.
Azure Quick Reference Tips
Azure services follow consistent naming patterns that help with exam recall. Resource Manager (ARM) templates use JSON, while Bicep provides a cleaner DSL for infrastructure as code. Remember that Azure resources are organised in a hierarchy: Management Groups → Subscriptions → Resource Groups → Resources.