📋 Identity & Access Cheat Sheet

Key identity and access management concepts for AZ-900 including authentication, authorization, and RBAC.

Microsoft Entra ID

  • Cloud-based identity and access management service (formerly Azure AD).
  • Supports authentication, SSO, application management, and device management.
  • Provides B2B and B2C identity capabilities.
  • Conditional Access policies control access based on signals like location, device, and risk.

Authentication & Authorization

  • Authentication verifies who you are; authorization determines what you can do.
  • MFA adds a second verification factor beyond passwords.
  • Passwordless authentication options: Windows Hello, FIDO2, Microsoft Authenticator.
  • RBAC assigns permissions to users, groups, or service principals at various scopes.

Exam Cues

  • Need SSO across multiple apps? Microsoft Entra ID.
  • Need to control access based on conditions? Conditional Access.
  • Need to restrict what users can do with Azure resources? RBAC.
  • Need external partner access? B2B collaboration in Entra ID.

Practice Identity Questions

Put your knowledge to the test with practice questions.

Identity Questions →Full AZ-900 Quiz

More AZ-900 Cheat Sheets

📋Cloud Concepts Cheat Sheet📋Governance & Compliance Cheat Sheet📋Cost Management Cheat Sheet
← AZ-900 Study HubFree Mock Exam7-Day Study Plan