Why This Cheat Sheet Matters for AZ-900
This cheat sheet covers the most important Microsoft Entra ID concepts tested on the AZ-900 (Azure Fundamentals) certification exam. It contains 3 sections with 12 key points that you should memorize before exam day. Study Microsoft Entra ID (Azure AD), authentication methods, MFA, Conditional Access, RBAC, and identity governance. Use this as a quick-reference guide during your final review sessions.
Microsoft Entra ID
- Cloud-based identity and access management service (formerly Azure AD).
- Supports authentication, SSO, application management, and device management.
- Provides B2B and B2C identity capabilities.
- Conditional Access policies control access based on signals like location, device, and risk.
Authentication & Authorization
- Authentication verifies who you are; authorization determines what you can do.
- MFA adds a second verification factor beyond passwords.
- Passwordless authentication options: Windows Hello, FIDO2, Microsoft Authenticator.
- RBAC assigns permissions to users, groups, or service principals at various scopes.
Exam Cues
- Need SSO across multiple apps? Microsoft Entra ID.
- Need to control access based on conditions? Conditional Access.
- Need to restrict what users can do with Azure resources? RBAC.
- Need external partner access? B2B collaboration in Entra ID.
Practice Identity Questions
Put your knowledge to the test with practice questions.
Azure Quick Reference Tips
Azure services follow consistent naming patterns that help with exam recall. Resource Manager (ARM) templates use JSON, while Bicep provides a cleaner DSL for infrastructure as code. Remember that Azure resources are organised in a hierarchy: Management Groups → Subscriptions → Resource Groups → Resources.