Azure Active Directory
- Identity Platform for Azure
- Can work with various identity Platforms, Windows Active Directory is one of them.
- Identity as a Service
Windows Active Directory
- Information about People and Devices
- Domain Controllers store Informations across sites
- Used as Authentication mechanism for
- Applications
- Device Logins
- Access Cards
- LDAP implementation by Microsoft is Active Directory
Authentication and Authorization
- Authentication: Allowing users to gain access
- Examples:
- Purchase a metro ticket & you are authenticated into platforms
- Creating an account in hacker rank
- Examples:
- Authorization: What is the access given. (Allow/Deny ). In Azure it will be Action based Access (Allowed to create virtual machines, Denied to deleted virtual machines)
Azure Authorization Model
-
Azure Follows RBAC (Role Based Access Control)
-
Some of the Popular Roles
- Global Administrator
- Limited Administrator
- Owner
- Contributor
-
Workflow for getting Access