Azure Authentication and Authorization Process
- Tenant i.e. Azure Active Directory (AAD) manages users, devices and Groups
- Azure Account will have subscriptions. A subscription will be linked to a tenant during creation
- Since Tenant manages user information, if we need users from different domains to be logged into azure, we sync/federate Tenant to other identity system. The most popular system for managing users on-premises is microsoft active directory.
-
Azure Account will have subscriptions and subscriptions will have resoruce groups and any resource which we created has to be part of some resource group
- Note: Refer Here for free tier account creation.
Azure AD Use cases
- User, Group management
- Importing users from existing identities
- Azure AD Sync/Federation
- Managing RBAC
- Management Group
- subscription
- resource group level
- resource level
- other
- pricing models of azure ad
