- Azure active directory is different from Windows active directory.
- AD connect can be used to synchronize the users on premise to allow single sign on operation.
- Azure active directory is the center for Auth and identity in azure.
Azure AD Tenant
- User → login to portal
- Tenant → Every user must have at least 1 tenant but can have many.
- Creating azure tenant is free.
- Tenant need to have azure subscription.
- Don’t create resource in another tenant, you will be charged extra as only one free trial account is allowed.
Roles:
- Global admin - Top level
- Admin permissions.
- there are more than 500 roles (approx)
Create a tenant
- use for testing purpose of security related content.
- Select Azure AD (b2c) for FB, google login etc.
Give your domain here:
It will be used for login like sid@azureusergroup.onmicrosoft.com
- Datacenter location means the user data will not leave that location.
- It takes around 15mins to create a tenant.
- Now we have the Azure User Group.
- For permissions, go to app registrations.
Microsoft Identity
- Tenant means a User Group.