Microsoft Entra ID
Microsoft Entra ID (Azure AD) security: app registrations, conditional access, managed identities, federation, and hybrid identity risks.
16 terms in Microsoft Entra ID
What is Microsoft Entra ID?
Microsoft Entra ID (formerly Microsoft Entra ID (formerly Azure AD)) is Microsoft's cloud-based identity and access management service. Learn what it does, how it differs from on-premises AD, and key security concepts.
Microsoft Entra ID vs Active Directory: What is the Difference?
Microsoft Entra ID and Active Directory are both Microsoft identity services, but they solve different problems. Learn the key differences and how they connect in hybrid environments.
What is a Tenant in Microsoft Entra ID?
An Entra ID tenant is the dedicated identity boundary your organization uses for Microsoft 365, Azure, and SaaS. Learn what it contains and why it's the cloud security boundary.
What is Conditional Access in Microsoft Entra ID?
Conditional Access is the Entra ID policy engine that evaluates context — user, device, location, app, risk — at sign-in and applies controls accordingly. Learn how it works.
What is an Entra ID Role?
Entra ID roles grant permissions to manage users, applications, and policies in your tenant. Learn the major roles, how they differ from Azure RBAC, and how to assign them safely.
What is Global Administrator?
Global Administrator is the highest-privilege role in Microsoft Entra ID. Learn what it can do, why standing GAs are dangerous, and how to manage them safely.
What is an App Registration?
App Registrations define applications in Entra ID — their identity, redirect URIs, secrets, certificates, and API permissions. Learn how they work and how to secure them.
What is a Service Principal?
A Service Principal is the local identity an application uses inside an Entra ID tenant. Learn what it represents, how it differs from a user identity, and how to secure it.
App Registration vs Enterprise Application: What is the Difference?
App Registration and Enterprise Application are two sides of the same OAuth identity in Entra ID. Learn what each represents and when you manage which.
What is Application Consent?
Application Consent is how an Entra ID user or admin authorizes an OAuth app to act with specified permissions. Learn how it works and how to defend against consent phishing.
What is Privileged Identity Management?
Privileged Identity Management (PIM) provides just-in-time, time-bound, approval-based activation for privileged roles in Microsoft Entra ID. Learn how it works.
What is Entra ID Governance?
Microsoft Entra ID Governance bundles identity governance — entitlement management, access reviews, lifecycle workflows, and PIM — into a single product. Learn what it does.
What is an Access Package?
An Access Package bundles groups, apps, and SharePoint sites that users can request as a unit through Entra ID Governance. Learn how they work and how to design them.
What is a Risky User?
A Risky User is a Microsoft Entra ID Identity Protection classification indicating that a user's account is likely compromised. Learn how risk is calculated and how to respond.
Common Microsoft Entra ID Misconfigurations
Most Entra ID compromises trace back to a familiar set of misconfigurations. Learn the most common ones and how to detect and fix them.
Microsoft Entra ID Security Checklist for Beginners
A practical, beginner-friendly checklist for hardening Microsoft Entra ID — from privileged access and Conditional Access to apps, hybrid sync, and continuous monitoring.
See your identity risk clearly.
Start with a 1-day Proof of Value in your own environment.