Create a custom role In addition to built-in roles available in Azure, you might need to create a custom role to provide a set of permissions that are not available in any of the built-in roles. Custom roles can be created and assigned through the Azure portal, Azure PowerShell, Azure CLI, and REST API. This…
Author: zeusexam
Manage access to Azure resources 2 – AZ-104 Exam Guide
The specific permissions that are applied to a resource with RBAC are defined in a role definition. A role definition contains the list of permissions—or declared permissions—and those permissions define what actions can or cannot be performed against a type of resource, such as read, write, or delete. Role definitions, or roles, can be either…
Manage access to Azure resources – AZ-104 Exam Guide
Skill 1.2: Manage access to Azure resources Access control in Microsoft Azure is an important part of an organization’s security and compliance requirements. Implementing role-based access control (RBAC) defines access rights at a very granular level, based on each user’s assigned tasks or the day-to-day activities those users need to perform in their roles. This…
Configure self-service password reset – AZ-104 Exam Guide
Configure self-service password reset The password reset is one of the highest cost-incurring activities for many organizations, and many organizations have dedicated front-line help desks to handle such requests. Self-service password reset (SSPR) allows users to reset their own passwords in Microsoft Entra ID, including the ability to optionally write the password back to an…
Configure Microsoft Entra Join – AZ-104 Exam Guide
Configure Microsoft Entra Join Microsoft Entra includes the ability to manage device identity, which enables single sign-on to devices and the applications and services managed through Entra that are accessed from that device. Managed devices include both enterprise and bring-your-own-device (BYOD) scenarios. This allows users to work from any device, including personal devices, all while…
Manage licenses in Microsoft Entra ID – AZ-104 Exam Guide
Manage licenses in Microsoft Entra ID There are a few different license types available with Entra ID: Note that either P1 or P2 licenses are included with other bundles and suites of licenses, such as the Enterprise Mobility + Security suite. To be able to assign a license to a user account, two things must…
Manage user and group properties – AZ-104 Exam Guide
Manage user and group properties As users and groups are used, they might need updates to their attributes (or properties). For example, you might need to change a user’s job title, or you might need to add or remove members from an existing group. Users and groups can be updated using management tools such as…
Manage Microsoft Entra users and groups 2 – AZ-104 Exam Guide
First, you must select the type of group you are creating. You have two options: Security and Microsoft 365. Security groups allow you to share Azure resources access to a group of users, devices, or service principals. A Microsoft 365 group allows access to a shared mailbox, cal- endar, SharePoint site, and so on. Note…
Manage Microsoft Entra users and groups – AZ-104 Exam Guide
Skill 1.1: Manage Microsoft Entra users and groups In a Microsoft Entra tenant, there are users, groups, and devices that are controlled through the features of Entra discussed in this section. This section focuses on managing users and groups throughout their lifecycles, how to manage device settings, how to perform bulk updates to users using…