![]() A default Office 365 Azure AD has about 200 Service Principals. The list of all applications can be displayed with the PowerShell command: Get-AzureADApplication.īy default, any user in Azure AD can create new applications and associated Service Principals. The Application Administrator role is particularly interesting because, in Azure AD, everything is application. Then, there are dozens of limited administrators roles: The term Company Admin can sometimes be encountered in place of Global Admin but they refer to the same role. The highest level of privileges is associated to the Global Admin role, which can administrate anything related with the Azure AD subscription. Roles, permissions and terminologyĪzure AD comes up with a lot of new terminologies, which could confuse Active Directory regulars. They will be detailed later in this article. ![]() Some advanced administration and security features are only available via the two premium plans though. The free plan is sufficient for testing purposes and offers a lot of features such as user and group management, on-premises directory synchronization, single sign-on across Azure apps, etc. Roles can be different between PowerShell modules for example between Get-AzureADDirectoryRole and Get-MsolRole commands. The first two are deprecated, as Microsoft pushes to unify all the features of theses APIs in Microsoft Graph. APIs: Exchange Provisioning service, Azure AD Graph, Microsoft Graph.PowerShell modules: MSOnline 1, AzureAD and Azure CLI.There are many ways to interact with Azure AD: ![]() However, a parallel between the two solutions can be established: Azure AD serves as an identity management platform for Microsoft Applications, Azure Resources Manager and basically anything else you integrate it with.ĭespite the misleading name, Azure AD is not Active Directory in the cloud. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |