Microsoft Entra ID
Microsoft Entra ID is Microsoft's cloud-based identity and access management service, formerly known as Azure Active Directory. SC-900 covers its functions and identity types in the Entra domain.
Microsoft Entra ID is Microsoft's cloud-based identity and access management service, formerly known as Azure Active Directory. SC-900 covers its functions and identity types in the Entra domain.
The shared responsibility model is a framework that divides security duties between the cloud provider and the customer depending on the service type.
Zero Trust is a security model that assumes breach and verifies each request explicitly rather than trusting anything inside a network perimeter.
Defense-in-depth is a strategy that uses multiple layers of security controls so that if one layer fails, others still protect the asset.
Microsoft Entra ID is Microsoft's cloud-based identity and access management service, formerly known as Azure Active Directory.
Multifactor authentication (MFA) is an authentication method that requires two or more forms of verification before granting access.
Conditional Access is a Microsoft Entra capability that enforces access policies based on signals such as user, device, location, and risk.
Privileged Identity Management (PIM) is a Microsoft Entra service that provides just-in-time, time-bound, and approval-based access to privileged roles.
Microsoft Defender for Cloud is a service that provides cloud security posture management and workload protection across Azure, hybrid, and multi-cloud resources.
Microsoft Sentinel is a cloud-native security information and event management (SIEM) and security orchestration automated response (SOAR) solution.
Microsoft Defender XDR is an extended detection and response suite that unifies threat protection across endpoints, identities, email, and cloud apps.
Azure Key Vault is a service for securely storing and controlling access to secrets, keys, and certificates.
A network security group (NSG) is an Azure resource that filters inbound and outbound network traffic to resources using allow and deny rules.
Microsoft Purview is a set of compliance and data-governance solutions covering information protection, data lifecycle management, eDiscovery, and audit.
Data loss prevention (DLP) is a capability that detects and helps prevent the unauthorized sharing of sensitive information.
Compliance Manager is a Microsoft Purview tool that helps assess and manage compliance through a risk-based compliance score.