Unit 8: Discuss Identity Management Solutions

Overview

Identity and Access Management (IAM) solutions control access to organizational apps

and data.

Every user, device, and app must prove identity (authentication) and permission

(authorization).

Example:

An employee signs into Microsoft 365 with Entra ID credentials, which determine what

Teams or SharePoint sites they can access.

Microsoft Entra ID – The Core IAM Solution

Definition:

A cloud-based Identity as a Service (IDaaS) platform providing authentication,

authorization, and governance for users, apps, and devices.

Benefits

 Universal identity platform for all apps—cloud or on-premises.

 Single identity for users, partners, and customers across devices.

 Simplified access management through SSO and conditional access.

 Scalable and redundant architecture with global availability.

Common Entra ID Terminology

Term Definition Example

Identity Anything that can authenticate

(user, app, device). A web app authenticating via a client

secret.

Account An identity with associated data

and permissions. A user account in Entra ID.

Microsoft Entra

Account Created in Entra ID or Microsoft

365 for organizational use. alex@contoso.com

Term Definition Example

User A verifiable individual identity. A single employee account.

Group Collection of users for shared

permissions. “Finance Team” group with access

to finance apps.

Azure

Subscription Billing container for Azure

services. A subscription linked to a credit

card.

Tenant / Directory A dedicated instance of Entra ID

for one organization. contoso.onmicrosoft.com tenant.

Administrative

Unit Sub-division of a tenant for

delegated management. A university’s “College of

Engineering” admin unit.

Analogy:

Think of an Entra tenant as your organization’s digital building . Each floor (administrative

unit) has local managers, and all users and rooms are inside this one secure structure.