SC-300: Identity and Access Administrator - TCS

SaaS directory

App gallery directory

Single-sign-on app connected directory

Follow the principle of least user access to ensure that your app only requests permissions it actually needs.

Test your app in each tenant to ensure functionality.

Use names and descriptions that are only meaningful to your team.

The Azure AD Application Proxy service and Application Proxy connector

An Application Proxy connector and the Azure Firewall service

The Azure AD Application Proxy service and Application Gateway

Administrator approved and automatic.

You should only use Manual Provisioning to ensure security.

Manual and automatic

Microsoft Defender for Cloud Apps

Microsoft Cloud Computing Services

Microsoft Security Center

Azure AD audit logs allow customer to monitor activity when provisioning new services within Azure.

Azure AD audit logs provide records of system activities for compliance reporting.

Azure AD audit logs provide a comparison of budgeted Azure usage compared to actual.

As non-connected users.

As directory-synchronized identities.

As transitional users.

Permanent roles.

Eligible roles.

Transient roles.

An access package is a group of users with the access they need to work on a project or perform a task.

An access package is a bundle of all the resources with the access a user needs to work on a project or perform their task.

An access package is a used to create a transitive trust between B2B organizations.

Device registrations

Resources and access packages

User lists