Dynamics Funda

 Part 1 - Recap  An organization identified by its public domain name. An organization can have multiple subscriptions A subscription can have multiple licenses Licenses can be assigned to individual user accounts User accounts are stored in an Azure AD tenant    Active Directory Domain Service IDaaS (Identity As a Service) Multiple Microsoft cloud offering subscriptions can use the same Azure AD tenant that acts as a common identity provider.  A central Azure AD tenant that contains the synchronized accounts of your on-premises AD DS provides cloud-based Identity as a Service (IDaaS) for your organization. Below diagram shows how a common Azure AD tenant is used by Microsoft's SaaS cloud offerings, Azure PaaS apps, and virtual machines in Azure IaaS that use Azure AD Domain Services. Azure AD Connect synchronizes the on-premises AD DS forest with the Azure AD tenant.

  Microsoft 365 Cloud Offerings - Elements of Hierarchy Microsoft provides a hierarchy of organizations, subscriptions, licenses, and user accounts for consistent use of identities and billing across its cloud offerings: Microsoft Office 365 Microsoft Azure Microsoft Intune and the Enterprise Mobility + Security (EMS) Microsoft Dynamics 365 Microsoft 365 combines Office 365, EMS, and Windows 10 Enterprise into a single subscription and set of integrated services.  Element 1:  Organization An organization represents a business entity that is using Microsoft cloud offerings. Organization is identified by one or more public Domain Name System (DNS) domain names, such as "contoso.

Azure Terminologies Description  Identity A thing that can get authenticated. An identity can be a user with a username and password. Identities also include applications or other servers that might require authentication through secret keys or certificates.  Account An identity that has data associated with it. You cannot have an account without an identity.  Azure AD Account An identity created through Azure AD or another Microsoft cloud service, such as

List of all Roles on Microsoft 365 Portal # Role Name Role Description Role Category 1 Global admin Has unlimited access to all management features and most data in all admin centers. Global 2 Application admin Full access to enterprise applications, application registrations, and application proxy settings. Identity 3 Application developer Create application registrations and consent to app access on their own behalf. Identity 4 Authentication admin Can require users to re-register authentication for non-password credentials, like MFA. Identity 5 Cloud application admin Full access to enterprise applications and application registrations. No application proxy. Identity 6 Conditional Access admin Manages Azure Active Directory conditional access settings, but not Exchange ActiveSync conditional access policy. Identity 7 External identity provider adm