Ojasa Mirai
Cloud
Loading...
Learning Level
🔑 Azure Identity & Access
Introduction
Azure Active Directory (Azure AD) provides identity and access management for cloud applications.
Key Learning Outcomes
By the end of this lesson, you'll understand:
- Azure AD fundamentals
- Service principals and managed identities
- Role-based access control (RBAC)
- Multi-factor authentication (MFA)
- Conditional access policies
- Application registration
Creating Service Principal
# Create service principal
az ad sp create-for-rbac \
--name "myServicePrincipal" \
--role Contributor \
--scopes /subscriptions/{subscription-id}
# Output includes:
# appId, password, tenantManaged Identities
# Enable managed identity on VM
az vm identity assign \
--name myVM \
--resource-group myResourceGroup
# Grant permissions to managed identity
az role assignment create \
--role "Storage Blob Data Reader" \
--assignee <principal-id> \
--scope /subscriptions/.../storageAccountRBAC Assignments
# Assign role
az role assignment create \
--role Contributor \
--assignee user@example.com \
--scope /subscriptions/{subscription-id}
# List assignments
az role assignment list \
--scope /subscriptions/{subscription-id}Multi-Factor Authentication
# Enable MFA for user
az ad user update \
--id user@example.com \
--force-change-password-next-sign-inKey Takeaways
- **Azure AD** manages identities and access
- **Service principals** authenticate applications
- **Managed identities** eliminate credential management
- **RBAC** provides granular access control
- **MFA** strengthens security
Next Steps
Learn about scaling and load balancing, or explore containers with Azure Kubernetes Service.
Resources
Ojasa Mirai
Master AI-powered development skills through structured learning, real projects, and verified credentials. Whether you're upskilling your team or launching your career, we deliver the skills companies actually need.
Learn Deep • Build Real • Verify Skills • Launch Forward