Basics Of Azure Active Directory


  1. An Azure account

Azure Active Directory

Azure AD allows you to convert your on-premise workloads into Azure which will help you with identifying and accessing the capabilities for hosting your applications into Azure again. So, it’s a directory server for Azure services and applications, that is used by Office 365 to store your account data like User ID and password. Also, it is used in Microsoft Intune to store computer and user data – this will help you not only to sign in with your Microsoft Hotmail/outlook account in Windows 10, but also with your AD account of your own domain network.

Azure AD comes in different editions. The details are given below.

Free edition User account management.

Sync with on-premises AD.

Single sign in on Office 365.

Basic edition Control management through group based access management.
Self service password reset, reset your password using an office 365 account if you have it.
Azure AD application proxy.
Premium edition Self Service group management.
Advanced security reports and alerts.
Gives you multi factor authentication.
Microsoft Identity Manager User Rights.
Password reset with write-black
Azure AD Connect Health

Supports of Azure AD

Resource independent Supports us for multiple directories which are resource independent, single directory can contain multiple domains for administration over here.
Administrator independent Each Azure id is administrative independent, if you have 10 Azure administrators with one instance on your subscription, it doesn’t mean 10 need to be admin.
Synchronization independent You can sync between your individual directory and towards Azure.
Global Administrators Global Admin can delete directory. If there is no user in the global directory, then the global admin is added with no application in the directory.

Creating an Azure AD user

Step 1 Logging Azure Account

Login to your Azure account.

Here is your home screen of Azure portal.

Move to Azure Active Directory in the "All items" pane and click on it.

You can find a default directory there.

Click on the Default Directory now. You will be getting a window like this. If this is the first time you are going to use the Active Directory, click on the tick mark accepting it to talk about the Active Directory.

Step 2 Creating user accounts for AD in Azure

Click on Users in the default directory.

Click on Add User in the bottom pane of your Azure portal.

You will be getting a window like this.

Add your username in the above window. After it is added, click on the "Next" icon.

Fill in your First name, Last name, Display Name and your role. You have different roles here, as User, Global admin, Billing admin, Service admin, User admin and Password admin. Click on the Next icon once it is done.

Click on Create to create a temporary password for this user account.

You will be getting a temporary password now. If you need, you can make a copy of it to a notepad or anywhere else. Click on the tick mark after it is done.

Well, here we have added the user account towards Active Directory.

Step 3 Creating Group and adding members to it.

Click on Groups in Active Directory now.

Click on "ADD A GROUP". 

Name your Group and click on the Next button.

Group named “demogroup” has been created.

Click on the Group name that has been created.

Click on "Add members".

Select the User that you want to add and click on Next.

Keynotes (in short)

  1. Azure Active Directory.
  2. Edition on Azure AD.
  3. Support on Azure AD.
  4. Creating an Azure Active Directory.
  5. Creating members.
  6. Creating groups and adding members to it.