Azure Identity Services

First, you need to understand the difference between Authentication and Authorization clearly.

• Authentication is the process of checking the identity of the user.
  • This is the very first step in the identity-checking process
• Authorization is the process of checking whether the logged-in user has enough permission to access a particular resource or service.
  • This process comes after the user is Authenticated.

Azure Identity Management provides services like

• Azure Active Directory: This is an enterprise identity provider. It helps protect the users from 99.9% of cyber-attacks.
• Multi-Factor Authentication: This is an authentication method where the user needs to provide two or more pieces of evidence to an authentication mechanism.
  • The administrator of an application may use methods (2 or more) like this.
    • (1) Authenticate using credentials and then
    • (2) Authenticate using Mobile SMS code then
    • (3) Authenticate using Email code.
  • Single Sign-On: Access all the services and resources just by logging in one time. All the subsequent access to other applications will be automatically authenticated and authorized.