Top Azure Active Directory Interview Questions (2021) | CodeUsingJava
















Most frequently Asked Azure Active Directory Interview Questions


  1. What is Azure Active Directory?
  2. What are the advantages of Azure AD?
  3. How is Azure Active Directory related to subscriptions?
  4. Who utilizes an Azure Active Directory?
  5. Name some important applications of Azure.
  6. How can we get Azure Active Directory groups in asp.net core project?
  7. What are the functions of Azure AD Domain Services.
  8. What is Azure Site-to-Site VPN?
  9. What are the tools used in the creation of Vnets?
  10. How to get the azure account tenant Id?
  11. How to add application to Azure AD programmatically?

What is Azure Active Directory?

Azure Active Directory is a cloud based identity and access management solution. It is the backbone of the office 365 system and also can sync with on premises Active AD and by providing authentication for other cloud based systems via OAuth.
Azure AD also helps in business streamline processing and improving productivity and security while the SSO gives employees and business partners access for thousands of cloud application like Salesforce, DropBox and Office 365.


What are the advantages of Azure AD?

  • Single sign-on for multiple applications - Helps in making easier and fast to onboard new employees, terminate access for the leavers and implement access for the new cloud services.SSO helps in encouraging compliance with identity with the security protocols.
  • Integration with an existing Windows Server Active Directory - Helps in leveraging an on premises identity provision for managing access to cloud features, also apply the on premises Active AD by creating a seamless working environment for the users.
  • Pre-integration with favourite cloud services - Helps in corporating social media, salesforce, Office 365.
  • Multiple platform functionality - Helps in working multiple platforms and devices and for productivity and real time communication.
  • Global availability - Helps in running 28 data centers around the world and is available wherever you are.
  • Comprehensive reporting - Helps in enabling business monitor application usage and enhance security by protecting from additional threats.

How is Azure Active Directory related to subscriptions?

Azure AD is a cloud base identity and also access management service that will help in assiting in managing the azure resources.Azure Active Directory has one to many subscription, can only trust a single Active Directory and multiple subscription can be associated with a single Azure Active Directory instances.

Who utilizes an Azure Active Directory?

Azure AD is mainly intended for:
IT Admins uses Azure AD for regulating access to apps and app resources as per business requirements.
App Developers uses Azure AD as guidelines-based method for adding SSo to our application and permitting it for working with the client's pre existing credentials.
Online subscribers of Microsoft 365, Office 365, Azure, or Dynamics CRM uses Azure AD for online subscribers that are already using Azure AD as it is provided with Microsoft 365 for accessing our integrated cloud applications.


Name some important applications of Azure.

Here are some of the important apps used by Azure:
Infrastructure Services
Mobile Apps
Web Applications
Cloud Services
Storage
Media Services

How can we get Azure Active Directory groups in asp.net core project?

Here is what the generated configure function looks like:
app.UseStaticFiles();
app.UseCookieAuthentication();
app.UseOpenIdConnectAuthentication(new OpenIdConnectOptions
{
    ClientId = Configuration["Authentication:AzureAd:ClientId"],
    ClientSecret = Configuration["Authentication:AzureAd:ClientSecret"],
    Authority = Configuration["Authentication:AzureAd:AADInstance"] + Configuration["Authentication:AzureAd:TenantId"],
    CallbackPath = Configuration["Authentication:AzureAd:CallbackPath"],
    ResponseType = OpenIdConnectResponseType.CodeIdToken
});

app.UseMvc(routes =>
{
    routes.MapRoute(
        name: "default",
        template: "{controller=Home}/{action=Index}/{id?}");
});

Here is the rudimentary action code trying to get user groups:
public async Task<IActionResult> Index()
{
    var client = new HttpClient();
    var uri = "https://graph.windows.net/myorganization/users/{user_id}/$links/memberOf?api-version=1.6";

    var response = await client.GetAsync(uri);
    if (response.Content != null)
    {
        ViewData["response"] = await response.Content.ReadAsStringAsync();
    }

    return View();
}    

What are the functions of Azure AD Domain Services.

Securing Object Store.
Object organizing using organizational units, domain and forest.
Common Authentication and Authorization provider.
Authentication of LDAP, NTLM, Kerberos.
Group Policy.
Customizable Schema.


What is Azure Site-to-Site VPN?

Azure Site-to-Site VPN gateway is used for connecting our on premises network over IPsec/IKE VPN tunnel.It requires a VPN device for locating on premises that have an extreme facing public IP address assigned to it.

What are the tools used in the creation of Vnets?

Azure Portal, Powershell, Azure CLI are the tools used for creating Vnets.

How to get the azure account tenant Id?

We can get the Azure account tenant ID by:
Navigating to Dashboard
Navigating to ActiveDirectory
Navigating to Manage / Properties
Copy the "Directory ID"

Azure


How to add application to Azure AD programmatically?

There are different modules running around that have the ability to create AAD.If we want to create a module using Azure PowerShell we can use the code given below:
PS C:\> New-AzureRmADApplication -DisplayName "NewApplication" -HomePage "http://www.Contoso.com" -IdentifierUris "http://NewApplication"