🌟 AZ-500 Key Terminology & Quick Reference Guide

🔐 Azure AD (Active Directory):

Microsoft's cloud-based identity and access management service.

🔐 Conditional Access:

Policies that enforce controls on the user, location, and device to determine how and when resources are accessed.

🔐 MFA (Multi-Factor Authentication):

An authentication method requiring two or more verification factors for a login.

🔐 PIM (Privileged Identity Management):

A service that enables just-in-time and time-bound access for privileged roles in Azure AD.

🔐 JIT (Just-in-Time) VM Access:

Limits the exposure of VMs by granting access only for a specified time and under specific conditions.

🔐 Azure Firewall:

A managed cloud-based network security service that protects Azure resources from external threats.

🔐 Azure Sentinel:

A cloud-native security information and event management (SIEM) system that provides advanced threat detection and response.

🔐 Security Center:

A unified security management system that provides advanced threat protection across Azure and on-prem environments.

🔐 NSG (Network Security Group):

Controls inbound and outbound network traffic to and from Azure resources.

🔐 DDoS Protection:

Protects Azure applications by mitigating distributed denial-of-service (DDoS) attacks.

🔐 Log Analytics:

A service that collects and analyzes data generated by resources in Azure, helping you gain deep insights into security and performance.

🔐 Azure Policy:

A governance tool that helps enforce organizational standards across resources.

🔐 RBAC (Role-Based Access Control):

Allows you to manage who has access to Azure resources, what they can do with those resources, and what areas they have access to.

🔐 Blueprints:

A way to define a repeatable set of Azure resources that follows organizational standards.