Azure Active Directory account
GPTKB entity
Statements (51)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
cloud identity account
|
| gptkbp:auditedBy |
audit logs
sign-in logs |
| gptkbp:canBe |
enterprise applications
user account B2B collaboration managed identity B2C scenarios service principal accessing Azure resources accessing Microsoft Graph accessing SaaS applications accessing on-premises applications guest account |
| gptkbp:canBeDisabled |
yes
|
| gptkbp:canBeFederatedWith |
external identity providers
|
| gptkbp:canBeManagedBy |
gptkb:Azure_portal
gptkb:PowerShell gptkb:Microsoft_Graph_API |
| gptkbp:canBeRecovered |
within retention period
|
| gptkbp:connectsTo |
gptkb:on-premises_Active_Directory
|
| gptkbp:enables |
access to cloud resources
|
| https://www.w3.org/2000/01/rdf-schema#label |
Azure Active Directory account
|
| gptkbp:mayBeAssignedTo |
groups
roles licenses |
| gptkbp:mayInclude |
identity governance
account lockout policies password policies device registration self-service password reset access reviews privileged identity management terms of use policies |
| gptkbp:partOf |
gptkb:Azure_Active_Directory_tenant
|
| gptkbp:protectedBy |
identity protection policies
|
| gptkbp:provides |
gptkb:Microsoft
|
| gptkbp:removes |
yes
|
| gptkbp:supports |
multi-factor authentication
single sign-on role-based access control conditional access policies |
| gptkbp:syncsWith |
gptkb:Active_Directory_Domain_Services
|
| gptkbp:usedFor |
gptkb:government_agency
authentication |
| gptkbp:usedIn |
gptkb:Microsoft_365
gptkb:Microsoft_Azure gptkb:Microsoft_Intune |
| gptkbp:bfsParent |
gptkb:Microsoft_Partner_account
gptkb:Azure_Active_Directory_authentication |
| gptkbp:bfsLayer |
7
|