Azure Active Directory account
GPTKB entity
Statements (51)
Predicate | Object |
---|---|
gptkbp:instanceOf |
cloud identity account
|
gptkbp:auditedBy |
audit logs
sign-in logs |
gptkbp:canBe |
enterprise applications
user account B2B collaboration managed identity B2C scenarios service principal accessing Azure resources accessing Microsoft Graph accessing SaaS applications accessing on-premises applications guest account |
gptkbp:canBeDisabled |
yes
|
gptkbp:canBeFederatedWith |
external identity providers
|
gptkbp:canBeManagedBy |
gptkb:Azure_portal
gptkb:PowerShell gptkb:Microsoft_Graph_API |
gptkbp:canBeRecovered |
within retention period
|
gptkbp:connectsTo |
gptkb:on-premises_Active_Directory
|
gptkbp:enables |
access to cloud resources
|
https://www.w3.org/2000/01/rdf-schema#label |
Azure Active Directory account
|
gptkbp:mayBeAssignedTo |
groups
roles licenses |
gptkbp:mayInclude |
identity governance
account lockout policies password policies device registration self-service password reset access reviews privileged identity management terms of use policies |
gptkbp:partOf |
gptkb:Azure_Active_Directory_tenant
|
gptkbp:protectedBy |
identity protection policies
|
gptkbp:provides |
gptkb:Microsoft
|
gptkbp:removes |
yes
|
gptkbp:supports |
multi-factor authentication
single sign-on role-based access control conditional access policies |
gptkbp:syncsWith |
gptkb:Active_Directory_Domain_Services
|
gptkbp:usedFor |
gptkb:government_agency
authentication |
gptkbp:usedIn |
gptkb:Microsoft_365
gptkb:Microsoft_Azure gptkb:Microsoft_Intune |
gptkbp:bfsParent |
gptkb:Microsoft_Partner_account
gptkb:Azure_Active_Directory_authentication |
gptkbp:bfsLayer |
7
|