AZ-104: 1.1.1 – Create Azure AD Users and Groups
Craig Wall
I’m a public sector IT Administrator, specializing in configuration management and mobility.
Create Users Using the Azure Portal
Portal -> Azure Active Directory -> Users -> New User
On the New User Creation Screen
- Choose “Create User”
- Choose a username unique to your AAD tenant
- Type in the user’s name
- Select Groups and Roles that apply to the user
- Check whether you want to block the user from signing in with this account
- Fill in Job information as needed.
- Click Create.
About Guest Users
If your tenant is setup to allow inviting Guest users, that portion of the Create User screen will ask for an email.
The user gets an invite via email that will allow them to login to their account and access resources you allow them to on your network.
Delete Users Using the Azure Portal
Portal -> Azure Active Directory -> Users
User accounts that are removed are held in the “Deleted Users” section for 30 days before being permanently removed.
Create a Group in the Azure Portal
Portal -> Azure Active Directory -> Groups
Security vs Microsoft 365 Groups
- Security groups are what manages access to shared resources
- Microsoft 365 groups are basically Sharepoint sites, with an added shared calendar and mailbox. They’re for group collaboration.
Membership Types
- Assigned – This is the typical group where members are manually assigned.
- Dynamic – Members get added/removed based on rules. Members can’t be manually added or removed from dynamic groups.
- Dynamic Device – A group for devices, added/removed based on rules.
- Device group rules can only reference device attributes, not owners’ attributes.
- New-AzureADUser
- Remove-AzureADUser
- New-AzureADGroup
Your content goes here. Edit or remove this text inline or in the module Content settings. You can also style every aspect of this content in the module Design settings and even apply custom CSS to this text in the module Advanced settings.
0 Comments