Identity & Access · Beginner

Microsoft Entra ID (Azure AD)

Microsoft Entra ID is Microsoft's cloud identity platform, formerly Azure Active Directory. It authenticates users for Microsoft 365, Azure, and any SaaS app configured for federated SSO.

Request a Demo Browse Team Training

For IT leaders

Entra ID is the cloud identity center for most Microsoft-aligned enterprises; conditional access and identity protection settings have outsized security impact.

Why IT teams care

Where this shows up at the team level

Conditional access policies are the modern replacement for many legacy network controls.
B2B and B2C scenarios extend identity to partners and customers; missteps create privacy and audit issues.
Hybrid sync from on-prem AD via Entra Connect requires careful change management.

In production

Where teams encounter it

Microsoft 365 and Azure sign-in
SaaS app integrations using SAML or OpenID Connect
Microsoft Entra portal for users, groups, conditional access, and identity protection

How it works

How Microsoft Entra ID actually works

01Each tenant is an isolated directory containing users, groups, and apps.
02Sign-in flows use OpenID Connect / OAuth (modern apps) and SAML (legacy SaaS).
03Conditional access evaluates session signals (location, device posture, risk) to require MFA, block sign-in, or step up authentication.
04Hybrid identity syncs on-prem AD users into the tenant via Entra Connect or cloud sync.

In practice

Common team use cases

Single sign-on for Microsoft 365 and SaaS apps
Conditional access for risky sign-ins and unmanaged devices
Identity governance and access reviews

Build the capability

Each link routes to a hub that goes deeper than this definition.

Related concepts

Close the team gap

Turn this concept into team capability

CBT Nuggets builds expert-led team training that closes the gaps definitions only describe. Talk to sales about a plan that fits your team.

Request a Demo See team pricing