You are the Azure administrator for your company. The company has developed a mobile application used to
support sales people in the field.
The application uses Azure Active Directory (Azure AD) accounts for authentication. The application sends and
receives HTTP requests on publicly accessible endpoints.
You need to provide the ability to authenticate the application using Azure.
Which tool should you use?
A.
OAuth 2.0 authorization code grant
B.
Azure AD Connect
C.
Azure Portal
D.
Azure AD Graph API
Explanation:
Azure Active Directory (Azure AD) uses OAuth 2.0 to enable you to authorize access to web applications and
web APIs in your Azure AD tenant.
Note: The authorization code grant type is used to obtain both access tokens and refresh tokens and is
optimized for confidential clients. Since this is a redirection-based flow, the client must be capable of interacting
with the resource owner’s user-agent (typically a web browser) and capable of receiving incoming requests (via
redirection) from the authorization server.https://docs.microsoft.com/en-us/azure/active-directory/develop/active-directory-protocols-oauth-code
https://tools.ietf.org/html/rfc6749#section-4.1
Azure AD Graph API
1
1
oops its OAuth 2.0 authorization code grant
😉
2
1
Hi Friends,
Today I cleared my 70-533 exam with 880 Points. This credit goes to Panic who has helped me with correct question and answers. Those who want help can contact Panic.
with Regards
0
1
Do you pass the exam with this website?
0
0
Who the f*** is Panic?
5
2
Question is: Which tool should you use. I think OAuth 2.0 authorization code grant isn’t tool. For me correct answer is C
0
0
Indeed OAuth is not a tool, Potentially D, although it has been replaced with ‘Microsoft Graph’
https://docs.microsoft.com/en-us/azure/active-directory/develop/active-directory-graph-api
The Azure Active Directory Graph API provides programmatic access to Azure AD through REST API endpoints. Applications can use Azure AD Graph API to perform create, read, update, and delete (CRUD) operations on directory data and objects. For example, Azure AD Graph API supports the following common operations for a user object:
Create a new user in a directory
Get a user’s detailed properties, such as their groups
Update a user’s properties, such as their location and phone number, or change their password
Check a user’s group membership for role-based access
Disable a user’s account or delete it entirely
0
0
The answer is A.
Azure Active Directory (Azure AD) uses OAuth 2.0 to enable you to authorize access to web applications and web APIs in your Azure AD tenant – to send and receive HTTP messages.
https://docs.microsoft.com/en-us/azure/active-directory/develop/active-directory-protocols-oauth-code
0
0