Exploring the Real Relationship Between Azure AD and Azure Subscriptions

preview_player
Показать описание
In this video I walk through the relationship between Azure AD and Azure subscriptions exploring common concerns, questions and identifying what is real and what we can do.
Рекомендации по теме
Комментарии
Автор

Please don’t stop doing videos. You have no idea how much these help us. Thank you so much.🙏

dudeus
Автор

I really admire love like... your videos the most :) . Your presentation skills and depth of knowldge is unique.

laxminarayanarora
Автор

We underprivileged and don't have good resources generally and cant manage good learning stuff frequently nether can enroll in good courses to learn AZURE, your channel is only HOPE for us.

Long Live you and your channel !

laxminarayanarora
Автор

WoW, this is by far the best explanation on this matter, keep it up 👍

eamonsalimi
Автор

Short but precious video. Thanks again John!

henriquealexandreh
Автор

Another concise and useful video John, thank you very much.

kenrq
Автор

Generic comment to show my appreciation. Keep winning John!

sylviawylie
Автор

The video series is better than Pluralsight content. Thank you John

anandchandrashekhar
Автор

You are awesome man, thanks a lot for clarifying the concepts ! !

pakhong
Автор

Great video. I think the only thing I would have liked to see discussed is when using Management Groups, a Global Administrator in AAD can add themselves to User Access Administrator which then allows them access to the Subscriptions underneath.

elanshudnow
Автор

Nice video, Any resources on how to integrate Azure from different companies during a company acquisition ?

daothman
Автор

Thank you, May I ask you if you can also sometimes share the work experience, in terms to the issues during the migration to the cloud and risks and concerns, and even integration with 3rd party tools, I think it'll be also more informative, real case scenarios :), thank you in advance ! cheers

matrixman
Автор

Hi John, the video is quite interesting but I would prefer more analogies with the Active Directory on premise. Since a lot of admins are moving from the classical AD on prem and supposing they know that system it would be easier to highlight similarities and differences here. As I understand Azure AD it is just a specialized AD for the cloud. Basically the forest root is onmicrosoft.com and each tenant is a subdomain. Relationships between the domains can be umderstood as the old trusted relationships of NT4 domains; they are not trusted until explicid configured to do so, e.g. B2B relations. In this sense I would compare a subscription object like an email account, which can be migrated on premise from one domain to another; you keep the emails but the server location, group memberships, login & password etc. may change. If I'm wrong let me know.

LarsEllerhorst
Автор

Liked and subscribed. Good work there John

Dechkaon
Автор

Like your way of presentation on the topics you deliver. subscribed

vinodhkumar
Автор

Hi John, great video (again) ;).
I would like you to address some time on this topic related to CSP Azure plans and subscriptions, as it is enormous important that the customer understands that the CSP is by default owner of that subscription. You can remove that inherited security principal that resembles a group in the CSP AAD tenant, which for a lot of organization I would definitely advise to look at, or request (at least) the procedures they have in-place to allow their staff to have access to their customer's resources.

ronaldvanackooij
Автор

Great as usual! Where I see this a bit concerning, is let’s say an organisation is using PIM to grant temporary permissions as ‘Owner’ for specific use cases (i.e Locks management), if they become rogue, and move a subscription, the entire RBAC model falls apart including PIM since it’s tied to the home AAD tenant. And even rolling back this action is a nightmare because SPNs, managed identities, users and groups will need to be reassigned 😂

ahmadabdalla
Автор

Great video again John! Any amazing shirt 👕 this time but in any case, the content and the explanation deserves to be shared on LinkedIn. Quick question, as far as I understood, as owner/admin, you are able to create as many AADs as you want, right? Like for example, one for test, one for dev and one for prod correct? Thanks!

Carlesgl
Автор

Hey John, at the 11th minute, what would be then the best practices of Subscription owners. For example we do not want to give this to humans, but automate it. If we automate how to protect it. No worries don't need full A-Z tutorials 😁 🙈 just some pointers 🍺💪🇬🇧

Timmy-Hi
Автор

Thanks John for this wonderful video. Is it possible for you to take a video on Azure AD B2B? I am sure you already did this, but just want to know any additional features in Azure AD B2B and what is the different between this and SPO external sharing, etc.,

Thanks once again.

cnchandroo