Azure AD default settings are much more secure than on-premise physical Active Directory network
Azure Active directory Overview¶
- Azure acts as the middle man between your physical Active Directory and your users' sign on.
- This allows for a more secure transaction between domains
- Makes a lot of Active Directory attacks ineffective
Cloud Security overview¶
| [[Windows]] Server AD | Azure AD |
|---|---|
| [[LDAP]] | Rest APIs |
| [[NTLM]] | OAuth/SAML |
| [[Kerberos]] | OpenID |
| OU Tree | Flat Structure |
| Domains and Forests | Tenants |
| Trusts | Guests |