Azure AD default settings are much more secure than on-premise physical Active Directory network
Azure Active directory Overview¶
- Azure acts as the middle man between your physical Active Directory and your users' sign on.
- This allows for a more secure transaction between domains
- Makes a lot of Active Directory attacks ineffective
Cloud Security overview¶
| Windows Server AD | Azure AD |
|---|---|
| LDAP | Rest APIs |
| NTLM | OAuth/SAML |
| Kerberos | OpenID |
| OU Tree | Flat Structure |
| Domains and Forests | Tenants |
| Trusts | Guests |