AD FS Capabilities and Support
Question
You have an Azures Stack Hub Integrated System.
You decide to use Active Directory Federation Services (AD FS) as the identity provider.
Choose the capabilities or support that are supported by AD FS.
(Select Four Options)
Answers
Explanations
Click on the arrows to vote for the correct answer
A. B. C. D. E. F.Correct Answers: B, D, E and F
Which Identity provider (Azure AD or AD FS)you do choose can limit various options and capabilities.
The main difference lies in supporting multi-tenancy and creating service principals via the Azure portal.
Azure AD supports both multi-tenancy and creating service principals via Azure portal while AD FS supports none.
Option A is incorrect.
AD FS does not support multi-tenancy.
Option B is correct.
AD FS provides support for tools like Azure CLI, PowerShell, and Visual Studio.
Option C is incorrect.
In an Azure Stack Hub environment with AD FS as an identity provider, you can't create service principals via the Azure Portal.
Option D is correct.
AD FS supports creating service principals using certificates.
Option E is correct.
AD FS supports creating service principals using secrets (keys).
Option F is correct.AD FS offers items in the Marketplace but it demands using offline Marketplace Syndication tool.
To know more about the capabilities and limitations of Identity Providers, please visit the below-given link:
Active Directory Federation Services (AD FS) is a service provided by Microsoft that enables users to authenticate against different applications using a single set of credentials. When it comes to Azure Stack Hub Integrated System, AD FS can be used as an identity provider, which means it can be used to authenticate users to access Azure Stack Hub resources.
Let's take a look at the options provided in the question and whether they are supported by AD FS:
A. It supports multi-tenancy: AD FS can be used to support multi-tenancy scenarios. This means that AD FS can be used to authenticate users from different tenants in Azure Stack Hub.
B. It supports tools like Azure CLI, PowerShell, and Visual Studio: AD FS doesn't directly support tools like Azure CLI, PowerShell, and Visual Studio. However, once a user is authenticated using AD FS, they can use these tools to access Azure Stack Hub resources.
C. It supports creating service principals via the Azure portal: Creating service principals via the Azure portal is not supported by AD FS. This is a feature of Azure Active Directory (Azure AD).
D. It supports creating service principals using certificates: AD FS doesn't directly support creating service principals using certificates. However, once a user is authenticated using AD FS, they can use certificates to access Azure Stack Hub resources.
E. It supports creating service principals using secrets (keys): AD FS doesn't directly support creating service principals using secrets (keys). However, once a user is authenticated using AD FS, they can use secrets (keys) to access Azure Stack Hub resources.
F. It offers items in the Marketplace: AD FS doesn't offer items in the Marketplace. This is a feature of Azure Stack Hub.
In summary, AD FS can be used as an identity provider in Azure Stack Hub Integrated System and can support multi-tenancy scenarios. It doesn't directly support creating service principals or offer items in the Marketplace, but once a user is authenticated using AD FS, they can use tools like Azure CLI, PowerShell, and Visual Studio, as well as certificates and secrets (keys) to access Azure Stack Hub resources.
