Home » Microsoft » 70-533 v.2 » Which tool should you use?
You are the Azure administrator for your company. The company has developed a mobile application used to support sales people in the field.
The application uses Azure Active Directory (Azure AD) accounts for authentication. The application sends and receives HTTP requests on publicly accessible endpoints.
You need to provide the ability to authenticate the application using Azure.
Which tool should you use?
A. OAuth 2.0 authorization code grant
B. Azure AD Connect
C. Azure Portal
D. Azure AD Graph API
Correct Answer: A
Explanation/Reference:
Explanation:
Azure Active Directory (Azure AD) uses OAuth 2.0 to enable you to authorize access to web applications and web APIs in your Azure AD tenant.
Note: The authorization code grant type is used to obtain both access tokens and refresh tokens and is optimized for confidential clients. Since this is a redirection-based flow, the client must be capable of interacting with the resource owner’s user-agent (typically a web browser) and capable of receiving incoming requests (via redirection) from the authorization server.
References:
https://docs.microsoft.com/en-us/azure/active-directory/develop/active-directory-protocols-oauth-code
https://tools.ietf.org/html/rfc6749#section-4.1