SC-5008: Configure and govern entitlement with Microsoft Entra ID

Leaf Learning 365 - All Courses - Microsoft Technical Training Courses - SC-5008: Configure and govern entitlement with Microsoft Entra ID

SC-5008: Configure and govern entitlement with Microsoft Entra ID

Duration: 1 Day

In today's digital landscape, managing access and entitlements is crucial for safeguarding sensitive information and ensuring compliance. This intensive one-day course offers a deep dive into Microsoft Entra Entitlement Management, Access Reviews, Privileged Access, and Monitoring. Participants will learn how to streamline access management with Entitlement Management, conduct thorough Access Reviews to maintain least privilege, manage high-risk Privileged Access, and implement robust Monitoring strategies to detect and respond to security events promptly. By the end of the training, attendees will be equipped with the best practices and actionable insights to enhance their organization's security posture.

Audience Profile

This course is targeted at people who want to implement an end-to-end entitlement management solution based on the principles of Zero Trust.  Students should have experience with Azure and experience in the creation of identities and granting those identities access to resources.

Course Content

Plan and implement entitlement management

When new users or external users join your site, quickly assigning them access to Azure solutions is a must. Explore how to entitle users to access your site and resources.

  • Define access packages
  • Exercise create and manage a resource catalog with Microsoft Entra entitlement management
  • Configure entitlement management
  • Exercise add terms of use acceptance report
  • Exercise manage the lifecycle of external users with Microsoft Entra identity governance
  • Configure and manage connected organizations
  • Review per-user entitlements

Plan, implement, and manage access review

Once identity is deployed, proper governance using access reviews is necessary for a secure solution. Explore how to plan for and implement access reviews.

  • Plan for access reviews
  • Create access reviews for groups and apps
  • Create and configure access reviews programmatically
  • Monitor access review findings
  • Automate access review management tasks
  • Configure recurring access reviews
  • Explore the Access Review Agent in Microsoft Entra

Monitor and maintain Microsoft Entra ID

Audit and diagnostic logs within Microsoft Entra ID provide a rich view into how users are accessing your Azure solution. Learn to monitor, troubleshoot, and analyze sign-in data.

  • Analyze and investigate sign-in logs to troubleshoot access issues
  • Review and monitor Microsoft Entra audit logs
  • Exercise connect data from Microsoft Entra ID to Microsoft Sentinel
  • Export logs to third-party security information and event management system
  • Analyze Microsoft Entra workbooks and reporting
  • Monitor security posture with Identity Secure Score

Plan and implement privileged access

Ensuring that administrative roles are protected and managed to increase your Azure solution security is a must. Explore how to use PIM to protect your data and resources.

  • Define a privileged access strategy for administrative users
  • Configure Privileged Identity Management for Azure resources
  • Exercise configure Privileged Identity Management for Microsoft Entra roles
  • Exercise assign Microsoft Entra roles in Privileged Identity Management
  • Exercise assign Azure resource roles in Privileged Identity Management
  • Plan and configure Privileged Access Groups
  • Analyze Privileged Identity Management audit history and reports
  • Create and manage emergency access accounts

Labs/Hands-On Exercises

This class has hands-on labs provided by Go Deploy.