Planning and implementing Identity Governance
Identity Governance can be thought of as a method that’s used to manage the identity, access, and privileged access life cycles of an organization. In the context of Azure AD, Identity Governance can include managing access to teams, groups, applications, and roles.
Note
Identity Governance features in Azure AD require Azure AD Premium P2, either as a standalone service or included in a bundled SKU such as Enterprise Mobility and Security E5.
Before we explore how to configure the features of Identity Governance, let’s review some of its terminology and components:
- Access reviews: An access review is a process that is used to validate an entity’s compliance or access to resources – whether it’s a group, team, application, or other resource.
- Entitlements: Entitlements represent resources or roles that an entity (such as a user or guest) can access. Common entitlements include membership...
