Skip to content
Microsoft Entra ID
Intermediate

Master Microsoft Entra ID for Enterprise Identity

Identity and access management with Microsoft Entra ID — conditional access, PIM, and governance.

Start Learning Hands-on labs and real-world scenarios
About

About This Course

Microsoft Entra ID is the identity platform that controls access to everything in the Microsoft ecosystem — and increasingly to third-party applications too. This 9-hour course goes deep on the features that matter most in production: Conditional Access, Privileged Identity Management, identity governance, and authentication configuration.

You will build Conditional Access policies from scratch — starting with basic MFA requirements and progressing to complex policies that evaluate device compliance, sign-in risk, application sensitivity, and user location. The PIM section covers just-in-time role activation, approval workflows, time-bound assignments, and access reviews that keep privileged access under control. Identity governance covers the full lifecycle: entitlement management for access packages, lifecycle workflows for joiner/mover/leaver scenarios, and access reviews that catch stale permissions.

This is not a cert prep course — it is a deep dive into the service. If you manage Entra ID in your organization and want to go beyond basic user and group management, this course teaches you the advanced features that separate a well-managed identity platform from one that is just running.

Outcomes

What You'll Learn

01

Configure Conditional Access policies for device compliance, location, and risk-based access

02

Deploy Privileged Identity Management with just-in-time activation and approval workflows

03

Implement identity governance with access reviews, entitlement management, and lifecycle workflows

04

Manage authentication methods including passwordless, MFA, and certificate-based authentication

Before You Start

Prerequisites

  • Some experience with Microsoft Entra ID or Azure AD is expected
  • A Microsoft Entra ID tenant for hands-on labs — a free tenant works
Audience

Who Is This Course For

This course is for identity administrators, security engineers, and IT professionals who manage Microsoft Entra ID in production environments. Whether you are configuring Conditional Access for the first time or optimizing PIM for a large enterprise, this course provides the depth you need. Some experience with Entra ID or Azure AD is expected.

Curriculum

What's Inside

01

Conditional Access

  • Policy components: users, cloud apps, conditions, and controls
  • Device compliance and trusted location policies
  • Risk-based Conditional Access with Identity Protection
  • Authentication strength and step-up authentication
02

Privileged Identity Management

  • Eligible vs. active role assignments
  • Activation workflows and approval requirements
  • Time-bound access and access reviews
  • PIM for Azure resources and groups
03

Identity Governance

  • Entitlement management and access packages
  • Lifecycle workflows for automated provisioning
  • Access reviews for groups and applications
  • Terms of use and identity verification
04

Authentication and Security

  • MFA methods and authentication policies
  • Passwordless with FIDO2, Windows Hello, and Authenticator
  • Certificate-based authentication
  • Identity Protection risk policies and remediation