SC-5008: Configure and govern entitlement with Microsoft Entra ID

The SC-5008: Configure and manage entitlement with Microsoft Entra ID course covers the planning, implementation, and management of entitlements, access reviews, and privileged access within Microsoft Entra Identity Governance. Participants will gain hands-on experience with managing external users, configuring access reviews, and monitoring Entra logs with Log Analytics and Microsoft Sentinel. This course equips learners with the skills to efficiently manage Microsoft Entra roles and permissions. Ideal for those seeking SC-5008 training, it prepares professionals for advanced identity management tasks.

Course Objectives

  • Plan and implement entitlement management strategies
  • Define and manage catalogs and access packages
  • Conduct and monitor access reviews for groups and applications
  • Integrate and analyze Microsoft Entra diagnostic logs with Log Analytics
  • Configure Privileged Identity Management (PIM) for roles and resources
  • Utilize Microsoft Entra Permissions Management for identity and resource monitoring

Prerequisites

Recommended

  • Basic Azure administration knowledge
  • Ability to create users and groups using Microsoft Entra

Who should attend

  • Security Administrator
  • Security Analyst

Course Outline

Module 1:
Plan and implement entitlement management

  • Define catalogs
  • Define access packages
  • Plan, implement and manage entitlements
  • Implement and manage terms of use
  • Manage the lifecycle of external users in Microsoft Entra Identity Governance settings
  • Lab: Create and manage a resource catalog with Microsoft Entra entitlement management
  • Lab: Add terms of use acceptance report
  • Lab: Manage the lifecycle of external users with Microsoft Entra identity governance


Module 2:
Plan, implement, and manage access review

  • Plan for access reviews
  • Create access reviews for groups and apps
  • Monitor the access review findings
  • Manage licenses for access reviews
  • Automate management tasks for access review
  • Configure recurring access reviews


Module 3:
Monitor and maintain Microsoft Entra ID

  • Analyze and investigate sign in logs to troubleshoot access issues
  • Review and monitor Microsoft Entra audit logs
  • Enable and integrate Microsoft Entra diagnostic logs with Log Analytics / Azure Sentinel
  • Export sign in and audit logs to a third-party SIEM (security information and event management)
  • Review Microsoft Entra activity by using Log Analytics / Azure Sentinel, excluding KQL (Kusto Query Language) use
  • Analyze Microsoft Entra workbooks / reporting
  • Configure notifications
  • Lab: Connect data from Microsoft Entra ID to Microsoft Sentinel


Module 4:
Plan and implement privileged access

  • Define a privileged access strategy for administrative users (resources, roles, approvals, and thresholds)
  • Configure Privileged Identity Management for Microsoft Entra roles
  • Configure Privileged Identity Management for Azure resources
  • Assign roles
  • Manage PIM requests
  • Analyze PIM audit history and reports
  • Create and manage emergency access accounts
  • Lab: Configure Privileged Identity Management for Microsoft Entra roles
  • Lab: Assign Microsoft Entra roles in Privileged Identity Management
  • Lab: Assign Azure resource roles in Privileged Identity Management


Module 5:
Explore the many features of Microsoft Entra Permissions Management

  • Understand the features of Microsoft Entra Permissions Management
  • Learn more specifics about how Permissions Management allows you to discover, remediate, and monitor identities, permissions, and resources
  • Get real-world views of the data and analytics Permissions Management provides