Microsoft 365 Identity and Access Management

Master Microsoft 365 Identity and Access Management

Design, secure, and defend modern identity systems that stop breaches at the front door. Build Zero Trust identity architectures, enforce least-privilege access, and operationalise enterprise-grade IAM programs across Microsoft 365, Entra ID, and hybrid environments; so you can eliminate identity-based attacks before they happen.

View Pricing Take End of Course Exam → 40 CPE Credits

What you'll be able to do

Design and implement enterprise-grade identity architectures using Microsoft Entra ID, Conditional Access, and Privileged Identity Management (PIM)
Enforce Zero Trust access policies that eliminate standing privileges and block modern identity attacks at the source
Protect against password spray, MFA fatigue, token theft, and account takeover across Microsoft 365 and hybrid environments
Operationalise Identity Governance, lifecycle workflows, and automated access reviews at scale
Rapidly investigate and respond to identity-based threats using Entra ID and Defender for Identity insights
Build and defend a least-privilege identity program that measurably reduces risk for your entire organisation
What students say about this course

“I really liked how the Identity and Access Management course addressed the realities of hybrid environments rather than just the basic textbook scenario. The sections that focused on breaking down how legacy protocols are abused and actually locking them down without breaking production apps were really helpful.”

Ajay
ARC502 | Specialist tier | 17 modules across 6 phases | 36–40 hours at your own pace | 40 CPE credits | 5 free preview lessons - no account needed | 20+ ADRs | Updated June 2026
Course Agenda View all 15 modules

Phase 5 — Privileged Access & Delegation

IAM9
Privileged Access and Delegation Architecture

Course overview

The Microsoft 365 Identity and Access Management course is built specifically for Security Engineers, Microsoft 365 Administrators, Identity Engineers, and IT Leaders responsible for designing, operating, and defending identity programs. You'll gain hands-on expertise to:

Architect and implement secure authentication, authorisation, and access control at scale
Deploy Conditional Access, Privileged Identity Management (PIM), Identity Governance, and lifecycle workflows in Microsoft Entra ID
Protect against modern identity threats including password spray, MFA fatigue, token theft, and account takeover
Build Zero Trust identity strategies that work seamlessly across cloud, hybrid, and on-prem environments

By the end, you'll have the practical skills and strategic mindset to become the go-to identity defender who dramatically reduces risk, simplifies operations, and strengthens your entire organisation's security posture.

Who this course is for

You're a Security Engineer, Microsoft 365 Administrator, Identity Engineer, or IT Leader who designs, operates, and defends identity programs. This course is built for you if you want to:

Move beyond basic user management to architecting secure, Zero Trust identity systems at enterprise scale
Master Microsoft Entra ID, Conditional Access, PIM, and Identity Governance to stop identity-based attacks before they start
Gain the practical and strategic skills needed to reduce identity risk and simplify operations across cloud, hybrid, and on-prem environments
Become the go-to expert who organisations rely on to protect their most critical asset, identity

In short: if you're ready to own the identity layer and dramatically strengthen your organisation's security posture, this course is for you.

What you'll learn

By the end of this Microsoft 365 Identity and Access Management course you will be able to:

Architect secure authentication, authorisation, and access control using Microsoft Entra ID and Microsoft 365
Deploy and optimise Conditional Access policies, Privileged Identity Management (PIM), and Identity Governance workflows
Implement Zero Trust identity strategies that work seamlessly across hybrid and cloud environments
Detect, investigate, and respond to modern identity threats including MFA fatigue, token theft, and account takeover
Automate identity lifecycle processes and enforce least-privilege access at scale
Measure, monitor, and continuously improve your organisation's identity security posture

Key course takeaways

Build and defend a production-grade Zero Trust identity program that organisations can actually rely on
Master Microsoft Entra ID, Conditional Access, PIM, and Identity Governance to eliminate common identity attack paths
Operationalise automated access reviews, lifecycle workflows, and least-privilege controls across Microsoft 365 and hybrid environments
Rapidly investigate and neutralise identity-based threats using Defender for Identity and advanced Entra ID capabilities
Reduce identity risk dramatically while simplifying operations for security and IT teams
Become the identity expert who transforms how your organisation designs, operates, and defends its most critical security layer

Things you need to know

What are the prerequisites for this course?

There are no prerequisites. The course teaches identity and access management from first principles. Familiarity with Entra ID and the Microsoft 365 admin center will help you move faster through the early modules, but neither is required. Every concept is explained at first use.

What are the device requirements?

A device with a modern browser. Access to a Microsoft 365 E5 developer tenant (free from Microsoft) with an Entra ID Governance trial licence for hands-on governance configuration. The course walks you through tenant setup in Module 0.

How will the course benefit your career?

Identity is the primary attack surface in modern environments. Organisations need people who can design and operate identity programs, not just manage user accounts. This course gives you the skills to architect Zero Trust identity infrastructure, govern non-human identities, automate lifecycle operations, and produce compliance evidence on demand.

The demand for identity engineers and architects continues to grow as organisations move from basic Entra ID administration to full identity governance programs that cover users, applications, workload identities, and AI agents.

Usage rights and disclaimer

Course materials: Licensed for individual professional development. You may deploy configurations, governance frameworks, scripts, and policies in your production environment. You may not redistribute course content or share account credentials.

Governance configurations: Test every configuration in a non-production tenant before production. Ridgeline Cyber Defence is not responsible for operational impact from deployed configurations.

Fictional environment: All scenarios use Northgate Engineering. Any resemblance to real organizations is coincidental.

Version and changelog

Current version: 1.1  |  Last updated: June 2026

June 2026, v1.1: Course renamed to Microsoft 365 Identity and Access Management.

2026, v1.0: Course launch. 17 modules across 6 phases. Complete IAM program from identity fundamentals through non-human identity governance, lifecycle automation, entitlement management, access reviews, and compliance evidence.

This course is actively maintained. Governance features updated as Entra ID capabilities evolve.

COURSE ASSESSMENT

End of Course Exam

Complete the course, then prove your skills under time pressure. Pass mark: 70. Earn your certificate with CPE credits.

40minutes
3phases
100points
1scenario
Take End of Course Exam

Requires 80% course completion. One random scenario per attempt. Certificate issued on pass.