Manages the lifecycle of identities — creation to deletion.
Example: “Juan” leaves company → account not removed → attacker gains entry.
Common admin tasks: provisioning, synchronization, password and group
management, entitlement management, and change control.
Automation via PowerShell , Azure CLI , and Microsoft Graph API .