Auditing: Logs activities for detection, compliance, and debugging.
o Types: Sign-in, Audit, Provisioning, Activity logs.
o Tools: Azure Monitor , Microsoft Sentinel , Log Analytics.
Governance: Continuous oversight to keep identity secure and updated.
o Ensures alignment with HR, privilege reviews, and password/MFA
enforcement.
Identity Lifecycle Management: Automates Join-Move-Leave processes.
Zero Trust Monitoring:
o Verify explicitly.
o Use least privilege.
o Assume breach.
o Tools: Azure Monitor, App Insights, Service Health, Resource Health, Azure
Policy.
Key Takeaways from Module 1
Identity is the foundation of Zero Trust and the control plane for all access.
Microsoft Entra ecosystem (ID, DS, B2B, B2C, PIM, Graph) supports hybrid identity
at scale.
Authentication + Authorization + Auditing + Administration = complete identity
lifecycle.
Automation and governance prevent the “Juan problem” — orphaned, risky
accounts.
Consistent monitoring, policy enforcement, and least-privilege design keep your
organization secure and compliant.