Intermediate

Zero Trust: Identity and Access Management

zero · trust · identity · access · management · security · networking · systems · authentication · iam · account · accounts · mfa.

This reference manual covers identity and access management (IAM) as it applies within a Zero Trust architecture: the terminology of identity, authentication, authorization, and accounting (IAAA); the authentication factors that make up multi-factor authentication (MFA); conditional access and least-privilege enforcement mechanisms such as just-in-time (JIT) and just-enough access (JEA); and the full IAM lifecycle from account creation through deprovisioning, including automated lifecycle workflows in the cloud.

This module builds the foundational vocabulary needed to reason about IAM in a Zero Trust context: what an identity actually is, how authentication, authorization, and accounting (IAAA) fit together, and how identity verification has evolved from legacy on-premises directory services to federated and cloud-native identity providers aligned with NIST SP 800-207.

Within identity and access management, identity is formally defined as a set of claims about a subject. A subject is any entity that may need to gain access to a resource — this could be a person/user, a device, an application, or an entire organization.

Sign in to read this course

A free account unlocks all 514 courses. 20 are readable without one.

What's inside

5 sections
  1. 1 Table of Contents
  2. 2 Module 1: Understanding the Concepts of Identity and Access Management in a Zero Trust Architecture
  3. 3 Module 2: Understanding MFA in Zero Trust Environments
  4. 4 Module 3: Understanding IAM Lifecycle Management
  5. 5 Summary

Interested in this course?

Contact us to book it or get a custom training plan for your team.