Chapter 4: Role Assignment and Privileged Identities in Microsoft 365

In this chapter, we will be looking at role-based access control (RBAC), which is a system that authorizes specific access management capabilities to Azure resources by creating role assignments. You will learn how to plan and configure RBAC, as well as how to view activity logs to monitor RBAC changes.

We will also be looking at Azure AD Privileged Identity Management (PIM) and how it enables you to manage, control, and monitor access to resources within Azure AD. PIM can help you identify and minimize the number of people who have access to sensitive or secure information and resources within your organization.

We will cover the following topics:

• Planning, configuring, and monitoring RBAC
• Planning, configuring, and monitoring PIM