From the course: Microsoft Security Essentials: Concepts, Solutions, and AI-Powered Protection

Microsoft Entra access reviews - Microsoft Security Copilot Tutorial

From the course: Microsoft Security Essentials: Concepts, Solutions, and AI-Powered Protection

Microsoft Entra access reviews

- [Instructor] Microsoft Entra access reviews help organizations ensure that only the right people maintain access to important resources, reducing security risks by regularly checking permissions as users change roles or responsibilities. We can use access reviews in many use cases. For example, checking if too many people hold privileged roles, protecting critical assets like applications and data by validating access needs, reviewing policy exceptions to meet auditing requirements, confirming guest access to business content, and setting up recurring access reviews at specified frequencies, such as monthly, quarterly, or yearly. Here's a general workflow for Microsoft Entra access reviews. First, admins create a program. Within a program, they create one or more access reviews for teams, groups, or applications. Next, reviewers need to perform access reviews within the review period. Finally, based on the review settings and the results, access will be kept or removed. We can also create multi-stage access reviews to meet more complex business and compliance requirements. It enables variance types of reviewers to participate in the workflow at different stages. Now let's look at access reviews in the Microsoft Entra Admin Center. Access reviews are part of the identity governance functions. On the Overview page, you can see a dashboard showing the overall access review status. Click Access Reviews, then click New Access Review. We can select what to review. For example, select an application, for example, Slack. Then select the scope as all users. We can choose if it's a multi-stage review. Select Reviewers. For example, users review their own access. Specify recurrence of review. For example, duration is three days. Review recurrence is quarterly. Select Start Date, and when the review will end. We can set up the actions upon review completion. For example, what will happen if reviewers don't respond? Finally, we can give a review name and create it. After the access review is active, the reviewers will receive an email notification asking them to complete it within the review period. Admins can select an access review to view details and check its current status.

Contents