For identity governance there are three main areas that you want to focus on and each one of these areas plays a critical role in securing access and managing risk.
The first thing we have is conditional access. You’ll want to understand how to configure policies that enforce multifactor authentication, block access from specific geographic regions, and allow access only for managed devices or approved clients.
These are examples of things that you’ll definitely want to know. Keep in mind that these controls help you ensure that only trusted users and devices can access these resources.
Next take a closer look at identity protection. Keep in mind that this is where risk based policies come in to play. Know how to set thresholds like requiring actions when a user’s risk level is high or when a sign in risk is medium or above. And understand those various levels.
Design for identity protection
Also be familiar with how to investigate and respond to these risks using the Azure portal. Now this is going to be one of those key things to identity threats and risks within your organization.
**MISSING**
And finally study how to design an effective access review plan. You’ll need to identity which resources should be reviewed, determine what automatic actions should be taken for users who no longer need access, and choose the right reviewers whether it’s the resource owner or someone else.
These are three areas, conditional access, identity protection, and access reviews, which can work together to secure your environment. And understanding how to configure these and apply these is going to be essential for passing your exam.