Use this course to help you prepare for the Identify & Access Management domain of the 2021 CISSP exam.
Overview
Syllabus
Introduction
- Identity and access management
- What you need to know
- Study resources
- Identification, authentication, and authorization
- Usernames and access cards
- Biometrics
- Registration and identity proofing
- Authentication factors
- Multifactor authentication
- Something you have
- Password authentication protocols
- Single sign-on and federation
- RADIUS and TACACS
- Kerberos and LDAP
- SAML
- Identity as a service (IDaaS)
- OAuth and OpenID Connect
- Certificate-based authentication
- Accountability
- Session management
- Understand account and privilege management
- Account types
- Account policies
- Password policies
- Manage roles
- Account monitoring
- Privileged access management
- Provisioning and deprovisioning
- Understand authorization
- Mandatory access controls
- Discretionary access controls
- Access control lists
- Database access control
- Advanced authorization concepts
- Social engineering
- Impersonation attacks
- Identity fraud and pretexting
- Watering hole attacks
- Physical social engineering
- Continuing your preparation
Taught by
Mike Chapple