CompTIA Security+ (SY0-601) Cert Prep: 4 Identity and Access Management Design and Implementation

Discover how to create and implement a robust identity and access management system as you prepare to tackle version SY0-601 of the CompTIA Security+ exam.

Introduction

• Identity and access management
• What you need to know
• Study resources

1. Identification

• Identification, authentication, authorization, and accounting
• Usernames and access cards
• Biometrics

2. Authentication

• Authentication factors
• Multifactor authentication
• Something you have
• Password authentication protocols
• Single sign-on and federation
• RADIUS and TACACS
• Kerberos and LDAP
• SAML
• OAuth and OpenID Connect
• Certificate-based authentication

3. Authorization

• Understanding authorization
• Mandatory access controls
• Discretionary access controls
• Access control lists
• Advanced authorization concepts
• Database access control

4. Account Management

• Understanding account and privilege management
• Account types
• Account policies
• Password policy
• Managing roles
• Account monitoring
• Privileged access management
• Provisioning and deprovisioning

Conclusion

• Continuing your studies