sameer fakhoury
  • Home
  • CTF Writeups
  • Course Summaries
  • Cyber Reports
  • Articles
  • Event Notes
  • About Me
5.4 Monitor and maintain Microsoft Entra ID

5.4 Monitor and maintain Microsoft Entra ID

  • wwlpublish Monitor and maintain Microsoft Entra ID - Trainingwwlpublish Monitor and maintain Microsoft Entra ID - Training
  • Microsoft Entra ID's audit and diagnostic logs offer insights into Azure solution access. This module covers monitoring, troubleshooting, and analyzing sign-in data.
  • It also includes configuring notifications, integrating logs with third-party SIEMs, and using Log Analytics / Azure Sentinel for activity reviews without KQL.
  • By the end, you'll be able to review audit logs and analyze Microsoft Entra workbooks.
‣

Introduction

‣

Analyze and investigate sign-in logs to troubleshoot access issues

‣

Review and monitor Microsoft Entra audit logs

‣

Exercise: connect data from Microsoft Entra ID to Microsoft Sentinel

‣

Export logs to third-party security information and event management system

‣

Analyze Microsoft Entra workbooks and reporting

‣

Monitor security posture with Identity Secure Score

‣

Knowledge check

‣

Summary and resources

©sameer fakhoury

GitHubLinkedIn