Overview
In this project, I implemented a cloud-based Identity and Access Management (IAM) environment using Microsoft Entra ID (Azure Active Directory).
The objective was to simulate a real-world enterprise scenario focused on secure identity management, access control, and authentication monitoring.
Environment
- Platform: Microsoft Entra ID (Azure Active Directory)
- Cloud-based identity system
- No on-premises infrastructure required
Identity Architecture
The environment was structured using enterprise security principles:
- Separation of administrative and standard accounts
- Group-based access control (RBAC)
- Multi-Factor Authentication (MFA)
- Logging and auditing for monitoring
Implementation Details
User Provisioning
- Created multiple users:
- Administrative account (Gabrielly Admin)
- Standard user account (User One)
- Applied the Principle of Least Privilege by separating administrative and regular accounts
Group-Based Access Control
- Created a Security Group: IT-Team
- Assigned users to simulate centralized access management
Multi-Factor Authentication (MFA)
- Enabled MFA for user accounts
- Strengthened identity security with layered authentication
Monitoring (Sign-in Logs)
- Analyzed login activity using Sign-in Logs
- Verified authentication events and successful access
Auditing (Audit Logs)
- Tracked identity-related changes:
- User creation
- MFA activation
- Group updates
Security Concepts Applied
- Identity and Access Management (IAM)
- Role-Based Access Control (RBAC)
- Least Privilege Principle
- Multi-Factor Authentication (MFA)
- Security Monitoring and Auditing
Outcome
This project demonstrates hands-on experience with cloud identity management and security practices.
It highlights how organizations manage users, control access, enforce authentication, and monitor activity in modern cloud environments.