Introduction
As your organization grows, managing who has access to what becomes increasingly difficult. Employees change roles, guests accumulate permissions they no longer need, and privileged assignments persist long after a project ends. Without a systematic process for reviewing and recertifying access, your environment accumulates risk—and audit findings quickly follow.
Microsoft Entra access reviews give you a structured way to manage user access drift. They let you schedule periodic reviews of group memberships, application assignments, and privileged role assignments, then automate the outcome—removing access that reviewers deny—without manual follow-up.
In this module, you plan for and implement access reviews in Microsoft Entra ID Governance. You learn why access reviews matter to your organization's security posture. You learn to create and configure them for different resource types, and how to monitor and automate their outcomes. You also explore the Access Review Agent, which uses AI to guide reviewers through the process directly in Microsoft Teams.
Learning objectives
By the end of this module, you are able to:
- Plan for access reviews.
- Create access reviews for groups and apps.
- Monitor access review findings.
- Create and manage access review programs.
- Automate access review management tasks.
- Configure recurring access reviews.
- Describe the Access Review Agent and how it helps reviewers complete access reviews.
Prerequisites
- Knowledge of Microsoft Entra user creation and access management
Note
Some features of access reviews require a Microsoft Entra ID Governance or Microsoft Entra Suite subscription. Some capabilities work with a Microsoft Entra ID P2 subscription. Confirm your licensing before deployment.