Back to Domains
🔑Domain 5

Identity and Access Management (IAM)

13%Exam Weight
6Subdomains
5.1

Control physical and logical access to assets

Key Concepts

InformationSystemsDevicesFacilitiesApplicationsServices
5.2

Design identification and authentication strategy

Key Concepts

GroupsRolesAAAMFAPasswordlessSession managementIdentity proofingFIMCredential managementSSOJust-In-Time
5.3

Federated identity with a third-party service

Key Concepts

On-premiseCloudHybrid
5.4

Implement and manage authorization mechanisms

Key Concepts

RBACRule basedMACDACABACRisk basedPolicy enforcement
5.5

Manage the identity and access provisioning lifecycle

Key Concepts

Account access reviewProvisioningDeprovisioningRole definitionPrivilege escalationService accounts
5.6

Implement authentication systems

Key Concepts

Authentication systems
Previous DomainAll DomainsNext Domain