Seminar – Auditing with PowerShell®: Azure Active Directory®

Starts:  May 16, 2024 08:30 (ET)
Ends:  May 17, 2024 16:00 (ET)

As organizations continue to move their data and applications to the cloud, auditors need skills to audit cloud environments. Though environments may be FedRAMP authorized and/or subject to external assessments, organizations will have responsibilities for certain activities, such as account management, privileged access, and some configuration settings. Thus, auditors will need to access cloud data to audit these environments.

Azure Active Directory, now called Microsoft Entra ID, is Microsoft’s cloud service that provides identity and access management services to Microsoft’s cloud environments. Like Active Directory, Azure Active Directory allows organizations to establish user, device, and group accounts. Azure can also sync with an on-premises Active Directory. While Azure Active Directory provides web interfaces, auditors often need information that is not easily or efficiently retrieved from these interfaces.  

PowerShell® provides a better method of obtaining information from Azure Active Directory. As a Microsoft product, PowerShell has a variety of commands for working with Azure Active Directory. These include commands to obtain data users, devices, groups, and administrative roles. Using PowerShell’s scripting capabilities, auditors can develop scripts to efficiently collect data from Azure Active Directory and perform audit tests on this data.

This two-day course will cover the PowerShell commands needed to obtain user, group, device, and administrator role data from Azure Active Directory. The course will also cover basic audit tests that can be performed using PowerShell on Azure Active Directory data. Auditors and security professionals who audit Azure Active Directory will benefit from attending this course.

This course builds on the concepts presented in the Seminar – Introduction to Auditing with PowerShell®.

Registration closes on April 10, 2024 @ 12pm.