Azure AD access reviews

Azure Active Directory (Azure AD) access reviews enable organizations to efficiently manage group memberships, access to enterprise applications, and privileged role assignments.

What can you do with access reviews?

  • You can recertify guest user access by using access reviews of their access to applications and memberships of groups. Reviewers can use the insights that are provided to efficiently decide whether guests should have continued access.

  • You can recertify employee access to applications and group memberships with access reviews.

  • You can collect access review controls into programs that are relevant for your organization to track reviews for compliance or risk-sensitive applications.

  • You can recertify the role assignment of administrative users who are assigned to Azure AD roles such as Global Administrator, or Azure subscription roles. This capability is included in Azure AD Privileged Identity Management.

Next steps