ISC2 CISSP Identity and Access Management Guide

Study ISC2 CISSP Identity and Access Management: key concepts, common traps, and exam decision cues.

This domain asks whether you can separate identity proofing, authentication, authorization, and accountability cleanly. CISSP usually rewards the access model that scales, limits standing privilege, and preserves traceability.

Work this chapter in order

Lesson	Focus
5.1 Authentication & MFA	Learn how the exam classifies who someone is and how they prove it.
5.2 Authorization & PAM	Learn how CISSP tests access assignment, privilege control, and lifecycle discipline.

Fast routing inside this chapter

If the question is really about…	Go first to…
MFA, federation, SSO, identity proofing, or authentication strength	5.1 Authentication & MFA
role assignment, joiner-mover-leaver flow, privileged access, or accountability	5.2 Authorization & PAM

What strong answers usually do

keep identity proofing separate from day-to-day login mechanics
reduce standing privilege through role design and controlled elevation
preserve accountability with unique identities and disciplined lifecycle actions

In this section

ISC2 CISSP Authentication and MFA Guide
Study ISC2 CISSP Authentication and MFA: key concepts, common traps, and exam decision cues.
ISC2 CISSP Authorization and PAM Guide
Study ISC2 CISSP Authorization and PAM: key concepts, common traps, and exam decision cues.

Revised on Sunday, May 10, 2026

4. Network

6. Testing