Conditional access Deep Dive
RCCE students will learn conditional access policy design and implementation including risk-based authentication, device compliance requirements, location-based restrictions, and adaptive access controls. RCCE students will learn to create conditional access policies in enterprise identity platforms, enforce MFA based on sign-in risk signals, require device compliance before granting access to sensitive resources, block access from untrusted locations and networks, implement session controls and application restrictions, troubleshoot conditional access policy conflicts, and monitor conditional access logs for policy bypass attempts and unauthorized access patterns. This deep-dive course provides comprehensive technical coverage that goes beyond surface-level understanding. At an expert level, RCCE students will learn to master the nuances, edge cases, and advanced configurations that separate competent practitioners from true experts. Students will engage with complex real-world scenarios and gain the depth of knowledge required to troubleshoot difficult situations, mentor junior team members, and make architectural decisions with confidence.
- Security Engineers building defensive controls
- Security Analysts and Blue Team members
- Systems Administrators with security responsibilities
- GRC and Risk Professionals supporting controls
- Professionals implementing Conditional access Deep Dive
- Execute hands-on tasks for conditional access deep dive
- Explain Course Overview fundamentals
- Execute hands-on tasks for what you will master — covering Conditional access policy, Prerequisites.
- Execute hands-on tasks for course outcomes — covering enterprise CA policies.
- Execute hands-on tasks for mentor teams on ca strategy — covering Domain: Identity & Access Management Duration: 7 hours Pre-req: IAM Fundamentals.
- Execute hands-on tasks for what is conditional access?
- Execute hands-on tasks for user, device, location, risk
- Execute hands-on tasks for grant, session, app controls
- Explain Zero Trust Foundation for Conditional Access fundamentals
- Apply zero-trust principles to privilege decisions and elevation, including Verify explicitly with every request, and Policy engine at authentication boundary.
- Execute hands-on tasks for signal categories in conditional access
| Module 01 | Conditional Access Deep Dive |
| Module 02 | Course Overview |
| Module 03 | What You Will Master |
| Module 04 | Course Outcomes |
| Module 05 | Mentor teams on CA strategy |
| Module 06 | What Is Conditional Access? |
| Module 07 | User, Device, Location, Risk |
| Module 08 | Grant, Session, App Controls |
| Module 09 | Zero Trust Foundation for Conditional Access |
| Module 10 | Zero Trust Principles |
| Module 11 | CA as Zero Trust Enforcer |
| Module 12 | Signal Categories in Conditional Access |
| Module 13 | User Identity |
| Module 14 | Device State |
All hands-on labs run on Rocheston Rose X OS. Students practice conditional access deep dive by implementing the controls discussed in class, with a focus on real-world deployment, monitoring, and validation.
- Lab 1: Execute hands-on tasks for conditional access deep dive
- Lab 2: Explain Course Overview fundamentals
- Lab 3: Execute hands-on tasks for what you will master
- Lab 4: Execute hands-on tasks for course outcomes
- Lab 5: Execute hands-on tasks for mentor teams on ca strategy
Upon successful completion of this course, students will receive an official RCCE Course Completion Certificate for Conditional access Deep Dive, verifiable through the Rocheston certification portal.
- Full access to all course materials and slide decks
- Hands-on lab access on Rocheston Rose X OS environment
- Access to Rocheston CyberNotes
- Access to Rocheston Zelfire — EDR/XDR SIEM platform
- Access to Rocheston Raven — online cyber range exercise platform
- Access to Rocheston Vulnerability Vines AI