Start with Identity
Subscribe
A learning path for identity

Start here

A guided, vendor-neutral path through identity and access management, from first concepts to building real logins and going deep on governance and security. Work top to bottom, or jump to the stage that fits you. Every step links to a focused explainer, standard, recipe, or a verified external resource.

  1. 1

    Understand the concepts

    Beginner

    Get the vocabulary and the mental model before any code.

  2. 2

    Learn the core protocols

    Intermediate

    OAuth, OIDC, SAML, and SCIM are the backbone of modern identity.

  3. 3

    Build something

    Intermediate

    Nothing sticks until you implement it. Ship a working login.

  4. 4

    Go deeper: governance, privilege, and threats

    Advanced

    Move from authentication to the full identity lifecycle and its risks.

  5. 5

    Stay current and grow

    All levels

    Identity moves fast. Keep learning and build a career.

Learning IAM: frequently asked questions

How do I start learning identity and access management?
Start with the core concepts (what IAM is, authentication vs authorization), then learn the protocols (OAuth, OIDC, SAML, SCIM), then build a working login and JWT validation. After that, go deeper into governance, privileged access, and threats. This page lays out that path step by step.
What should I learn first, OAuth or SAML?
Learn OAuth 2.0 and OpenID Connect first, since they power most modern web and mobile authentication. SAML is still common in enterprise SSO, so learn it next, but OAuth and OIDC are the higher-priority foundation.
How long does it take to learn IAM?
You can grasp the core concepts and protocols in a few weeks of focused study, and ship a working login in days using guided recipes. Reaching practitioner depth in governance, privileged access, and identity security takes months of hands-on work.
Do I need to code to work in IAM?
Some IAM roles are configuration and governance focused and need little coding, while engineering roles benefit from scripting and automation. Either way, building a small project teaches the concepts faster than reading alone.
Looking for the full set of sources? See the resource library and the practitioner guides.