Here’s an example of Identity and Access Management (IAM) security best practices for Microsoft Entra ID in Azure:

• Treat identity as the primary security perimeter
• Centralize identity management
• Manage connected tenants
• Enable single sign-on
• Turn on Conditional Access
• Plan for routine security improvements
• Enable password management
• Enforce multifactor verification for users
• Use role-based access control
• Lower exposure of privileged accounts
• Control locations where resources are located
• Use Microsoft Entra ID for storage authentication

Source: https://learn.microsoft.com/en-us/azure/security/fundamentals/identity-management-best-practices