Identity and access management are routine tasks that computer systems go through every day. Users have to be authenticated into their computers, network, ERPs, and apps. These systems and networks have authentication modules which, when tampered with, can give access to malicious people. In addition, there are some cases where systems could be configured incorrectly, and therefore allow users to have excessive rights. Lastly, some settings could allow guest accounts to be used to carry out sensitive functions. Part of the cybersecurity role is to ensure that identity and access management is done correctly and does not expose the organization to more threats. Cybersecurity experts need to have the know-how of several identity and access management systems. For instance, many organizations have domain controllers that manage computers connected to a certain domain. Cybersecurity experts should know how to access domain controllers and carry out some functions, such as adding or removing a user's rights.