Privileged Identity Management

Privileged Identity Management, or PIM as many say.
This is way higher your security in your environment.
You can give a user a role, and that role user can apply for (depending on your setup) and that role will last X hours after that will go away and you will need to apply for it again. A good way to avoid someone is a Global administrator 24/7 for example.


So how can you apply for a role?
First, you need to go into porta.azure.com and then go to Privileged Identity Management, after that you can look to left in the menu bar, you will find like the image, there you can see all roles that have been given too you.

PIM – My roles


Back to menu Privileged Identity Management, now you might want to know how to give Roles to someone, go Manage, then Azure AD roles.
After having done that you can go to Roles like the image below.
Page after that you will search for the role and pick it and add a user.
– To do this you need to be a Global Administrator.

PIM – Roles


Maybe you want to change for how long a role should last?
Back to menu Privileged Identity Management, now you might want to know how to give Roles to someone, go Manage, then Azure AD roles.
Go into Settings as Image below

PIM – Settings


Search for a specific role, and go into settings
Here you can edit for how long-duration specific access role can be applied for, like Image below, change it and save it.

PIM – Duration hours


Thank you for your time.

Leave a Reply

Your email address will not be published. Required fields are marked *