Azure PIM Configuration

Attribute	Details
enablePIM	Select the Enable Privileged Identity Management checkbox to define the scope of the Microsoft Entra ID PIM roles (Microsoft Entra ID as well as Azure).
eligibleRoleExpiresAfter	Specifies the default duration for which Azure and Microsoft Entra ID eligible roles must be assigned to user. The values must be in the ISO_8601 duration format. For example, if eligible role needs to be assigned for 180 Days, use <entry key="eligibleRoleExpiresAfter" value="P180D" />
activeRoleExpiresAfter	Specifies the default duration for which Azure and Microsoft Entra ID Active roles must be assigned to user. The values must be in the ISO_8601 format. For example, if eligible role must be assigned for 10 Hours, use <entry key="activeRoleExpiresAfter" value="PT10H" />

Feedback is provided as an informational resource only and does not form part of SailPoint's official product documentation. SailPoint does not warrant or make any guarantees about the feedback (including without limitation as to its accuracy, relevance, or reliability). All feedback is subject to the terms set forth at https://developer.sailpoint.com/discuss/tos.


	You are here:

Azure PIM Configuration

Documentation Feedback