Manage Azure Privileged Identity Management

Privileged Identity Management (PIM) enables you to manage, control, and monitor access to important resources in your organization. These resources include resources in Microsoft Entra ID, Azure, and other Microsoft Online Services such as Microsoft 365 or Microsoft Intune.

For more information, refer to Azure Privileged Identity Management (PIM).

 

  1. Go to Feature Management.
  2. Select the Enable Privileged Identity Management checkbox to define the scope of the Microsoft Entra ID PIM roles (Microsoft Entra ID as well as Azure). For more information on privileged identity management, refer to the Microsoft documentation.

  3. In the Microsoft Entra PIM Active and Eligible Roles Filter field, enter a filter to define the scope of the Microsoft Entra ID PIM roles aggregated during entitlement aggregation. For example, isBuiltIn eq true

    For more information on filtering conditions and values, refer to the Microsoft Documentation.

  4. In the Azure PIM Active and Eligible Roles Filter field, enter a filter to define the scope of the Azure PIM roles aggregated during entitlement aggregation. For example, type eq 'CustomRole'

    For more information on filtering conditions and values, refer to the Microsoft Documentation.

  5. Select Save.