Forum Discussion
PAL with PIM
Hi, Is PAL tracking the ACR from the client's subscriptions, where my account is added as eligible for proper RBAC role but not having active assignment for most of the time?
Following up on this, what is the recommendation for enabling PAL when most customers environments are following the recommended JIT and least privilege model and 99% of the time PIM is not active, and there for the account that was linked PAL doesn't have permissions active.