Forum Discussion
Activating Multiple AD roles together with PIM
I have got users with multiple Azure AD roles and PIM has been enabled. Is there a way to activate PIM once which will then activate two or more roles at the same time or users have no choice that to...
- Hi,
you can use Privileged Access Groups feature:
https://learn.microsoft.com/en-us/azure/active-directory/privileged-identity-management/groups-features#activate-multiple-role-assignments-in-a-single-request
Hi,
you can use Privileged Access Groups feature:
https://learn.microsoft.com/en-us/azure/active-directory/privileged-identity-management/groups-features#activate-multiple-role-assignments-in-a-single-request
you can use Privileged Access Groups feature:
https://learn.microsoft.com/en-us/azure/active-directory/privileged-identity-management/groups-features#activate-multiple-role-assignments-in-a-single-request
Using PIM Groups requires you to have Permanent Assignments which does not follow security best practices. They are asking for how to activate daily multiple PIM roles at once....not just have it permanently assigned.
- Correct I didn't word that correctly. It allows you to make Eligible Assignments to Groups, but that does not solve this problem. This inquiry was how to activate multiple roles at once which you cannot bulk activate roles with groups. The only way to bulk activate roles for a user is through PowerShell.
