Can I use Azure Just in Time (JIT) RBAC without PIM e.g. as a standalone solution

Copper Contributor


I saw a video show PIM (Privilaged Access Management) and part of it Showed using Just In Time administration to allow a user (after MFA authentication) to elevate to admin to do some work for a set period of time).


I need to know more about JIT for RBAC whereby I want to for example give someone the ability to elevate their role (to contributor for example) via MFA or some kind of admin approval, so they can perform a task then their contributor role expires (without necessarily using PIM). 


However I am having great difficultly finding vidoes, documentation (prefer good videos if available) showing how to set this up and make it work with a few examples and what level of Azure subscription you need to allow JIT RBAC


Can someone please advise and point me towards some good vidoes or blog articles on this please




1 Reply

Hi, take a look at this Pluralsight video just got published about Implementing Privileged Identity Manager PIM.


It goes in great details and show to to enable PIM, configure JIT, time-bound access and permanent access, how to configure access reviews and workflow approvals.