Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 8 Next »

Staff intended to have administrative roles in UConn’s Entra ID or Microsoft 365 environments are required to activate their role(s) using PIM. A PIM “Just in time” policy ensures that accounts only hold elevated privileges when they are necessary to perform administrative tasks.

Navigate to or bookmark https://entra.microsoft.com/#view/Microsoft_Azure_PIMCommon/ActivationMenuBlade/~/aadgroup to quickly access & elevate to your admin role via your PIM groups. Step by step instructions are below.

Roles can be activated for up to 8 hours at a time.

  1. Navigate to https://entra.microsoft.com and login with your NetIDAdmin account

  2. Expand the Identity Governance section and click on Privileged Identity Management (PIM)

    1. Optionally pin PIM as a favorite by clicking the star icon to the right of its entry.

      left-hand navigation in Microsoft Entra ID highlighting the Privileged Identity Management option in the Identity Governance section

  3. Click on My roles under the Tasks section on the left-hand side

    My roles option highlighted in the left-hand navigation of the Privilged Identity Management section of Microsoft Entra ID

  4. Then click Groups in the Active section

    The groups section highlighted in the left-hand navigation menu of the groups section

  5. Click Activate next to the role assigned group you wish to active roles for

    The eligible assignments section of the Privileged Identity Management Groups section with the Activate button highlighted

  6. Specify a duration and provide a short justification, then click Activate

    The prompt shown upon activating a role with an example justification and 8 hour time window

  7. The roles associated with your PIM group will be added to your NetIDAdmin account for the duration you specified

Related Pages

  • No labels