Using Azure AD Privileged Identity Management (PIM for short) as a method to control access to Azure resource are nice security feature. It makes it more trackable and gives the granted roles for a defined time period. You can add approval as a necessary add-on security feature, use MFA or other adjustments. Read more about PIM here.BUT! it can also feel like a pain in the... if you use it a lot.
↧