Please enable JavaScript.
Coggle requires JavaScript to display documents.
AZ-500 (PIM (What does it do (Just-in-time, Time-bound access, Approval,…
AZ-500
-
-
PIM
-
Eligible
Type
A role assignment that requires a user to perform one or more actions to use the role. If a user has been made eligible for a role, that means they can activate the role when they need to perform privileged tasks. There's no difference in the access given to someone with a permanent versus an eligible role assignment. The only difference is that some people don't need that access all the time.
Active
A role assignment that doesn't require a user to perform any action to use the role. Users assigned as active have the privileges assigned to the role.
Activate
A role assignment that doesn't require a user to perform any action to use the role. Users assigned as active have the privileges assigned to the role.
Assigned
A user that has an eligible role assignment, performed the actions to activate the role, and is now active. Once activated, the user can use the role for a preconfigured period-of-time before they need to activate again.
-
User's access can be reviewed on a regular basis to make sure only the right people have continued access
Program -
Upon completion
-
-
-
Take recommendations
Take the system’s recommendation on denying or approving the user’s continued access
-