Manage An Access Review Of Azure Active Directory (Azure AD) Roles In Privileged Identity Management (PIM)

 

Access to privileged Azure AD roles for employees changes after some time. To decrease the risk related to stale role assignments, you need to perform a survey. You can utilize the Azure Active Directory (Azure AD) Privileged Identity Management (PIM) to make access surveys for privileged Azure AD roles. You can likewise arrange repeating access reviews that happen automatically.

 

 

Sign in to the Azure portal.

 

First, open Azure AD Privileged Identity Management in the Azure portal.

 

After that, click Azure AD roles and click Access Review.

 

 

Open Access Review. (No access reviews to display)

 

 

 

Click "New" to create a new access review.

 

 

Fill in the name for the access review. Optionally, give the review some description.

 

 

After that, set the Start date, its frequency, and if it finishes in a single month.

 

You can change the start and end dates along with frequency settings too.

 

 

In the Users section, select one or more roles that you want to review the membership of.

 

 

The following image shows an example of the Review membership list.

 

 

Then, you can select one or more people to review all the users.

 

 

 

Expand the Upon completion settings section. Then use the correct one.

 

 

 

Expand the Advanced settings section. Then, click the Start button.

 

 

Notification is successfully added.

 

 

After that, Start the access review.

 

 

The process of the access review and management. 

 

 

 

In this article, we learned how to manage an Access Review of Azure Active Directory roles in Privileged Identity Management. In my next article, I will cover the next step of this series.