Azure Privileged Identity Management (PIM) is a great tool for managing identities that require privileged access. Rather than user accounts being assigned highly privileged roles permanently, accounts can be elevated to the role required. Once the role requirement is over, the permissions can be revoked. More inofrmation on what PIM is can be found here, https://docs.microsoft.com/en-us/azure/active-directory/privileged-identity-management/pim-configure. While PIM is a really useful tool, it does currently have some shortcomings, and.. Read More