Enabling PIM in Azure

Enabling Privileged Identity Management (PIM) in Azure

SECURITYRISK & COMPLIANCE

3/17/20231 min read

  1. Once you're signed into the portal as a global administrator for your directory, click all services and then find the Azure AD Privileged Identity Management Service

  2. Click to open the PIM quick start and then in the list click consent to PIM.
    1. Select/Click "verify my identity" so that you can verify your identity with Azure MFA.
    2. You'll be asked to pick an account. If more information is requested for verification, you'll be guided through the process of supplying such info.
    3. Follow the wizard to provide the information that is requested. 
  2.  
  3. Once you've completed the verification process, click the consent button.
    1. A message will appear, Select/Click "Yes" to complete the consent process.
  4. Once PIM is enabled for your directory, you'll need to sign up for PIM to manage Azure AD roles.
    1. Next, switch back to the "Azure AD Privileged Identity Management" quick start dashboard and then click Azure AD roles.
  5. Click sign up PIM for Azure AD roles in the left pane and then click sign up in the top menu.
    1. In the message that appears, click yes to sign up for PIM to manage Azure AD roles.
    2. When the process completes, the Azure AD options will be enabled. However, you may need to refresh the portal to see these changes.