Entra ID
      Back to home
      1. Sittadel Knowledge Base
      2. Management Guides
      3. Entra ID

      User PIM Eligibility Removal

      This guide will show an administrator how to remove a specified user from a Privilege Identity Management Group.

      This work instruction applies to organizations that have an Azure CMMC Deployment or for environment utilizing Entra ID P2

      Role Requirements

      Procedure Scope: Administrators

      Required Group Membership: Admin.Roles

      Handbook Reference

      Package: TBD

      Domain: TBD

      Modifies: TBD

      User PIM Eligibility Removal

      1. Navigate to the Groups – Azure Active Directory portal, locate and select the search bar and specify PIM Eligible for the group search result. Select the group you would like to remove the user the ability to elevate into.
      2. From the Overview page of the selected PIM Group, locate and select the Members tab. Locate and select the user that needs to be removed from the list. Selecting Remove will display a verification prompt, select Yes to successfully remove group membership for the selected users.
      3. Upon being removed, the user will no longer be able to elevate into the assigned role from their PIM elevation portal.

      Need Assistance?

      Reach out to your Customer Success Manager to discuss how a Sittadel cybersecurity analyst can assist in managing these tasks for you. New to our services? Inquire about arranging a consultation to explore optimizing your Azure environment for painless management.