This guide will show an administrator how to remove a specified user from a Privilege Identity Management Group.
This work instruction applies to organizations that have an Azure CMMC Deployment or for environment utilizing Entra ID P2
Role Requirements
Procedure Scope: Administrators
Required Group Membership: Admin.Roles
Handbook Reference
Package: TBD
Domain: TBD
Modifies: TBD
User PIM Eligibility Removal
- Navigate to the Groups – Azure Active Directory portal, locate and select the search bar and specify PIM Eligible for the group search result. Select the group you would like to remove the user the ability to elevate into.
- From the Overview page of the selected PIM Group, locate and select the Members tab. Locate and select the user that needs to be removed from the list. Selecting Remove will display a verification prompt, select Yes to successfully remove group membership for the selected users.
- Upon being removed, the user will no longer be able to elevate into the assigned role from their PIM elevation portal.
Need Assistance?
Reach out to your Customer Success Manager to discuss how a Sittadel cybersecurity analyst can assist in managing these tasks for you. New to our services? Inquire about arranging a consultation to explore optimizing your Azure environment for painless management.