Hi, more info on BreakGlass:
https://learn.microsoft.com/en-us/entra/identity/role-based-access-control/security-emergency-access
Its important to exclude these from MFA/Conditional Access and monitor logons to them. Have at least 2 Break glass accounts.
Otherwise, PIM and least priv best practices:
Lots to read, but worth it:
https://learn.microsoft.com/en-us/entra/id-governance/privileged-identity-management/