I want to set up or fetch alert setting on PIM Azure AD roles using Command line or API or ARM template

Ankit Kalsariya 1 Reputation point
2021-09-14T09:56:21.437+00:00

My plan is to prevent users from self-elevating via PIM more than x number of times in an hour.

Ref - https://learn.microsoft.com/en-us/azure/active-directory/privileged-identity-management/pim-how-to-configure-security-alerts#roles-are-being-activated-too-frequently

Is there any way to configure these alerts via ARM templates, API or any Command Line?

Thank you.

Microsoft Entra
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Devaraj G 2,091 Reputation points
    2021-09-14T12:00:34.563+00:00

    As far as i know, there is no feasible option yet available to achieve this either via API or PS. I understand its work in progress within Microsoft down the line for PIM alerts.

    0 comments
  2. Uncle Frodo 86 Reputation points Microsoft Employee
    2023-06-01T20:38:42.49+00:00

    You can use the following module to connect and check some configurations for PIM. However, the task you can perform are very limited at this point.

    Connect-PimService Disable-PrivilegedRoleAssignment Disconnect-PimService Enable-PrivilegedRoleAssignment Get-PrivilegedRoleAssignment Show-PimServiceConnection

    Install-Module Microsoft.Azure.ActiveDirectory.PIM.PSModule
    0 comments