Microsoft Security | Microsoft Entra | Other
Additional Microsoft Entra services and features related to identity, access, and network security
Azure PIM Audit report on role activation using powershell
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(80, 39%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM%3C/text%3E%3C/svg%3E)
MrFlinstone
711
Reputation points
I have come across a PowerShell script that reports on Azure role activations, the script works quite well and somewhat provides the required information, however it is missing some role activations and i am not sure what need to be changed on the script to ensure that it captures all role activations.
I have noticed that the script doesn't get the full role assignment for all users, which could explain the reason why some of the activations are being missed. Is there a way to improve the script to get all the role assignments and the last activation date for a user for each assigned role.
The script can be found below.
$useWorkspace
$workspaceId
$exportFilePath
$historyToQueryInDays
# Get users that are PIM eligible
Connect-MgGraph
Write-Host
if
"@
}
}
# Get all eligible role assignments
$eligibleRoles
# Get accounts to reference
$users
$servicePrincipals
$groups
$processedEligibleRoles
foreach
}
# Export the result as a CSV then open it
$processedEligibleRoles
Invoke-Item
Microsoft Security | Microsoft Entra | Other
Sign in to answer