"A common challenge when managing Power Platform at scale is following the principle of least privilege. Ideally, users should not have access to environments unless required. This is especially important for environments hosting business critical solutions and/or sensitive data.
The JIT Access Management solution mitigates this by allowing makers to request access to environments for a limited time. When time is up, access will automatically be revoked."
Just-In-Time Access Management for Power Platform
Just-In-Time Access Management for Power Platform is a solution that helps organizations manage access to their Power Platform environments. It enables makers to request access to environments for a limited time, and automatically revokes access when time is up. This helps organizations maintain the principle of least privilege and ensure that users only have access to environments when required, especially those hosting business critical solutions and/or sensitive data.
The JIT Access Management Solution
The JIT Access Management for Power Platform solution is published as open source on Github. It is composed of two features: an Admin App with an interactive dashboard for quick overview and data investigation and an Access Profile component to configure the access policies.
The Admin App provides a centralized view of access requests and allows admins to quickly respond to requests, revoke access, and investigate access requests. The Access Profile component enables admins to configure access policies, such as the duration of access, the number of access requests allowed, and the roles and environments to which access can be granted.
What Else Should I Learn About This Product?
The JIT Access Management for Power Platform also supports delegated access management. This allows admins to delegate access management to makers, so that they can manage their own access requests without needing to access the Admin App. Additionally, the solution enables admins to set up different access policies for different roles, so that access policies can be tailored to each user's needs.
The JIT Access Management for Power Platform also offers audit logging for all access requests. This allows admins to track who requested access, when, and for what purpose. This helps admins to ensure that access is used appropriately and that users are following the access policies.
Finally, the solution is designed to be highly configurable. Admins can customize the access policies, the duration of access, the number of access requests allowed, and the roles and environments to which access can be granted. Additionally, admins can set up automated reminders to ensure that users are alerted when their access is about to expire.