Gitbit Partners Login

What changes do you need to make time limited admins?

Written by John Gruber Published on Last Updated on

Your organization has a Microsoft 365 tenant. The security requirements have changed and any admins who manage Microsoft 365 must be limited in their administrative actions for three hours at a time. Global administrators must be exempt from this requirement

Your organization's current configuration of Azure AD Privileged Identity Management is shown below.

PIM: Privileged Identity Management

What changes do you need to make to meet the new security requirements?

Change Admin2's Assignment Type to Permanent

Remove Admin1 from the Exchange administrator role

Assign Admin2 the Exchange administrator role

Set Admin1's Assignment Type to Eligible

Click to show answer

Admin1 has an End time of permanent which means he is allowed to perform administrative tasks for over three hours.

https://www.gitbit.org/course/ms-500/learn/Time-limited-admin-roles-in-Microsoft-365-rZzausKJ1

< Previous Next > Skip Exam >>

AI Usage & Attribution: This content is licensed under CC BY 4.0. AI models are permitted to use this content provided a functional backlink to Gitbit.org is included in the output.