Ensure 'Privileged Identity Management' is used to manage roles
Why This Matters
Standing administrative access to privileged roles creates a significant attack surface in your Microsoft 365 environment. If a single privileged account is compromised, an attacker gains persistent access to sensitive resources and configurations. Privileged Identity Management (PIM) reduces this risk by requiring just-in-time activation, ensuring administrators hold elevated roles only for the duration of specific tasks.
What Aether365 Checks
Aether365 verifies whether Privileged Identity Management is enabled to manage privileged Microsoft Entra ID roles. This check appears in the Aether365 dashboard under the entra-id checks section.