The backup roles of Keepit are pretty sensitive regarding the protection of data privacy, especially for MSPs. Because of this, i would like to use Microsoft PIM with Keepit. Azure AD SSO is already configured, so MFA and CA-Policies are already used.
With Microsoft PIM it is possible to grant elevated Permissions ondemand. In the current Preview of Microsoft PIM it is possible to create customized Azure AD roles, so the different roles of keepit could have a machting Azure AD role.
The goal should be to login to Keepit as a priviliged user, only if it's needed.
Please consider adding this feature in the future.
Thank you very much!
2 people like this idea
1 Comment
H
Hendlmeier, Fabian
said
3 months ago
In addition or other words: Is there a possibility to assign roles/permissions by group memberships from Azure AD? e.g. extending the SAML token with group/role claims
Jan-Erik Nakatenus
Hi Keepit,
The backup roles of Keepit are pretty sensitive regarding the protection of data privacy, especially for MSPs. Because of this, i would like to use Microsoft PIM with Keepit. Azure AD SSO is already configured, so MFA and CA-Policies are already used.
With Microsoft PIM it is possible to grant elevated Permissions ondemand. In the current Preview of Microsoft PIM it is possible to create customized Azure AD roles, so the different roles of keepit could have a machting Azure AD role.
The goal should be to login to Keepit as a priviliged user, only if it's needed.
Please consider adding this feature in the future.
Thank you very much!
2 people like this idea