Changes (2022-Jul-26 / Major)
- New feature 'PIM (Privileged Identity Management) eligible Role assignments' (TenantSummary)
⛔ Breaking Change! requires API permissions update!- Get a full report of all PIM eligible Role assignments for Management Groups and Subscriptions, including resolved User members of AAD Groups that have assigned eligibility
- Spoiler: Next iteration will include ScopeInsights, showing entire eligible Role assignments on Subscriptions including from upper Management Group scopes
- 💡 Note: this feature requires to execute as Service Principal with
ApplicationAPI permissionPrivilegedAccess.Read.AzureResources
- Use AzAPICall PowerShell module version 1.1.19
- Bugfixes