question

HITCHBARDAWIL-0844 avatar image
1 Vote"
HITCHBARDAWIL-0844 asked ·

Azure AD PIM Alert Email Recipients

Hello Everyone,

i have small question i hope you might help me with,
i've just activated PIM on my azure AD tenant.

i havent configured anything yet however as soon as i enabled PIM i started receiving Alert emails to some generic mailbox.

one alert i often get is Roles are being assigned outside of PIM for example

i cannot seem to find where to change the recipient of these alert mails.

anyone know where to change that setting ?

thanks



azure-ad-privileged-identity-managementazure-ad-access-reviews
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

NeeleshRay-4461 avatar image
0 Votes"
NeeleshRay-4461 answered ·

@HITCHBARDAWIL-0844

Security Alerts for PIM are of many types and some of the default one are only configurable.
"Roles are being activated too frequently" alert, "There are too many global administrators" alert and the "Administrators aren't using their privileged roles" alert have some level of configuration option. You can find the same detailed in this document.

However, the alert that you are mentioning - "Roles are being assigned outside of PIM" - this alert is sent out to all the Global Administrators of that tenant. This alert is not customizable.

You can also visit this document to check for other customizations available.

Here's an snapshot example of the email that you should be receiving.

2471-pim.jpg



pim.jpg (80.7 KiB)
· Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

michev avatar image
0 Votes"
michev answered ·
· 1 · Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Thank you, i saw that article but it doesn't really talk about my issue,
the mail i am receiving has the following Subject:

Subject: PIM: A privileged directory role was assigned outside of PIM


so its an alert outside of PIM....

also the articles says it sends a mail to the global administrator does it mean that it sends it to all members of the role ? because it doesnt seem to be the case... and the mail doesnt even appear for the role

thanks for the help


0 Votes 0 ·
HITCHBARDAWIL-0844 avatar image
0 Votes"
HITCHBARDAWIL-0844 answered ·

alright thanks for the answer

· Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.