What is JIT for Entra ID?
In this guide we will set up just-in-time Entra ID access to customer Microsoft 365 tenants. When you have multiple Entra ID tenants your technicians need to access, you can leverage idemeum to automatically manage individual on-demand admin accounts. Technicians request admin accounts, login to do their business, and then after some time the accounts will be disabled and passwords rotated. You can request Entra JIT accounts from idemeum portal, or you can integrate our platform with your ticketing system, so that you request Entra JIT accounts right from customer support tickets.Set up JIT for Entra ID
There are several steps involved to configure Entra ID access with JIT admin accounts.We are assuming you already have your MSP idemeum cloud tenant provisioned. If not, reach out to our support team for help.
Create idemeum child tenant
As a first step you need to create a child organization in your parent MSP tenant.
- Login to MSP admin portal
- Navigate to
Tenantsand create a child organization
More information about how to create a child organization.
Create Entra ID app and configure it in idemeum
At this step you need to create an application in Entra ID tenant and set up idemeum to connect to M365 tenant using that application.We have documented step-by-step instructions on how to set up Entra ID application.
