Skip to main content

JIT Entra ID Access

Supported features

Feature Description
Zero-knowledge encryption Idemeum cloud is encrypted with your own private encryption keys, which means we do not see your passwords, and if our cloud gets compromised, no passwords will be exposed.
Just-in-time account creation Connect Entra ID tenants with oAuth and enable JIT Entra accounts with assigned roles and specified duration.
Zero-standing privilege Idemeum allows technicians to request Entra ID accounts and disables these accounts after a specified period of time.
Auto password rotation Idemeum will rotate admin accounts passwords every time technician makes a request.
Audit logs Detailed audit logs are captured and maintained in the cloud (account requested, accessed, disabled).
MFA OTP support Technicians can store OTP codes for JIT Entra accounts.
Autofill browser extension Idemeum offers browser extension to seamlessly autofill credentials and OTP codes when technicians access customer Entra tenants.
Granular role control JIT Entra accounts can be configured to use roles when requested. You can define various technician groups and assign different roles when technicians request Entra ID accounts.