Just-in-Time Access
JITSecurity principle that provides access only when needed and only for the minimum time required.
What is Just-in-Time Access?
Just-in-time access minimizes the attack surface by ensuring privileged access exists only during active use. Rather than granting permanent access that sits idle most of the time, JIT access requires explicit activation, typically with justification and approval. This significantly reduces the window of opportunity for attackers to exploit privileged accounts.
In Microsoft 365
Azure AD PIM implements JIT access for administrative roles. Users activate roles when needed, provide justification, and access automatically expires after a configured duration. JIT is a core Zero Trust principle for privileged access.
Examples
- 1Activating admin role for a specific maintenance task
- 2Time-limited access to production systems
- 3Emergency access with automatic expiration
Related TrueConfig Controls
These controls help implement and verify just-in-time access in your Microsoft 365 environment.