特权身份管理-是否在Azure中记录委派的批准者操作? [英] Privileged Identity Management - Does it log the delegated Approver actions in Azure?

问题描述

我有承包商，我非常喜欢这样的想法，即工作必须经过审查和批准才能开始.日志记录功能是一项奖励.

我自己是批准者，我也可以成为批准的管理员"吗?我的动作会被记录吗?

---

Jim

解决方案

是的，将记录的目录中的任何更改.您可以使用特权身份管理( PIM)审核历史记录，以查看给定时间段内所有特权角色的所有用户分配和激活.如果你想看完整的 审核租户中活动的历史记录，包括管理员，最终用户和同步活动，您可以使用 Azure Active Directory访问和使用情况报告.

参考: https://docs.microsoft.com/zh-cn/azure/active-directory/privileged-identity-management/pim-how-to-use-audit-log

https://docs.microsoft.com/zh-CN/azure/active-directory/privileged-identity-management/pim-resource-roles-use-the-audit-log

------------------------------------------------- --------------------------------------------

如果此答案有帮助，请单击标记为答案"或上投票".提供其他反馈 在您的论坛体验中，点击 解决方案

Yes, any changes in the directory that will be logged. You can use the Privileged Identity Management (PIM) audit history to see all the user assignments and activations within a given time period for all privileged roles. If you want to see the full audit history of activity in your tenant, including administrator, end user, and synchronization activity, you can use the Azure Active Directory access and usage reports.

Reference: https://docs.microsoft.com/en-us/azure/active-directory/privileged-identity-management/pim-how-to-use-audit-log

https://docs.microsoft.com/en-us/azure/active-directory/privileged-identity-management/pim-resource-roles-use-the-audit-log

---------------------------------------------------------------------------------------------

If this answer was helpful, click "Mark as Answer" or "Up-Vote". To provide additional feedback on your forum experience, click here

这篇关于特权身份管理-是否在Azure中记录委派的批准者操作?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！