Paweł Haracz PawelHaracz

Geek, software developer, freak man, These words best describe me. I love programming and discovering new technology. Pragmatic who wants to change the world

20 followers · 7 following

Warsaw
https://cloudtown.io/

View GitHub Profile

Recently created

Least recently created

Recently updated

Least recently updated

paolosalvatori / login-via-pim.sh

Created February 25, 2025 08:25

This Bash script allows to login to a given Azure Subscription using Microsoft Entra Privileged Identity Management (PIM)

	#!/bin/bash

	# Variables
	SUBSCRIPTION_ID=$(az account show --query id --output tsv) # Subscription ID
	ROLE_NAME="8e3af657-a8ff-443c-a75c-2fe8c4bcb635" # Owner role
	ROLE_DEFINITION_ID="/subscriptions/${SUBSCRIPTION_ID}/providers/Microsoft.Authorization/roleDefinitions/${ROLE_NAME}" # Role definition resource ID
	PRINCIPAL_ID=$(az ad user show --id $(az account show --query user.name -o tsv) --query id -o tsv) # Your account object ID
	ROLE_ASSIGNMENT_ID=$(uuidgen) # Generate a unique GUID for the role assignment
	JUSTIFICATION="I need access to [$(az account show --query name --output tsv)] Azure subscription" # Justification for the role assignment
	API_VERSION="2020-10-01" # API version