Just-in-time provisioning

Just-in-time (JIT) provisioning creates temporary privileged accounts that exist only for the duration of a specific task or session. Instead of assigning standing high-level access to users, an account is generated with the necessary privileges at the moment of checkout, and automatically deleted upon check-in. This minimizes the risk associated with long-lived privileged accounts.

In Devolutions PAM, just-in-time provisioning helps secure environments by shifting the focus from managing and auditing many static privileged accounts to a smaller number of monitored, permanent system accounts. This streamlined approach enhances security and simplifies audits.

Typical use cases include administrative sessions requiring domain privileges or maintenance tasks that demand temporary elevated access. By leveraging automation, this method helps ensure access is controlled, temporary, and auditable.

• JIT provisioning

• Just-in-time privileged access

• On-demand provisioning (CyberArk)

• Decoding just-in-time (JIT) elevation

• Just-in-time (JIT) elevation in Devolutions Server

• Glossary of Common Privileged Access Management (PAM) Terms

• JIT privilege elevation made efficient by Devolutions

• Need Cybersecurity Insurance? Then You Probably Need PAM, Too