Azure Lighthouse Security Features
New additions to Azure Lighthouse include multifactor authentication and privileged identity management support for just-in-time access.
Azure Lighthouse, which Microsoft made generally available last July during Microsoft Inspire 2019, offers service providers a single control plane to view and manage Azure across all customers with higher automation, scale and enhanced governance.
In answer to partner requests, Azure Lighthouse now will allow partners to reduce risk from standing elevated access, strengthen authentication methods and match customers’ compliance and risk management requirements, according to Microsoft.
Role-based access control (RBAC) for partners now can be permanent or eligible, and it can be achieved by adding a few parameters to the ARM template file that customers use to on-board to Azure Lighthouse. Partners can elevate access to a privileged (built-in RBAC) role for a shorter period for management tasks in their customer’s tenant, and they can support customers without needing a permanent level of higher access.