First PIMRequest work, but second does not

Question

First PIMRequest work, but second does not

Closed this issue 4 years ago · 2 comments

I think there is a bug in New-AzurePIMRequest. First request works fine. Second only returns User user@xx.com is already elevated`.

When I look into the code, I see that line 80 is querying existing role assignments, but the where clause does not filter for resource id.

$ExistingRoleAssignmentRequest = AzureADPreview\Get-AzureADMSPrivilegedRoleAssignmentRequest -ProviderId azureResources | Where-Object RequestedDateTime -gt (Get-Date).AddHours(-8)

Answer 1 · 2020-10-22T06:34:29.000Z

Good catch - will look into adding a filter for resource id. Thanks for reporting!

Answer 2 · 2021-01-02T08:03:06.000Z

Fixed by 20413d2

Updated module published to PS Gallery.