Extend PIM to manage group membership
Enable PIM usage to support any Azure AD group membership controls enabling a time based group membership experience using PIM UI and approval functionality.
Wolf, Andrew commented
Berkeley, I believe the link provided refers to having any member of a group eligible for elevation etc while the above (as pointed out by Wesley) refers to temporarily adding users to an AzureAD group as the elevation action
The purpose of that would be to then give permanent permission to the group in whichever app (eg within Exchange) and allow PIM to extend its reach/effectiveness where more granular permissions are required/applied
Wesley Trust commented
I believe this is referring to temporarily granting membership to an Azure AD Security Group (of which you may have used to delegate access to another resource).
Rather than assigning roles to groups, which is in the other suggestion.
Berkeley Churchill commented
Is this the same as https://feedback.azure.com/forums/169401-azure-active-directory/suggestions/20227804-enable-pim-role-assignment-by-group-membership? If not can you clarify the difference?