Access Reviews: Azure recommendations
The recommendation given by Azure in Access Reviews is based on user's activity ONLY in Azure and not specifically based on the Admin role activity that is being reviewed. Access reviews should give you the recommendation based on user activity with the role, otherwise, any user that logs into Azure but don't activate their role, will never be catch by the Azure recommendation(inactive for 30 days), is that make sense ?
Also, the Azure PIM alerts gives you very little possibilities. We can't export, store the information, would be great having more option on that, or at least exposing via an API.
Thanks for the detailed feedback! Yes, it makes a lot of sense to scope the recommendations to user’s activity in the role being reviewed, and we are working to collect more insights on user’s activity in addition to signing in. It’s in our roadmap and we will update here when we have a preview to share!
Regarding your comment on PIM alerts, I have directed your feedback to our PIM team, if you any more questions on the development of the alerts, please don’t hesitate to email email@example.com!