EasyPIM.Orchestrator

1.5.0

PIM-as-Code orchestration for EasyPIM. Deploy role policies and assignments from JSON configuration files with WhatIf validation, delta mode for incremental changes, and drift detection. Automate PIM governance across Azure Resources, Entra Roles, and PIM Groups with reusable templates, CI/CD integration, and comprehensive audit trails. Turn configuration files into e
PIM-as-Code orchestration for EasyPIM. Deploy role policies and assignments from JSON configuration files with WhatIf validation, delta mode for incremental changes, and drift detection. Automate PIM governance across Azure Resources, Entra Roles, and PIM Groups with reusable templates, CI/CD integration, and comprehensive audit trails. Turn configuration files into enforceable PIM state.
Show more

Minimum PowerShell version

5.1

Installation Options

Copy and Paste the following command to install this package using PowerShellGet More Info

Install-Module -Name EasyPIM.Orchestrator

Copy and Paste the following command to install this package using Microsoft.PowerShell.PSResourceGet More Info

Install-PSResource -Name EasyPIM.Orchestrator

You can deploy this package directly to Azure Automation. Note that deploying packages with dependencies will deploy all the dependencies to Azure Automation. Learn More

Manually download the .nupkg file to your system's default download location. Note that the file won't be unpacked, and won't include any dependencies. Learn More

Owners

Copyright

(c) Loïc MICHEL. All rights reserved.

Package Details

Author(s)

  • Loïc MICHEL

Tags

EasyPIM Orchestrator PIM-as-Code Infrastructure-as-Code GitOps Automation Drift-Detection Configuration-Management Azure EntraID RBAC Governance

Functions

Invoke-EasyPIMOrchestrator Test-PIMPolicyDrift Test-PIMEndpointDiscovery Get-EasyPIMConfiguration Disable-EasyPIMTelemetry

Dependencies

Release Notes

EasyPIM.Orchestrator v1.5.0 - Performance & Drift Detection Overhaul

Added
- **Rich Return Object**: `Invoke-EasyPIMOrchestrator` now returns a detailed `PSCustomObject` containing success status, policy results, assignment results, and cleanup analysis, enabling better programmatic integration.
- **Cleanup Analysis**: `initial` mode now performs and displays a full cleanup analysis (showing exactly what would be removed) even in `WhatIf` mode.
- **Performance**: Implemented batch pre-fetching for assignments, significantly reducing Graph/ARM API calls during validation (O(1) vs O(N)).

Changed
- **Drift Output**: `WhatIf` output now explicitly reports "⚠️ [DRIFT]" instead of "✅ [OK]" when policy drift is detected.
- **Assignment Logging**: "Planned" assignments (those that would be created) are now clearly distinguished from "Existing" ones in the summary.
- **Idempotency**: Improved logic to correctly identify existing assignments in `WhatIf` mode, preventing false "Creating..." logs.

Previous releases:
v1.4.12 - Fix Drift Detection

FileList

Version History

Version Downloads Last updated
1.5.0 (current version) 4 12/28/2025
1.4.12 16 12/21/2025
1.4.11 4 12/21/2025
1.4.10 190 11/11/2025
1.4.9 215 10/13/2025
1.4.8 11 10/11/2025
1.4.7 4 10/11/2025
1.4.6 17 10/10/2025
1.4.5 27 10/8/2025
1.4.4 131 9/13/2025
1.4.3 29 9/12/2025
1.4.2 98 9/9/2025
1.4.1 17 9/8/2025
1.4.0 10 9/8/2025
1.3.9 6 9/8/2025
1.3.8 5 9/8/2025
1.3.7 7 9/8/2025
1.3.6 13 9/7/2025
1.3.4 6 9/7/2025
1.3.3 7 9/7/2025
1.3.2 7 9/7/2025
1.3.1 7 9/7/2025
1.3.0 9 9/7/2025
1.2.9 19 9/7/2025
1.2.7 8 9/7/2025
1.2.6 6 9/7/2025
1.2.5 8 9/7/2025
1.2.4 7 9/7/2025
1.2.3 8 9/7/2025
1.2.2 36 9/6/2025
1.2.1 8 9/6/2025
1.2.0 39 9/3/2025
1.1.9 6 9/3/2025
1.1.7 50 9/2/2025
1.1.6 9 9/2/2025
1.1.4 8 9/2/2025
1.1.3 12 9/2/2025
1.1.2 16 9/2/2025
1.1.1 49 8/31/2025
1.1.0 20 8/31/2025
1.0.7 10 8/30/2025
1.0.6 8 8/29/2025
1.0.5-beta1 8 8/29/2025
1.0.4-beta1 10 8/29/2025
1.0.3-beta1 4 8/29/2025
1.0.2-beta1 8 8/29/2025
1.0.0-beta1 5 8/28/2025
0.1.0-beta9 10 8/25/2025
0.1.0-beta8 5 8/25/2025
0.1.0-beta7 5 8/25/2025
0.1.0-beta6 10 8/25/2025
0.1.0-beta10 5 8/25/2025
Show more