What is JIT Elevation in ONTAP?
ONTAP JIT Elevate refers to Just-In-Time (JIT) privilege elevation in NetApp
ONTAP—a feature that allows users to temporarily elevate their
privileges (e.g. to admin-level) for a specific task or session, and then automatically
removes those elevated permissions afterward.
With JIT privilege elevation, most users are assigned
regular, non-administrative privileges at account creation. When they need to perform
administrative activities such as volume creation and deletion, the privilege
to perform these activities are assigned to them just in time and automatically
resets after a fixed period.
Why It Matters
- Reduces
security risk:
Admin privileges are only active for a short time.
- Improves
auditing: Makes
it easier to track privileged access.
- Supports
compliance:
Aligns with NIST, ISO, and zero-trust principles.
No comments:
Post a Comment