Keyboard-driven Azure PIM manager for fast role activation across subscriptions
Experience Azure PIM TUI by CosX, a keyboard-driven terminal utility that manages just-in-time Azure privileged roles across accounts and groups. The tool uses an active Azure CLI session plus ARM and Graph APIs to let administrators view, activate, and deactivate eligible roles without the web portal. It shows real-time status, supports bulk activation, search and a permissions detail pane, and stores defaults in a TOML file. This is aimed at Azure administrators, DevOps engineers, and security professionals who prefer rapid, keyboard-centric role control.
What does the tool manage from the terminal?
Azure PIM TUI provides direct PIM control inside a terminal, letting you enumerate eligible roles across accessible subscriptions and groups and perform role state changes. Key operations exposed in the interface include:
- View eligible and active role assignments
- Activate or deactivate individual roles
- Perform bulk activation via multi-select (spacebar)
The interface fetches role permission details in a side-by-side panel so you can inspect grants before confirming changes.
Is it safe to use with existing authentication?
The tool uses the existing Azure CLI session and does not store credentials, so you must be logged in with az login before running it. In addition, the app calls standard ARM and Graph APIs for role operations, which keeps authentication and permissions aligned with your current CLI session and tenant access. This behavior reduces credential handling by the utility and maintains the environment's current access controls.
Does it fit daily administration without heavy system impact?
The application is a lightweight Rust binary designed for low overhead, distributed for Windows via Winget and Chocolatey and available on other platforms through Homebrew or Cargo. In addition, keyboard-first navigation and configurable defaults via a TOML file let experienced terminal users speed repeated tasks. Casual users need familiarity with command-line sessions and terminal navigation to avoid accidental changes, because the interface is optimized for keyboard control rather than graphical guidance.
A pragmatic CLI choice with a single clear trade-off
The tool is a practical option for administrators comfortable in terminal environments who need faster, command-line role handling than graphical consoles provide; the main trade-off is that its keyboard-centric, terminal workflow will not suit administrators who require graphical management. Teams that accept a command-line model gain a compact, reliable utility for PIM tasks, while GUI-focused operators should plan an alternative process for privileged role work.
