creator/Anthropic-Cybersecurity-Skills
1
0
Fork 0
mirror of https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git synced 2026-06-12 14:14:56 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
d5f3fa32486ea335db802d68fe2147fa2da69583
Anthropic-Cybersecurity-Skills/skills/implementing-just-in-time-access-provisioning/references/api-reference.md
T
mukul975 c21af3347e Complete folder anatomy for all 649 cybersecurity skills + update LICENSE to Mahipal 
- Add scripts/agent.py and references/api-reference.md to all remaining skills
- Update all 648 LICENSE files: copyright now reads 'Mahipal'
- Add implementing-security-monitoring-with-datadog (new skill with full anatomy)
- All 649 skills now have: SKILL.md, LICENSE, scripts/agent.py, references/api-reference.md
2026-03-11 00:22:12 +01:00

56 lines
1.6 KiB
Markdown
Raw Blame History

# API Reference: Implementing Just-In-Time Access Provisioning
## Azure AD PIM API (JIT for Azure)
```python
import requests
headers = {"Authorization": "Bearer <token>"}
# Activate eligible role
requests.post(
"https://graph.microsoft.com/v1.0/roleManagement/directory/roleAssignmentScheduleRequests",
headers=headers,
json={"action": "selfActivate", "roleDefinitionId": ROLE_ID,
"directoryScopeId": "/", "justification": "Incident response",
"scheduleInfo": {"expiration": {"type": "afterDuration", "duration": "PT4H"}}})
```
## JIT Risk-Based Approval
| Risk Level | Approval | Max Duration |
|-----------|----------|-------------|
| Low | Auto-approve | 4 hours |
| Medium | Manager | 8 hours |
| High | Manager + Security | 4 hours |
| Critical | CISO + Manager + Security | 2 hours |
## AWS IAM Access Analyzer
```bash
# Find unused permissions for JIT conversion
aws accessanalyzer list-findings --analyzer-arn ARN --filter '{"status": {"eq": ["ACTIVE"]}}'
```
## CyberArk PAS REST API (JIT Privileged Access)
```bash
# Request JIT access
curl -X POST "https://VAULT/PasswordVault/api/MyRequests" \
-H "Authorization: $TOKEN" \
-d '{"AccountId": "ACC_ID", "Reason": "Maintenance", "TicketingSystemName": "ServiceNow"}'
```
## Key Metrics
| Metric | Target |
|--------|--------|
| Avg approval time | < 15 min |
| Auto-approval rate | 40-60% (low risk) |
| Standing privilege reduction | > 80% |
| Expired access auto-revoked | 100% |
### References
- Azure PIM: https://learn.microsoft.com/en-us/azure/active-directory/privileged-identity-management/
- CyberArk JIT: https://docs.cyberark.com/
- NIST 800-53 AC-6: Least Privilege
Reference in New Issue View Git Blame Copy Permalink