P0 App Documentation
Sign up for FreeSandbox
  • What Is P0?
    • πŸŽ›οΈIAM Dashboard
    • πŸ”ŽAccess Inventory
    • πŸͺ‘IAM Posture
    • ⏱️Just-In-Time Access
    • ♻️Service-Account Key Rotation
  • Getting Started
    • ⬇️Quick Start
    • 🎁Share P0 With Your Team
  • INVENTORY
    • πŸ—ΊοΈAccess Inventory
    • πŸ”¬Result Details
    • ❔Query Search
      • πŸ“–Search Reference
  • Posture
    • βš–οΈPosture Overview
  • Monitor Results
  • πŸ€”Finding Details
  • ORCHESTRATION
    • ⏰Just-in-time access
      • πŸ–οΈRequesting Access
        • πŸ‘‰For Another Party
      • 🏁Approving Access
        • Pre-approving Access
      • πŸ”€Request Routing
        • Google Cloud Filtering
        • AWS Filtering
  • Environments
    • ☁️Creating an Environment
    • πŸ““Environment Terminology
    • βš™οΈSettings
  • Integrations
    • πŸ“žNotifier integrations
      • πŸ’¬Slack
      • πŸ‘¬Microsoft Teams
      • πŸ“£Custom Notifier
    • πŸ”‘Resource integrations
      • ☁️Google Cloud
        • Requesting Access
        • Permissions Reference
          • Cloud Storage
          • Compute Engine
      • πŸ“¦AWS
        • Requesting Access
      • ☸️Kubernetes
        • Requesting Access
        • Advanced Requests
      • πŸ”‹PostgreSQL
        • Requesting Access
      • ❄️Snowflake
      • πŸ–₯️SSH
      • GitHub
        • Requesting Access
      • πŸ› οΈCustom Resource
    • πŸ‘₯Directory integrations
      • Microsoft Entra ID
        • Requesting Access
      • Google Workspace
      • Integrate P0 with Okta
    • βœ”οΈApproval integrations
      • πŸ””PagerDuty
    • πŸ”ŒSIEM Integrations
      • Splunk HEC Setup
  • P0 Management
    • 🎩Role-Based Access Control
Powered by GitBook
On this page
  • Benefits of just-in-time access
  • How it works in P0
  • Get started with just-in-time access
  1. What Is P0?

Just-In-Time Access

PreviousIAM PostureNextService-Account Key Rotation

Last updated 3 months ago

Use just-in-time access to give tailored, short-lived privileges to specific resources on demand.

Benefits of just-in-time access

  • Reduce your IAM attack surface by only holding privileges when they are in use.

  • Grant access more quickly; the mean time between making an access request and gaining access using P0, including approval, is five minutes.

  • Request and grant access based on operations (like reading a bucket), eliminating the need to craft custom roles and policies, and preventing incorrect access grants.

How it works in P0

Once you connect P0 to your organization's Slack and an IAM resource, any member of your organization can request access simply by typing /p0 request in Slack. No further set-up is required.

Here's what it looks like:

Requests can be approved by managers, resource owners, or automatically by integrations such as PagerDuty. You can discuss justification for each request in Slack. Access requests, together with their justifications, approval, grant, and revocation histories are recorded by P0, and can be exported to your SIEM.

Get started with just-in-time access

Getting started with just-in-time access takes about 15 minutes. Simply follow our .

⏱️
quick-start guide