Deploying Azure Policy remediation via Azure Lighthouse with PIM
Intro As you cannot grant owner level permission in Azure Lighthouse (contributor is the highest level available to us) we need to circumvent a way around this limitation for Azure policy remediation. The solution to this is granting the User Access Administrator role with two delegated roles: Contributor & Log Analytics Contributor. This will allow …