Devolutions ForumDevolutions Forum

NEW-DSPamAccount allow to create JIT Account

This feature has been implemented in version 2026.1.4
Implemented

NEW-DSPamAccount allow to create JIT Account

1 vote

avatar
jol

Hi

new-DSPamAccount are missing the function to create a account as a JIT Account

we have X number of users there will need there own JIT Account on X many customers so it will be nice if we can automate the process by creating the Account and add the account to the JIT privilege sets for the provider automatically with the powershell module.

All Comments (4)

avatar
Maxime Bernier

Hi jol,

Thank you for your feedback!

We understand the need to automate the creation of JIT accounts using New-DSPamAccount, especially when managing a large number of users across multiple customers. This is a valuable suggestion, and we will definitely consider adding support for creating JIT accounts directly through the PowerShell module.

That said, this is not something we’ll be able to implement in the short term. However, we’ve added it to our roadmap and will keep you updated on our progress as things evolve.
If you have any additional details or use cases you’d like to share, feel free to let us know — it helps us shape the feature more effectively.

Best regards,
Maxime

avatar
jol
Hi jol,

Thank you for your feedback!

We understand the need to automate the creation of JIT accounts using New-DSPamAccount, especially when managing a large number of users across multiple customers. This is a valuable suggestion, and we will definitely consider adding support for creating JIT accounts directly through the PowerShell module.

That said, this is not something we’ll be able to implement in the short term. However, we’ve added it to our roadmap and will keep you updated on our progress as things evolve.
If you have any additional details or use cases you’d like to share, feel free to let us know — it helps us shape the feature more effectively.

Best regards,
Maxime


@Maxime Bernier
Hi do you have some plans for this?

avatar
Maxime Bernier

Hello,

Yes, this is planned. The work is scheduled to begin after our next major release, and we expect it to be included in the following minor version.
We appreciate your patience and apologize for the delay. We’ll keep you informed as we get closer to delivery.

Best regards,
Maxime

1
avatar
Maxime Bernier

Hello,

Both of these are now supported in the latest release (2026.1.4):

  • New-DSPamAccount has a new -IsJitAccount parameter to mark an account as a JIT account on creation.
  • Update-DSPamProvider has new -Account and -PrivilegeSetName parameters to assign a PAM account to the specified JIT privilege sets on the provider.


This means you can now fully automate the process of creating JIT accounts and assigning them to the appropriate privilege sets.

Please reach out if you have any questions or need anything else.

Best regards,
Maxime

This feature has been implemented in version 2026.1.4