The current Morpheus RBAC can be enriched by adding support for Privileged Access/Identity Management features, either by using an embedded PAM (e.g. Morpheus PAM) or by integrating to an external system (e.g. Azure PIM for Azure Clouds).
I believe it is a must-have in such platform that manages multiple customers environments across multiple clouds especially when it comes to critical resources.
Following are the main features to be considered:
• Support role assignments of both Eligible and Active types.
• Time-bound access for eligible and active roles assignments
• Just-in-time (JIT) access