Cloud Permissions Management. Whether using a third-party solution or building your own, implementing JIT is a three-step process: 1. Planning Assessment - identifying which users require access, the resources they need, and the reasons they need the access. The best practice is to document existing access rights and see if they can be minimized or eliminated. Policy creation - defining clear policies for granting and revoking access. One source of truth for JIT - This may mean syncing the JIT access system with an Identity Provider (e.g., Okta, Google Workspace, Azure AD, OneLogin). 2. Self-service access requests - The best practice is to simplify the process by having users request access through the system, not through people. JIT approval process - allowing organizations to delegate approvals to people in a business context. Integrating JIT systems with other IT management and security systems - will improve JIT’s overall flexibility and efficiency. 3. User training - an important companion to all of this.