Typical tasks requiring administrative privileges encompass application installations (such as Microsoft 365 Applications), updating device drivers, and executing specific Windows diagnostics.Įndpoint Privilege Management aligns with your Zero Trust strategy by enabling a widespread user base to function with minimal privileges, permitting authorized tasks that contribute to organizational productivity. Microsoft Intune’s Endpoint Privilege Management (EPM) empowers your organization’s users to operate as standard users, sans administrator rights, while fulfilling tasks demanding elevated privileges. This isn’t to advocate for standard users running PowerShell as admin but merely an intriguing test example showcasing the functionality. Then, attempting to run powershell.exe with EPM elevated access, I successfully executed it with elevated privileges. In this blog, I tested running powershell.exe as an administrator, triggering the expected UAC prompt for my standard user account. Finally, this dream has materialized in Endpoint Privilege Management (EPM)! It’s a dilemma we often face.įor ages, we’ve yearned for a ‘Just in Time’ method, allowing standard users to execute approved applications with elevated access without providing full admin privileges. Granting admin rights poses security risks, yet many organizations still do so due to reasons like developers needing multiple installations or older applications demanding elevated admin rights. But first, what exactly is Endpoint Privilege Management, or EPM? My curiosity led me to explore how to configure Intune settings and observe its functionality on user devices. For further details on EPM, refer to the official documentation ‘ Learn about using Endpoint Privilege Management with Microsoft Intune‘ on Microsoft Learn. After much anticipation, Endpoint Privilege Management has arrived! This post offers my initial impressions of this feature, not delving too deep.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |