Skip to main content

➡️ EPM

Quick-start (EPM)

Set up Endpoint Privilege Management to manage local admin rights in your environment.

Create customer / organization

One you sign up for idemeum, you need to create a customer tenant / organization, so that you can register devices to this organization, configure EPM, and manage events.

  • Access the admin portal of your idemeum tenant
  • Navigate to Customers and then choose Add customer → Manually
  • Provide the organization name (will be used in the URL) and the friendly display name
  • Refresh the screen, then click at the top left to switch to the newly created organization admin portal

Enable EPM

Once you access the admin portal of your organization / customer, you can now enable EPM.

  • Navigate to Settings → Elevation and enable the product

Deploy idemeum agent

You can now deploy idemeum agent to your workstation.

  • Click Install new agent and then grab the agent installation command. Execute on the workstation under Administrator account (i.e. run PowerShell as admin)
  • One the agent is successfully installed, it will show up in the admin portal Devices section

Create auto elevate rules

If you know what applications you need, you can leverage rules catalog to enable most common applications with a click of a button. For these applications automatic elevation will be applied.

  • Access Events → Rules
  • The click Add rule and choose Catalog rule
  • Check the applications that you need and save the configuration
  • If you want, you can also create rules manually for the applications that we do not have in the catalog.

Set app control mode

  • Access Devices menu
  • Find the device when you would like to enforce elevation control
  • Click on ... then choose Set app control mode
  • Choose Rules and save the configuration. Now the idemeum agent on the device is capturing and handling all elevation events.

Manage events

You can now see all generated elevation event in the event table. Right from each event you can click on ... and create a custom rule if that is not covered by idemeum catalog. You can learn more about events below.

Elevation events
Elevation events represent all elevated actions triggered across your workstations.
idemeum docsNik Pot

Manage requests

When users request elevations you can respond to these requests from the web portal or using mobile device.

Elevation requests
When elevation is not blocked or automatically allowed, users can request elevation for a privileged action.
idemeum docsNik Pot

Questions

If you have any questions or feature requests, please reach out to us.

Idemeum support
Contact idemeum support by sending us an email, opening a ticket manually, or joining our discord channel.
idemeum docsNik Pot