EPM control modes
Control mode on the workstation applies both to EPM and Allowlisting. You can use EPM only, Allowlisting only, or both on the same workstation. Control mode will enforce products that are enabled for your tenant.
App control mode defines how idemeum agent behaves for rule enforcement and event collection.
| Mode | Definition |
|---|---|
| Disabled | idemeum agent is not capturing any elevationevents and not enforcing any rules. User experience does not change on the workstation. |
| Audit | idemeum agent is capturing elevation events and uploading them to the cloud periodically. However, agent is not applying any rules or interrupting UAC or elevation flows. |
| Rules | Idemeum agent controls application UAC elevations and enforces the rules that you created in the portal. |
Change EPM control mode
- Navigate to your idemeum admin portal
- Select
Devicesand search for the device you want to change the app control mode for - Click on
...then chooseSet app control mode - Choose the mode and save the configuration
Bulk EPM control mode change
- Navigate to your idemeum admin portal
- Access
Devicessection and select multiple devices with checkboxes - Click on the bulk change button at the top and choose
Set app control mode - Choose the mode and save the configuration