> ## Documentation Index
> Fetch the complete documentation index at: https://docs.idemeum.com/llms.txt
> Use this file to discover all available pages before exploring further.
# EPM control mode
> Configure how idemeum is enforcing elevation rules on your workstations.
## EPM control modes
Control mode on the workstation applies both to EPM and Allowlisting. You can use EPM only, Allowlisting only, or both on the same workstation. Control mode will enforce products that are enabled for your tenant.
You can control how EPM behaves for each of your devices in idemeum. `App control mode` defines how idemeum agent behaves for rule enforcement and event collection.
| Mode | Definition |
| ----------------------------------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
| Disabled | idemeum agent is not capturing any `elevation`events and not enforcing any rules. User experience does not change on the workstation. |
| Audit | idemeum agent is capturing `elevation` events and uploading them to the cloud periodically. However, agent is not applying any rules or interrupting UAC or elevation flows. |
| Rules | Idemeum agent controls application `UAC elevations` and enforces the rules that you created in the portal. |
## Change EPM control mode
* Navigate to your idemeum admin portal
* Select `Devices` and search for the device you want to change the app control mode for
* Click on `...` then choose `Set app control mode`
* Choose the mode and save the configuration
## Bulk EPM control mode change
* Navigate to your idemeum admin portal
* Access `Devices` section and select multiple devices with checkboxes
* Click on the bulk change button at the top and choose `Set app control mode`
* Choose the mode and save the configuration