# Idemeum Docs

> Autonomous endpoint platform to govern applications, privileges, and user support on your workstations.

## Docs

- [Analysis AI agent](https://docs.idemeum.com/ai-for-endpoint-control/analysis-ai-agent.md): AI agent that analyses and explains every application and elevation event.
- [Allowlisting overview](https://docs.idemeum.com/allowlisting-overview.md): Control what is allowed to run on Windows and macOS, block malware.
- [Allowlisting events](https://docs.idemeum.com/allowlisting/allowlisting-events.md): Idemeum tracks every execution across your workstations and represents each application as an event in the cloud.
- [Allowlisting rules](https://docs.idemeum.com/allowlisting/allowlisting-rules.md): With rules you define what is blocked and what is allowed to execute on your workstations.
- [Allowlisting control mode](https://docs.idemeum.com/allowlisting/app-control-mode.md): Configure how idemeum agent is enforcing allowlisting rules on each endpoint.
- [Application catalog](https://docs.idemeum.com/allowlisting/application-catalog.md): One-click rules to allowlist and automatically elevate applications.
- [Application fencing](https://docs.idemeum.com/allowlisting/application-fencing.md): Application fencing controls what applications can do once they are running.
- [Confidence score](https://docs.idemeum.com/allowlisting/confidence-score.md): Each application is assigned a confidence score to determine how safe the application behaves
- [Enable allowlisting](https://docs.idemeum.com/allowlisting/enable-allowlisting.md): Enable allowlisting for your organization.
- [Events deep dive](https://docs.idemeum.com/allowlisting/events-deep-dive.md): Deep dive into how allowlisting events work for major use cases.
- [Publishers view](https://docs.idemeum.com/allowlisting/publishers-view.md): Discover all publishers in your environment so that you can create allowlisting rules with a single click.
- [Snooze pop ups](https://docs.idemeum.com/allowlisting/snooze-pop-ups.md): Prevent multiple block pop ups for the same application.
- [Allow verified publishers](https://docs.idemeum.com/allowlisting/verified-publishers.md): Automatically trust all verified publishers on Windows and macOS.
- [Create Plant](https://docs.idemeum.com/api-reference/endpoint/create.md): Creates a new plant in the store
- [Delete Plant](https://docs.idemeum.com/api-reference/endpoint/delete.md): Deletes a single plant based on the ID supplied
- [Get Plants](https://docs.idemeum.com/api-reference/endpoint/get.md): Returns all plants from the system that the user has access to
- [New Plant](https://docs.idemeum.com/api-reference/endpoint/webhook.md): Information about a new plant added to the store
- [Introduction](https://docs.idemeum.com/api-reference/introduction.md): Example section for showcasing API endpoints
- [Confidence score](https://docs.idemeum.com/application-trust/confidence-score.md): Confidence score allows you to quickly assess if the application is safe in your environment.
- [Malware reputation](https://docs.idemeum.com/application-trust/malware-reputation.md): Each executable is scanned for malware using Sophos Intellix platform
- [Changelog](https://docs.idemeum.com/changelog.md): Product updates and release history.
- [Control agent branding](https://docs.idemeum.com/control-agent/agent-branding.md): Customize how login screen looks when idemeum control agent is installed.
- [Control agent health status](https://docs.idemeum.com/control-agent/agent-health-status.md): Track control agent last check-in time to monitor health.
- [Install control agent](https://docs.idemeum.com/control-agent/agent-install.md): Install idemeum control agent on Windows or macOS.
- [Control agent logs](https://docs.idemeum.com/control-agent/agent-logs.md): Idemeum control agent logs to troubleshoot misconfigurations.
- [Control agent requirements](https://docs.idemeum.com/control-agent/agent-requirements.md): Meet these requirements to install idemeum control agents.
- [Control agent troubleshooting](https://docs.idemeum.com/control-agent/agent-troubleshooting.md): When you have agent installation issues, follow these steps to diagnose the problems.
- [Uninstall control agent](https://docs.idemeum.com/control-agent/agent-uninstall.md): Uninstall idemeum control agent.
- [Update control agent](https://docs.idemeum.com/control-agent/agent-update.md): Desktop agent can be automatically or manually updated.
- [Control agent identifier](https://docs.idemeum.com/desktop-agent/agent-identifier.md): Endpoint Control agent manages various Windows registry keys.
- [Endpoint Care overview](https://docs.idemeum.com/endpoint-care-overview.md): Coming soon stay tuned!
- [Endpoint control overview](https://docs.idemeum.com/endpoint-control-overview.md): Endpoint control allows you to control applications, govern privileges, and secure admin accounts on your endpoints.
- [EPM overview](https://docs.idemeum.com/endpoint-privilege-management-overview.md): Manage local admin rights and automate elevation requests.
- [Account auto downgrade](https://docs.idemeum.com/epm/account-auto-downgrade.md): Automatically downgrade admin accounts on your workstations.
- [Admin elevation notifications](https://docs.idemeum.com/epm/admin-elevation-notifications.md): How IT admins receive notifications when users request elevations.
- [Admin / user elevation](https://docs.idemeum.com/epm/admin-user-elevation.md): You can elevate applications with on-demand account or temporarily promote the user account.
- [Elevation events](https://docs.idemeum.com/epm/elevation-events.md): Control agent captures every elevation event on your workstation and uploads each event metadata to the cloud.
- [Elevation requests](https://docs.idemeum.com/epm/elevation-requests.md): Users can submit requests for application elevations.
- [Elevation rules](https://docs.idemeum.com/epm/elevation-rules.md): With elevation rules you can define what can auto elevate on your workstations.
- [Enable EPM](https://docs.idemeum.com/epm/enable-endpoint-privilege-management.md): Enable Endpoint Privilege Management (EPM) for your organization.
- [EPM control mode](https://docs.idemeum.com/epm/epm-control-mode.md): Configure how control agent is enforcing elevation rules on your workstations.
- [Reason for elevation](https://docs.idemeum.com/epm/reason-for-elevation.md): Users provide context on why they need to elevate an application.
- [SUDO control for macOS](https://docs.idemeum.com/epm/sudo-control-for-mac-os.md): Automatically elevate SUDO commands on macOS with Endpoint Privilege Management
- [Technician mode](https://docs.idemeum.com/epm/technician-mode.md): IT admins bypass rules to perform administrative work on the workstation.
- [User elevation notifications](https://docs.idemeum.com/epm/user-elevation-notifications.md): How users are notified when elevation requests are approved or denied.
- [Quickstart guides](https://docs.idemeum.com/guides.md): Get started with idemeum by following our simple and quick product guides.
- [Quickstart - Allowlisting](https://docs.idemeum.com/guides/quickstart-allowlisting.md): Set up application control on Windows and macOS.
- [Quickstart - Cloud LAPS](https://docs.idemeum.com/guides/quickstart-cloud-laps.md): Set up break-glass password rotation for computers and Entra tenants.
- [Quickstart - Endpoint Privilege Management](https://docs.idemeum.com/guides/quickstart-endpoint-privilege-management.md): Set up elevation control on Windows and macOS.
- [Quickstart - JIT for computers](https://docs.idemeum.com/guides/quickstart-jit-for-computers.md): Set up passwordless on-demand access to servers and workstations.
- [Quickstart - JIT for Entra ID](https://docs.idemeum.com/guides/quickstart-jit-for-entra-id.md): Set up on-demand access to Microsoft Entra ID tenants.
- [Idemeum documentation](https://docs.idemeum.com/index.md): AI agents to autonomously govern applications, privileges, and support on your endpoints.
- [Integrations](https://docs.idemeum.com/integrations.md): Explore idemeum integrations with other products.
- [Atera RMM](https://docs.idemeum.com/integrations/atera-rmm.md): Control agent deployment with Atera RMM.
- [ConnectWise PSA](https://docs.idemeum.com/integrations/connect-wise-psa.md): Ticketing integration with ConnectWise PSA.
- [HaloPSA](https://docs.idemeum.com/integrations/halo-psa.md): Integrate idemeum with HaloPSA to create tickets for elevation requests, requests JIT accounts, and more.
- [Hudu](https://docs.idemeum.com/integrations/hudu.md): Hudu LAPS integration for break-glass account management.
- [Immy bot](https://docs.idemeum.com/integrations/immy-bot.md): Control agent deployment with Immy bot.
- [Level RMM](https://docs.idemeum.com/integrations/level-rmm.md): Control agent deployment with Level RMM.
- [Microsoft Intune](https://docs.idemeum.com/integrations/microsoft-intune.md): Deploy idemeum desktop agent to a fleet of Windows or macOS workstations with Microsoft Intune.
- [Ninja One](https://docs.idemeum.com/integrations/ninja-one.md): Control agent deployment with NinjaOne RMM.
- [SuperOps RMM](https://docs.idemeum.com/integrations/super-ops-rmm.md): Control agent deployment with SuperOps RMM.
- [Syncro RMM](https://docs.idemeum.com/integrations/syncro-rmm.md): Control agent deployment with Syncro RMM.
- [JIT admin access overview](https://docs.idemeum.com/jit-admin-access-overview.md): Privileged Access Management (PAM) to eliminate shared credentials, implement on-demand admin accounts, and secure critical accounts with auto password rotation.
- [Configure JIT for Entra](https://docs.idemeum.com/jit-entra/configure-jit-for-entra.md): Connect Entra ID tenant to idemeum for JIT account management.
- [JIT for Entra browser extension](https://docs.idemeum.com/jit/browser-extension.md): Request Entra credentials from idemeum browser extension.
- [Cloud LAPS configuration](https://docs.idemeum.com/jit/cloud-laps-configuration.md): Configure idemeum Cloud LAPS to rotate credentials for computers or Entra ID tenants.
- [Cloud LAPS overview](https://docs.idemeum.com/jit/cloud-laps-overview.md): Automatic password rotation for critical admin accounts.
- [Cloud LAPS view credentials](https://docs.idemeum.com/jit/cloud-laps-view-credentials.md): View break-glass credentials that idemeum auto rotates.
- [JIT access auditing](https://docs.idemeum.com/jit/jit-access-auditing.md): Every Entra or computer just-in-time access is captured in idemeum audit trail.
- [JIT for computers accounts](https://docs.idemeum.com/jit/jit-for-computers-accounts.md): Choose the account types to use when technicians access customer workstations.
- [JIT for computers configuration](https://docs.idemeum.com/jit/jit-for-computers-confiruation.md): Configure how you want JIT for computer access to work.
- [JIT for computers features](https://docs.idemeum.com/jit/jit-for-computers-features.md): Major features that you can use with JIT for computer access.
- [JIT for computers overview](https://docs.idemeum.com/jit/jit-for-computers-overview.md): Eliminate shared credentials when accessing customer workstations and servers.
- [JIT for Entra configuration](https://docs.idemeum.com/jit/jit-for-entra-configuration.md): Configure JIT admin access to Entra ID tenants
- [JIT for Entra login flow](https://docs.idemeum.com/jit/jit-for-entra-login-flow.md): Request your on-demand Entra credentials from idemeum admin portal.
- [JIT for Entra overview](https://docs.idemeum.com/jit/jit-for-entra-overview.md): Eliminate shared credentials and access Entra ID tenants with on-demand admin accounts.
- [Bulk tenant creation](https://docs.idemeum.com/portals/bulk-tenant-creation.md): Create multiple customer tenants at once with CSV upload or APIs.
- [Co-managed JIT login](https://docs.idemeum.com/portals/comanaged-jit-login.md): Onboard your customer co-managed admins so that they can leverage JIT access and elevation approvals.
- [Delegate access to tenants](https://docs.idemeum.com/portals/delegate-access-to-tenants.md): Delegate admin access to customer child tenants.
- [Multi-tenant portal (MSP) overview](https://docs.idemeum.com/portals/multi-tenant-portal-overview.md): Idemeum offers multi-tenant architecture to manage multiple customers from a singe dashboard.
- [Portal settings](https://docs.idemeum.com/portals/portal-settings.md): Configure general idemeum portals settings.
- [User and admin portals](https://docs.idemeum.com/portals/user-and-admin-portal.md): Idemeum offers user and admin portals to view resources and manage settings.
- [Privacy policy](https://docs.idemeum.com/privacy-policy.md): Idemeum privacy policy document.
- [Security overview](https://docs.idemeum.com/security/security-overview.md): Security is the fundamental block of our platform.
- [Contact idemeum support](https://docs.idemeum.com/support.md): If you need help please open a ticket or chat with us on Discord.
- [Terms of service](https://docs.idemeum.com/terms-of-service.md): Idemeum terms of service document.
- [Demote / disable / delete user](https://docs.idemeum.com/user-management/disable-demote-delete-user.md): Remove permissions from admin users or completely delete user records from idemeum cloud.
- [Mobile app recovery](https://docs.idemeum.com/user-management/mobile-app-recovery.md): When you reinstall idemeum app, you need to follow recovery process.
- [User groups](https://docs.idemeum.com/user-management/user-groups.md): Add idemeum admins to user groups.
- [User onboarding](https://docs.idemeum.com/user-management/user-onboarding.md): Add new admin users to your idemeum portal.
- [User source](https://docs.idemeum.com/user-management/user-source.md): Configure external user source for mobile admin onboarding.

## OpenAPI Specs

- [openapi](https://docs.idemeum.com/api-reference/openapi.json)

## Optional

- [API](https://api.idemeum.com)