Technician mode
Technician mode allows technicians to bypass any elevation rules to perform administrative work on the workstation.
Overview
Technician mode allows your IT and MSP staff to do administrative work on computers (Windows and MacOS) without being logged in with admin account. There is no need to know admin credentials - simply launch the Technician mode application and scan the QR-code to authenticate.
Once Technician mode is initiated:
- All elevation block rules will be bypassed
- The default 10-minute timer will start after which the computer will revert back to user more with rule enforcement. The timer can be configured in the admin portal.
- Every elevation performed while in technician mode is performed as
adminelevation - Technician mode session is captured in the audit logs
Launch technician mode
- When the the user is logged into the workstation and you need to enter the
Technician mode, simply search forTechnician modeapplication on Windows or MacOS.
- Then you will see the pop up with the idemeum QR-c0de. Scan this QR-code with idemeum mobile application and authenticate with biometrics.
- Once approved, the default 10-minute timer will start. You will be able to perform any privileged actions bypassing the elevation rules.
- To exit the
Technician modesimply close the pop up windows or click onBack to user mode
Configure the default technician mode timer
- Navigate to your customer tenant admin portal
- Access
Settings→PAMand scroll down toElevation control - Configure the
Technician mode intervalin minutes
