Video Learning Center
See the following Video topics for more information on Least Privilege Manager.
Basics and Getting Started
- Kill Local Admin Rights (Run applications with Least Privilege)
- Use Group Policy to remove local admin rights (then Endpoint Policy Manager to enable Least Privilege)
- Link to Computer, Filter by User
- Installing applications-and-Preconfigured-Rules
- Auto Rules Generator Tool (with SecureRun)
- Endpoint Policy Manager Application Control with PP Least Privilege Manager
- Using Least Privilege Manager's SecureRun Feature
- COM Support
- Overcome UAC prompts for Active X controls
How-To & Tech Support
- Elevate (or smack down) scripts and Java JAR files
- Enable end-users to install their own fonts
- Manage, block and allow Windows Universal (UWP) applications
- More security with Combo Rules
- Least Privilege Manager: Deny Messages
- Prevent Edge from Launching
- Stop Ransomware and other unknown zero day attacks with Endpoint Policy Manager SecureRun(TM)
- Least Privilege Manager: Block All Unsigned with SecureRun
- Endpoint Privilege Manager: Use Item Level Targeting to hone in when rules apply.
Methods: Cloud, MDM, SCCM, PDQ
- Use Endpoint Policy Manager Cloud to deploy PP Least Privilege Manager rules
- Using Least Privilege Manager with your MDM service
- Deploying Apps that Require Admin Rights Using Endpoint Policy Manager and PDQ Deploy
- Blocking Malware with Endpoint Policy Manager and PDQ Deploy
Best Practices
- Best Practices for Elevating User-Based Installs
- PPLPM Elevating UWP Applications
- Best Practices of MSI installations from the Windows Store (UWP Applications)
- Security and Child Processes
- Increase security by reducing rights on Open/Save dialogs
- Endpoint Privilege Manager and Wildcards
- Reduce or specify Service Account Rights
- Block PowerShell in General, Open up for specific items
- SecureRun to block User AND System executables
- Elevate apps as standard user, BLOCK other Admins
- Endpoint Policy Manager Least Priv Manager: Self Elevate Mode
ACL Traverse: NTFS and Registry
- Endpoint Policy Manager: ACL Traverse to enable users to delete icons on desktop
- Endpoint Policy Manager and ACL Traverse: How to give rights to modify HOSTS files and similar
- Endpoint Policy Manager ACL and File Traverse: Let any application in Programfiles overcome NTFS permissions
- Endpoint Policy Manager: Overcome ACLs in Registry even as Standard User
Admin Approval, Self Elevate, Apply on Demand, SecureCopy(TM), and UI Branding
- Admin Approval demo
- Using Email / Long Codes
- Understand "Enforce Admin Approval for all installers" behavior
- Endpoint Privilege Manager: Admin Approval Email method (with Notepad instead)
- Self Elevate Mode
- Endpoint Privilege: Re-Authenticate with Self Elevate
- Least Privilege Manager: Apply On Demand
- SecureCopy(TM). Empower users to copy then elevate items
- Branding the UI and Dialogs
- Endpoint Privilege Manager Automatic Rules Creation from Admin Approval Requests
Helpers Tools & Tips and Tricks
- Overcome Network Card, Printer, and Remove Programs UAC prompts
- Endpoint Policy Manager Least Priv Manager Tools Setup
- Getting the helper tools as desktop shortcuts
- Endpoint Privilege Manager: Install Printers via Native NTPRINT Dialog
- Endpoint Privilege Manager: Edit IP SETTINGS EDIT VIA WIN GUI
Eventing
- Events
- Use Discovery to know what rules to make as you transition from Local Admin rights
- Endpoint Policy Manager Cloud + PPLPM + Events: Collect Events in the Cloud
- Using Windows Event Forwarding to search for interesting events
- Auto-Create Policy from Global Audit event
Business Solutions
- Endpoint Policy Manager and WinGet: Overcome UAC prompts when standard users use Windows Package Manager
- Overcome Print Nightmare Standard User UAC Prompts
- Microsoft WDAC recommended block rules Guidance
- PPLPM: Deny Wins Over Self Elevate (using Java installation as example)
Netwrix Privilege Secure for Access Management Integration
- Netwrix Privilege Secure Client - Getting Started with MMC with/without Endpoint Policy Manager
- Netwrix Privilege Secure and the NPS/Endpoint Policy Manager Client
- Endpoint Privilege Manager: NPS Self Elevate Mode (Paid Feature)
- Netwrix Privilege Secure and LICENSING
Mac Integration
- Endpoint Policy Managerfor MacOS Installation (using Endpoint Policy Manager Cloud)
- Mac and Jointoken
- Endpoint Policy Manager Least Priv Manager for Macs Application Package Support
- Endpoint Policy Manager for Mac / Least Priv Manager: System Settings policy
- Endpoint Policy Manager Cloud and SUDO support
- Endpoint Policy Manager Cloud Mac + SUDO Using Wildcard Example
- Application Launch Approval
- Endpoint Policy Manager Cloud +Least Privilege Manager for Mac Events collector
- Endpoint Policy Manager for Mac and Admin Approval
- Endpoint Privilege Manager for Mac: Mount / Unmount Part I
- Endpoint Privilege Manager for Mac: Mount / Unmount Part II
- Endpoint Policy Manager MacOS: Mac Finder Policies
- Endpoint Policy Manager LPM for MacOS: Privilege Policies (for Helper Apps)
- Collect Diagnostics