Endpoint Privilege Management (EPM) is a feature of Microsoft Intune that allows IT and SecOps teams to run users as standard users while elevating privileges only when needed. This helps to improve security and reduce the risk of malware infections.
EPM now supports Windows 365, which is Microsoft’s cloud-based virtual desktop service. This means that users can now use EPM to elevate privileges on their Windows 365 cloud PCs.
To use EPM, IT admins must first create an elevation settings policy. This policy defines the types of tasks that users can perform without elevation, the types of tasks that require elevation, and the level of approval required for elevation.
Once the elevation settings policy is created, IT admins can deploy it to users. Users will then be able to elevate privileges on their devices using the Intune portal or the Intune app.
Benefits of using EPM:
- Improved security: EPM helps to reduce the risk of malware infections by running users as standard users by default.
- Increased productivity: EPM allows users to perform tasks that require elevation without contacting the IT helpdesk.
- Reduced costs: EPM can help to reduce the costs associated with supporting and managing endpoints.
How to use EPM with Windows 365:
- Create an elevation settings policy.
- Deploy the elevation settings policy to users.
- Users can then elevate privileges on their Windows 365 cloud PCs using the Intune portal or the Intune app.
EPM is a powerful tool that can help IT teams to improve security, increase productivity, and reduce costs. EPM now supports Windows 365, which means that users can now use EPM to elevate privileges on their Windows 365 cloud PCs.