Forum Discussion

Iron Contributor

Dec 01, 2023

Endpoint Privilege Management - "Run with elevated access" only required once?

Hi, I am just evaluating EPM and I just wanted to clarify the functionality. I've deployed my settings policy and created a rule to allow a specific app to run with evaluated privileges. The po...

Endpoint Privilege Management (EPM)

MVP

Dec 02, 2023

It depends on how you configured the rule... did you configured the rule on automatic of user confirmed?
If you configure the rule to be automatic... its automatic 🙂 .. so not right click and clicking run elevated

https://learn.microsoft.com/en-us/mem/intune/protect/epm-overview#important-concepts-for-endpoint-privilege-management

Rob-CTL
Iron Contributor
Dec 04, 2023
Hi Rudy_Ooms_MVP

Thanks for the response, yes the policy is set to automatic but the question I was trying to ask, apologies if I wasn't clear, is why on first clicking of a approved privileged app it would cause the UAC prompt to appear and require the user to use the "Run with elevated access" command then after that the user can just double click the app and it will load i.e. not having to go through the "Run with elevated access" process. I am trying to document the process for users so I am just trying to understand if this behaviour is by design.
- Rudy_Ooms_MVP
  MVP
  Dec 04, 2023
  Which app did you configured for epm elevation? As doing this for powershell doesn't give you the uac prompt. I assume that app needs to perform some other tasks first to be able to be launched automatically. If you have the name of the app or could share some more info, i could try to see whats happening and give you the reason why that uac is shown
  - Rob-CTL
    Iron Contributor
    Dec 04, 2023
    Rudy_Ooms_MVP I am using Rufus for testing, it's an app that requires elevated permissions to run. The policy is as follows:

Resources