search
Ctrlk

Elevated Access on Endpoints

Control privilege elevation on end-user devices with Keeper Privilege Manager.

hashtag
Overview

Keeper Privilege Manager extends JIT capabilities to endpoints, allowing administrators to grant precise privilege elevation for specific processes, applications, or tasks — without giving users full administrative access. Users operate with standard, non-privileged accounts by default and request elevation only when needed.

Key Features

  • Process-level privilege management across Windows, macOS, and Linux

  • Policy-based elevation rules with granular controls

  • User-initiated elevation requests with approval workflows

  • Comprehensive auditing and reporting

How It Works

  1. Users operate with standard, non-privileged accounts by default.

  2. When administrative privileges are needed, users request elevation for a specific task.

  3. Based on policy, requests are auto-approved or routed for manual approval.

  4. Elevated privileges are granted only for the specified process or time window.

  5. All elevation activity is captured in a full audit trail.

For more information see:

PreviousTime-Limited Access with Automated Credential RotationNextTunnels

Last updated

Was this helpful?