What is CyberArk Endpoint Privilege Management (EPM)?

CyberArk Endpoint Privilege Management (EPM) is a security solution designed to enforce the principle of least privilege on endpoints by allowing only necessary permissions for users and applications. It also allows the ability to securely grant permissions to enable endpoint devices. It ensures that users and applications only have the permissions they need to perform their tasks, reducing the risk of unauthorized access and potential security breaches.

EPM also provides a secure way to grant elevated permissions when necessary, enabling the university community to accomplish perform their specific duties . This minimizes the risk of unauthorized access and helps prevent potential security breaches and its impact.without compromising security. By limiting excessive privileges, EPM minimizes vulnerabilities and protects sensitive information.

How EPM Enhances Security

With CyberArk EPM, users can still perform their necessary tasks, but they will continue performing essential tasks but may need to verify their identity for certain actions, adding an extra specific actions requiring elevated privileges. This additional layer of security . This helps keep your information safe helps safeguard personal and institutional data from being stolen or misused.

Changes to the User Account Control (UAC)

The User Account Control (UAC) prompt is a built-in Windows feature in Windows that asks for permission before making changes that require administrative rights. It's like a pop-up that prompts users to confirm or approve changes requiring administrative rights. Think of it as a safeguard that asks, "Are you sure you want to do this?" to prevent unauthorized changes.

With the introduction implementation of CyberArk Endpoint Privilege Manager ( EPM), there are a few key changes, the UAC process has been enhanced:

1. New Appearance: The prompt window will look different.

Instead of the

default UAC pop-up,

you’ll see a

redesigned window

provided by CyberArk EPM. This updated interface offers a consistent and secure experience.

2. Multi-Factor Authentication (MFA):

For certain high-privilege actions,

you’ll need to verify your identity using MFA. This

typically involves providing an additional form of

authentication,

such as entering a code sent to your phone,

ensuring only authorized users can proceed with sensitive tasks.

These changes enhance security while maintaining ease of use, helping protect the university's digital environment from unauthorized access and threats.