Product Description: PolicyMaker Application Security is the first product that enables network administrators to enforce the security principle of Least Privilege on Windows desktops. With it organizations can effectively run end-users as non-administrators, significantly reducing their exposure to malware and malicious end-users. PolicyMaker Application Security is a member of the award-winning PolicyMaker family of Group Policy Extension products. By incorporating management tasks into the Windows Group Policy system, PolicyMaker products allow for standardization on a single methodology and built-in infrastructure. This significantly reduces acquisition cost, training time and management infrastructure while increasing reliability and maintainability over scripting and utilities.
Performance: PolicyMaker Application Security leverages the native Group Policy framework and as such scales easily from the smallest to the largest Active Directory network.
Concurrent Managed Desktops/Users: No Limit
Number of Policies: No Limit
Number of Filters for targeting GPOs: 25
Key Features & Benefits:
Elevate the permission level for restricted users for selected tasks or applications that require higher privileges - increasing security and reducing IT support costs
Target an application or task process with a privilege policy by p ath to an executable file, folder/share, hash rule, MSI path rule, MSI folder rule, ActiveX rule - increasing efficiency and manageability
Reduce the permission level for administrators working on applications such as Internet Explorer and Microsoft Outlook - increasing security and reducing IT support costs
Allow restricted users to install approved ActiveX controls while running Internet Explorer in their restricted user security context – increasing productivity
Provide self-service software installation points for restricted users - reducing administrator workload in supporting unmanaged software installation without compromising security.
Inoculate computers against Shatter Attacks that might otherwise result in unauthorized privilege escalation and complete loss of system control - increasing security
Highlights: PolicyMaker provides the world’s first and only effective solution to enable the security principle of Least Privilege on Windows networks. Organizations have a need for end-users to run tasks that require elevated permissions. In order to meet these needs without PolicyMaker administrators grant these users administrator permissions – for all tasks. In addition to giving the user unnecessary access to do harm to the network, most malware enters a computer, and thereby an enterprise, in the user's security context. Thus, malware can take advantage of the end-user's excess privilege to self-install and otherwise cause damage and propagate. PolicyMaker solves the critical security problem of Least Privilege for practically every IT organization. With PolicyMaker administrators can adjust application privilege levels to the lowest possible point in order to limit damages stemming from network attacks or user error.
End-Users: While PolicyMaker Application Security provides benefits to any organization using Microsoft’s Active Directory, it is especially beneficial to organizations with stringent regulatory compliance and security requirements. Customers tend to be mid-market or large enterprises and come from all industries. Customers range in size from 25 users to over 100,000 users. The primary end-users within these organizations are the Chief Security Officers and their senior security personnel.
