Product Description: PolicyMaker was the first product based on Microsoft’s Group Policy Extension and triples the number of extensions available for Group Policy. PolicyMaker enables rapid configuration of Windows desktops across an enterprise for standardization, security and regulatory compliance purposes. By incorporating management tasks into the Windows Group Policy system, the technology allows for standardization on a single methodology. This significantly reduces acquisition cost, training time and management infrastructure while increasing reliability and maintainability over scripting and utilities. With PolicyMaker’s standards-based, policy-centric approach each individual configuration setting is documented and managed, an important benefit in standards compliance and security.
Performance: PolicyMaker leverages the native Group Policy framework and as such scales easily from the smallest to the largest Active Directory network.
Concurrent Managed Desktops/Users: No Limit
Number of Policies: No Limit
Number of Microsoft Group Policy Extensions: 21
Number of Filters for targeting GPOs: 25
Interfaces: Group Policy processing and integration exists according to the Group Policy extension specification from Microsoft. Policies are stored in XML format and reporting data supports the native WMI-based Resultant Set of Policy (RSoP) system.
Key Features & Benefits:
Policy-based configuration of Windows desktops across an enterprise - increasing standardization, security and regulatory compliance
Seamless integration into Windows Group Policy system allowing for standardization on a single methodology - reducing acquisition cost, training time and management infrastructure
Consolidate the number GPOs under management with filters to target individual settings within the scope of a GPO - increasing efficiency and manageability
Centralize management of local security group membership, administrator passwords and Windows services – increasing security and reducing effort to implement and enforce policies
Enable organizations to abide by the fundamental security principle of Least Privileges - i ncreasing security and reducing IT support costs
Automate and unify policy-based patch management – reducing infrastructure
Centralize management of network shares both on servers and workstations - increasing productivity
Restrict visibility of shared resources to end-users with read permission – increasing regulatory compliance
Implement change control, offline editing and difference reporting into Microsoft’s Group Policy Management Console – increasing efficiency
Highlights: PolicyMaker provides the world’s first and only effective solution to enable the security principle of Least Privilege on Windows networks. Organizations have a need for end-users to run tasks that require elevated permissions. In order to meet these needs without PolicyMaker administrators grant these users administrator permissions – for all tasks. In addition to giving the user unnecessary access to do harm to the network, most malware enters a computer, and thereby an enterprise, in the user's security context. Thus, malware can take advantage of the end-user's excess privilege to self-install and otherwise cause damage and propagate. PolicyMaker solves the critical security problem of Least Privilege for practically every IT organization. With PolicyMaker administrators can adjust application privilege levels to the lowest possible point in order to limit damages stemming from network attacks or user error.
End-Users: While PolicyMaker provides benefits to any organization using Microsoft’s Active Directory that seeks to standardize configuration of Windows desktops, improve security and adhere to regulatory compliances, it is especially beneficial to organizations with stringent regulatory and/or security requirements. Customers tend to be mid-market or enterprise and come from all industries. PolicyMaker customers range in size from 25 users to over 100,000 users. The primary end-users within these organizations are the Chief Security Officers and their senior security personnel. Reports produced by the system may be consumed by CSOs or business counterparts, such as CIOs.
