Privilege Management Console QuickStart

This section details the most likely tasks to get started with PMC, including automatically authorizing and assigning computers to groups in PMC.

After you deploy PMC, you can

  • Manage policy
  • Create groups and assign policy
  • Assign computers to these groups

Manage Policy

There are various approaches you can take to PMC. For example, if you are new to PMC, you may want to create a group, assign it as the Default group, add all your computers to that group, and then assign the Privilege Management QuickStart policy to that group.

If you are migrating to PMC, you may want to replicate your existing groups and assign the same policy to them, before authorizing and placing your computers in those groups.

Once you have your policy, you can create groups in PMC and assign policies to those groups.

For more information, please see Manage Policy in the MMC Snap-in.

Create Groups and Assign Policy

Create Groups

  1. Select Groups from the sidebar menu.
  2. Click Create Group.
  3. Enter a Group Name. The Description field is optional.
  4. Click Submit. Your group is created and appears in the grid list below.

Once the group is created, you can set it as the Default group. If set, the Default group will be selected by default when you add one or more computers to a group. To set the group as the Default group, select the desired group name, and then click Set Default at the top of the Groups grid.

The Group Name and Description can be edited at any time by clicking Edit Group from the Group Details page. Click the vertical ellipsis at the end of a group's row to expand a new menu that will take you to the Group Details page.

Assign Policy

  1. Select Groups from the sidebar menu.
  2. Click the vertical ellipses icon on the appropriate group's row to expand more options and select Edit Policy Assignment.
  3. Select the policy you want to assign from the dropdown and the associated revision. By default, the revision is the most recent.

You should see a green dialogue box appear in the upper corner of the console to confirm that the policy was applied successfully.

For details on how you can control the deployment of your policy, please see Manage Policy Deployment Settings.

Install Privilege Management

You need to install Privilege Management for the target operating system, as well as the PMC adapter.

You can view installation package details by visiting the Configuration page.

The Privilege Management installation packages differ based on your operating system:

For 32-bit (x86) systems, choose the Win 32 Bit Download Type.

For 64-bit (x64) systems, choose the Win 64 Bit Download Type.

You need to install Privilege Management for Windows in silent mode with the iC3MODE switch enabled:

Msiexec.exe /i PrivilegeManagementForWindows_x.xxx.x.msi IC3MODE=1 /qn /norestart

For MacOS endpoints, choose the MacOS Download Type.