Home » 
Applicable For Endpoint Central MSP 
 
 

Just-In-Time Access

Table of contents

Just-In-Time Access Explained

Just-in-Time (JIT) access in Endpoint Central's Application Control allows administrators to grant temporary, limited privileges to users for specific tasks. This eliminates the risks associated with providing continuous administrative rights. With JIT access, users are granted access only when they need it and for the specific tasks they require for a limited period of time.

Just-In-Time Access View

The Importance of Just-In-Time Access

JIT access is a proactive approach to access management that provides a significant boost to security. By granting limited, temporary privileges only when necessary, it effectively minimizes the potential for unauthorized access and reduces the risk of insider threats. This approach ensures that users have the required access to perform their tasks without compromising overall security by granting continuous administrative rights. Implementing JIT access is a strategic decision that can have a profound impact on an organization's security posture. It helps to establish a more secure environment by limiting the potential for unauthorized access, reducing the risk of data breaches, and strengthening the organization's ability to respond to security incidents.

Configuring Just-In-Time Access

The temporary access can be provided to specific computers through the following steps:

  • Login to the Endpoint Central web console and navigate to App Ctrl -> Just in Time Access.
  • Click Create to delegate a new JIT access policy.
  • Provide the Name and Description for the policy.
  • Provide the Computer Name for which you want to provide JIT access.
  • Select the duration type: Fixed or Window. If the duration type is fixed, provide the duration of access and if it's a window, provide a window time frame for which you want to provide the JIT Access.
  • Also, you can temporarily allow the administrator to have access to all applications or self-elevate their privileges. The Access to Applications option of the Access Settings will enable the end-user to run the unmanaged applications even in Strict Mode and the Self-Elevation of Privileges option will grant the user to self-elevate their privileges to all applications allowed.
  • Click Deploy Immediately.

    JIT Access Policy Creation