Documentation

Policy management

Suggest Edits

Create, edit, and modify policies, users, groups, and endpoints.

What is a role-based policy?

A role-based policy (RBP) defines which users can use commands, and when they can perform these actions on endpoints. You can create, edit, and delete policies on managed policy servers.

How is a role-based policy useful to my organization?

By automating and centralizing access control, our role-based policies improve security posture, reduce administrative overhead, and ensure compliance, making them an essential tool for organizations managing privileged access.

Policy workflow

To create and deploy a policy, follow this workflow:

  1. Ensure you've created and downloaded your installer packages, and deployed them to your endpoints.
  2. Create and configure roles that you will apply to multiple secure users.
  3. Create your secure users and secure groups.
  4. Assign configured roles to your secure users and secure groups.
  5. Create your command groups to define the policy's allowed and rejected commands.
  6. Create your host groups to determine where to apply the policy.
  7. Schedule your secure, command, and host groups to manage when to apply the policy.

Updated about 1 month ago

©2003-2025 BeyondTrust Corporation. All Rights Reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.