DocumentationAPI ReferenceRelease Notes
Documentation
Start typing to search…

Glossary

Term Definition
Administrative Privileges Elevated rights on an endpoint that allow system level changes, such as installing software or modifying protected settings. EPM-WM is designed to remove unnecessary administrative privileges while enabling controlled elevation.
Allow as Password Safe User An application rule option that runs an application using a Password Safe managed account instead of the logged-in user.
Analytics Reporting and visualization capabilities that provide insight into application usage, policy enforcement, privilege elevation, and user activity.
Application Control A capability of Endpoint Privilege Management that allows organizations to define which applications are permitted to run with elevated privileges and under what conditions.
Application Definition The identifying attributes used by EPM-WM to recognize and control an application
Application Group A collection of applications treated as a single unit by application rules
Application Rule A rule that controls how an application is handled (allow, block, audit, or elevate).
Appliance Administration Administrative controls used to manage appliance-level settings, maintenance tasks, and operational status.
Application Programming Interface (API) An API is programming interface provided for automation tools and external applications.
BeyondTrust Cloud Region Availability A listing of the geographic cloud regions where BeyondTrust cloud services can be deployed to meet data residency, compliance, and latency requirements.
Challenge/Response Authorization A credential-based prompt requiring a response code before a privileged action proceeds.
Computer A Windows or macOS endpoint with the EPM-WM agent installed that receives policies and reports events.
Computer Group A logical grouping of computers used to assign policies and control how EPM-WM settings are applied.
Content Group A defined set of files or directories controlled independently of applications.
Custom Token A reusable variable used in rules or groups to apply consistent, custom behavior.
Content Group A defined set of files or directories controlled independently of applications

Updated about 1 hour ago

©2003-2026 BeyondTrust Corporation. All Rights Reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.