DocumentationAPI ReferenceRelease Notes
Log In
Documentation

Management Rules

Suggest Edits

What are management rules?

Management rules define when EPM for Windows and Mac automatically archives, deletes, or deactivates computers, as well as when to run a system purge of local AD connectors.

What are system management rules?

EPM for Windows and Mac has four system management rules.

  • Archive Rule: Archives computers after they are disconnected for 90 days. You can change and delete this default rule.
  • Deletion Rule: Soft deletes computers after they have been archived for 90 days. The computer still resides in the database. You can change and delete this default rule.
  • System Purge Computer Rule: Deactivates computers after they are deleted for 7 days; purges computers from the database after they are deactivated for 14 days. This rule cannot be deleted. You can adjust the number of days before deactivating computers (default value is 7 days).
  • System Purge Connector Rule: Purges local AD connectors from the database after the connectors are deleted. You can change the number of days since a connector was deleted; other properties of the rule cannot be changed.

ℹ️

Note

A standard user requires delegated access to this feature. For more information, see User management.

Important information about management rule processing

  • The order of the rules in the list determines the priority and when the rules run.
  • When creating rules, consider the conditions in the rule before setting the order. If the action in one rule is set to Delete, and the action in another rule is set to Archive, set the archiving rule to run first.
  • A delete rule only deletes computers when the computers are already archived (by another rule).
  • A rule triggers when a computer matches on all conditions configured in a rule.
  • The properties configured in a rule are joined with and logic.
    • If you want to use or logic, create two rules. If the condition is not triggered on the first rule, then it triggers on the second rule.

The Management Rules page

  1. Left menu: Easy access to all pages in Endpoint Privilege Management, including the Home, Policies, Computers, Computer Groups, Management Rules, Analytics, Just-in-Time Access Management, Configuration, Auditing, and User Management pages.
  2. Header: Enter keywords to run a global search across computer groups, policies, computers, and users, view your notifications, change your site language, change your time zone, and log out of EPM for Windows and Mac.
  1. Filters: Select a filter to refine your results. Click Clear Filters to remove all filters from your results.

👍

Filter types
  • Name: Search for all or part of a management rule name.
  • Status: Search by a rule's current status (Active or Inactive).
  • Created: Select the date(s) when the rule was created.
  • Last executed: Select the date(s) when the rule was last run.
  1. Create Rule: Click to open the Create Rule page.
  2. List options: Click to refresh the list, Download icon in [%=Products.PMAb%] SaaS. to download the list to a .csv file, and to select which columns to display on the page.
  3. Management Rules list columns: Not all columns display in the image above.

👍

Column names

  • Priority: The policy name.

  • Name: The rule name.

  • Description: The description provided when the rule is created.

  • Status: The state of the management rule (Active or Inactive).

  • Created: The date and time the rule was created.

  • Last Executed: The date and time the rule last ran.

Edit a system rule

📘

Note

You can only edit specific settings within system rules.

  1. From the left menu, click .
    The Management Rules page displays.
  1. Locate the system rule you want to edit.
  2. Click > Edit Rule Details.
    The Edit Rule Details page displays.
  3. Edit the following:
    • For the Archive Rule: any rule property
    • For the Deletion Rule: any rule property
    • For the System Purge Computer Rule: the number of days before deactivating computers (default is 7 days)
    • For the System Purge Connector Rule: change the number of days since a connector was deleted
  4. Click Validate Settings.
    A confirmation message displays.
  5. Click Save Changes.
    Your changes save and, if you selected to execute it immediately, runs.

Create a new custom rule

  1. From the left menu, click .
    The Management Rules page displays.
  1. Click Create Rule.
    The Create Rule page displays.
  2. Add a name.
  3. Optionally, add a description.
  4. Select a Property to define one or more conditions.

    ℹ️

    Select the computer property you want to trigger the rule on a computer. The list of properties available includes all computer properties collected by EPM. A rule triggers when a computer matches on all of the conditions configured in a rule.

  5. Select an Action (Archive or Delete).
  6. Set the Frequency.

    ℹ️

    Choose On Demand if you do not want the rule to automatically run at regular intervals.

  7. Optionally, check Execute immediately if you want to run the rule immediately upon saving.
  8. Click Validate Settings. Validating rules ensures there are no conflicts in the conditions set, and verifies properties are not used twice in the same rule.
    A confirmation message displays.
  9. Click Create Rule.
    The custom rule saves and, if you selected to execute it immediately, runs.

Edit a custom rule

  1. From the left menu, click .
    The Management Rules page displays.
  1. Locate the rule you want to edit.
  2. Click > Edit Rule Details.
    The Edit Rule Details page displays.
  3. Edit the name, description, criteria, action, and/or frequency.
  4. Click Validate Settings.
    A confirmation message displays.
  5. Click Save Changes.
    Your changes save and, if you selected to execute it immediately, runs.

Activate or deactivate a rule

You can activate or deactivate both system and custom rules.

  1. From the left menu, click .
    The Management Rules page displays.
  1. Locate the rule you want to activate or deactivate.
  2. Click either > Activate Rule or > Deactivate Rule.
    A confirmation message displays.
  3. In the confirmation message, click either Activate Management Rule or Deactivate Management Rule.
    The rule activates or deactivates as selected.

Reorder your rules

⚠️

Important information

Rules run in the priority order you set on the Management Rules page.

  1. From the left menu, click .
    The Management Rules page displays.
  1. Locate and click the row of the rule you want to reorder.
  2. Click Move Up, Move Down, Move to Top, or Move to Bottom.
    The rule reorders and priority status is reassigned in numerical order from the top down.

Delete a rule

❗️

WARNING

Deleting a rule is an unrecoverable operation.

You cannot delete the System Purge Computer or System Purge Connector system rules.

  1. From the left menu, click .
    The Management Rules page displays.
  1. Locate the rule you want to delete from the list.
  2. Click > Delete .
    A confirmation message displays.
  3. Click Delete Management Rule.
    The rule is deleted.

Updated 3 days ago

©2003-2025 BeyondTrust Corporation. All Rights Reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.