How to Configure Intune Endpoint Privilege Management – Support Approval & User Elevation
In this video, I walk through how to configure Endpoint Privilege Management (EPM) in Microsoft Intune covering two real-world scenarios: support-approved elevation requests and user-initiated elevation using a publisher certificate rule.
EPM lets standard users run specific applications with elevated privileges without giving them full local admin access. Everything is policy-driven, auditable, and controlled from the Intune admin center.
Full written guide : mertefekanlikilic.com
00:00 – What is EPM & what we'll cover
00:30 – Creating the Elevation Settings Policy
02:24 – User side: submitting an elevation request
03:11 – Admin side: approving the request in Intune
04:11 – User side: approved elevation test
04:46 – Exporting the publisher certificate
05:59 – Uploading the certificate to Intune
06:22 – Creating the Elevation Rules Policy
08:16 – User side: user-initiated elevation test