EPM macOS is a privilege management solution for macOS operating systems. Integrated with the Segura® Platform, it allows users of macOS devices to execute graphical applications and terminal commands with privileged access previously defined by the security administrator, with or without intervention. Additionally, it ensures a complete access auditing process, including session recording, approval flows for executions, and event logging on managed devices.
Key features
- Execution policy control for permission or restriction, as well as privilege elevation based on segregation (general, users).
- Application execution recording, as configured for auditing.
- Terminal command control with explicit command restrictions.
- Configuration of actions for executions not specified in policies (Minimum Security Requirements).
- Approval flow for executions, with multi-level approvals.
- Unified graphical interface showing applications and terminal commands configured for execution.
Supported platforms
| Operating System | Version |
|---|---|
| macOS | 26 (Tahoe) |
| macOS | 15 (Sequoia) |
| macOS | 14 (Sonoma) |
System requirements
| Requirement | Minimum Value |
|---|---|
| CPU | Apple Silicon or Intel Chip |
| RAM | 4 GB |
| Disk Space | 500 MB free |
| Architecture | 64 bits |
| Required Permissions | Administrator rights |
Roles
Users within EPM macOS can have different roles, which determine their access and responsibilities. Here are the roles:
| Role | Description |
|---|---|
| macOS EPM Security Analyst | Full access to EPM macOS configuration and resources. |
| macOS EPM Auditor | Read-only access to all EPM macOS reports and configurations. |