This document provides information about the Privilege Profile report screen on EPM macOS, where administrators can create, edit, and manage privilege profiles that group multiple macOS policies and assign them to users or devices.
Path to access
- On Segura® Platform, in the navigation bar, hover over the Products menu and select EPM.
- In the side menu, select Policies > MacOS > Privilege Profile.
Actions menu
| Item |
Type |
Description |
| Add |
Button |
Opens the Privilege profile screen. |
| Actions |
Dropdown menu |
Displays the options: Print report, Export CSV, and Schedule report. |
Search fields
| Item |
Type |
Description |
| Name |
Text field |
Filters privilege profiles based on the name. |
| Targets |
Dropdown menu |
Filters privilege profiles based on the defined targets. The options are: Not specified, None, and Specified. Clear the field to enable the All option. |
| Status |
Dropdown menu |
Filters privilege profiles based on the status. The options are: Enabled and Disabled. Clear the field to enable the All option. |
| Change date |
Date picker |
Filters privilege profiles based on the change date. |
| Clear |
Button |
Clears all filters applied. |
Report fields
- Code: identification code of the privilege profile.
- Name.
- Items: number of policies configured in the privilege profile.
- Targets.
- Include: date and time when the privilege profile was created.
- Inclusion user: user who created the privilege profile.
- Change date: date and time when the privilege profile was last edited.
- User of change: user who last edited the privilege profile.
- Status.
- Actions:
- Edit: opens the Privilege profile screen in edit mode.
- Details: opens the privilege profile details screen.
- Clone: creates a copy of the privilege profile.
- Enable/Disable: activates or deactivates the privilege profile.
Privilege profile screen
This section provides information about the Privilege Profile screen, where administrators can add/edit a privilege profile.
General tab
| Item |
Type |
Required |
Description |
| Name * |
Text field |
Yes |
Name of the privilege profile. |
| Status * |
Radio button |
Yes |
Status of the privilege profile. The options are: Enabled and Disabled. |
| Description |
Text field |
No |
Description of the privilege profile. |
| Specify targets to apply * |
Radio button |
Yes |
Indicates whether targets will be specified to receive the profile privileges. If the selected option is Yes, the Targets tab is displayed. |
Access policies tab
| Item |
Type |
Required |
Description |
| Access policies |
Table |
No |
Lists the configured access policies. The fields are: Code, Name, Policy, and Segregation. |
Sudo rules tab
| Item |
Type |
Required |
Description |
| Sudo Rules |
Table |
No |
Lists the configured sudo rules. The fields are: Code, Name, and Rule. |
Authorization rights tab
| Item |
Type |
Required |
Description |
| Authorization Rights |
Table |
No |
Lists the configured authorization rights. The fields are: Code, Name, and Authorization rights. |
Targets tab
This tab will only be displayed if the Specify targets to apply * field is set to Yes.
| Item |
Type |
Required |
Description |
| Devices |
Table |
No |
Lists the configured target devices. The fields are: Code, Hostname, Domain, IP, and Operating system. |
| Users |
Table |
No |
Lists the configured target users. The fields are: Code, Username, and Domain. |
Review tab
This tab displays a summary of the privilege profile settings with Back and Save buttons.
Privilege profile details screen
This section provides information about the privilege profile details screen, which displays the profile settings in a read-only format.
General tab
| Item |
Type |
Description |
| Name |
Text field |
Name of the privilege profile. |
| Description |
Text field |
Description of the privilege profile. |
| Status |
Text field |
Status of the privilege profile. |
| Targets |
Text field |
Indicates whether targets are specified to receive the privilege profile. |
Access policies tab
| Item |
Type |
Description |
| Name |
Text field |
Name of the access policy configured. |
| Action |
Text field |
Action executed by the access policy. |
| Type |
Text field |
Type of the access policy. |
| Enabled |
Label |
Indicates whether the access policy is enabled or disabled. |
Sudo rules tab
| Item |
Type |
Description |
| Name |
Text field |
Name of the sudo rule configured. |
| Sudo Rules |
Text field |
Specific sudo rule. |
| Enabled |
Label |
Indicates whether the sudo rule is enabled or disabled. |
Authorization rights tab
| Item |
Type |
Description |
| Name |
Text field |
Name of the authorization right granted. |
| Authorization right |
Text field |
Specific authorization right. |
| Enabled |
Label |
Indicates whether the authorization right is enabled or disabled. |
Devices tab
This tab will only be displayed if the Specify targets to apply * field is set to Yes.
| Item |
Type |
Description |
| Domain |
Text field |
Domain of the device configured to receive the privileges. |
| Hostname |
Text field |
Hostname of the device. |
| IP |
Text field |
IP address of the device. |
| Operating system |
Text field |
Operating system running on the device. |
| Enabled |
Label |
Indicates whether the device is enabled or disabled. |
Users tab
This tab will only be displayed if the Specify targets to apply * field is set to Yes.
| Item |
Type |
Description |
| Username |
Text field |
Username of the user configured to receive the privileges. |
| Domain |
Text field |
Domain associated with the user. |
| Enabled |
Label |
Indicates whether the user is enabled or disabled. |