This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(316.8, 47%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJK%3C/text%3E%3C/svg%3E)
Hey.
My organisation is considering deploying EPM to our devices and I was wondering if Endpoint Privilege Management can elevate requests for tasks other than launching applications and adjusting some Windows settings? Specifically, I'm interested in understanding if it can handle other administrative tasks, like uninstalling applications through Apps - Installed apps or change configurations like network adapters, which currently require administrative rights.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 30%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
@Joel Kettukorpi, Thanks for posting in Q&A. Currently EPM supported to elevate PowerShell script.
https://call4cloud.nl/epm-msi-file-extensions/
Note: None-Microsoft link, just for the reference.
You can write PowerShell script to open Settings or Control Panel.
https://everything-powershell.com/how-to-open-up-settings-in-windows-11-using-powershell/
Note: None-Microsoft link, just for the reference.
After that, you can try to configure elevation rules to elevate PowerShell scripts with EPM.
You can try the above suggestion and if there's any update, feel free to let us know.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
@Joel Kettukorpi, Hope things are going well. If there's any update, feel free to let us know.
Hi, thanks for the reply. While this solution is not optimal, it's worth considering. Thank you.
Hi Joel,
Thanks for your question here at Q&A! Yes, Endpoint Privilege Management (EPM) can handle elevation requests beyond just launching apps. It supports administrative tasks like:
Uninstalling applications (via Settings > Apps > Installed apps)
Modifying network adapter settings (IP, DNS, enabling/disabling adapters)
Other system configurations (disk management, printers, Windows Update)
However, some complex or multi-step operations (e.g., certain driver installations) may still require full admin rights. For best results, we recommend testing your specific scenarios in a pilot group first.
Best regards,
Alex
P.S. If my answer help to you, please Accept my answer
Thank you for you reply Alex.
I have been testing the functionality of EPM on a test device and while there is the "Run with elevated access" option in Desktop shortcuts, I can't find such option in Settings menu. Both Settings and Control Panel always prompt UAC and require administrator username and password, when trying to uninstall apps, for example.
I have attached a picture of Control Panel's context menu, there is no option for elevating access with EPM. Trying to edit network adapters in Settings also just brings up UAC, asking for admin account and password.
Hi Joel,
thanks for testing and sharing those details. yes yes you’re right EPM’s "Run with elevated access" option currently does not appear in context menus within Settings or Control Panel (as shown in your screenshot). This is a known limitation :)
Settings/Control Panel actions (e.g., uninstalling apps, editing network adapters) trigger UAC prompts directly, bypassing EPM’s context menu integration.
Use Desktop shortcuts (where EPM’s elevation option appears) for common admin tasks.
Configure Intune policies to auto-elevate specific processes (e.g., msinstaller.exe for app removals).
Leverage PowerShell scripts for silent elevation of predefined tasks (deployed via Intune).
Best regards,
Alex
P.S. If my answer help to you, please Accept my answer