Just Enough Administration (JEA)
E193821
Just Enough Administration (JEA) is a PowerShell-based security framework that enables role-based, least-privilege remote administration by granting users only the specific commands and access they need.
All labels observed (2)
| Label | Occurrences |
|---|---|
| Just Enough Administration | 1 |
| Just Enough Administration (JEA) canonical | 1 |
How this entity was disambiguated
This entity first appeared as the object of triple T1719105 — resolving that mention is where its identity was fixed. The disambiguator weighed these candidate entities and picked the highlighted one (or “None”, minting a new entity). This is how homonymy is resolved: the same surface form can point to different entities.
Target entity: Just Enough Administration (JEA) Context triple: [PowerShell, supportsSecurityFeature, Just Enough Administration (JEA)]
-
A.
PowerShell
PowerShell is a task automation and configuration management framework from Microsoft, featuring a powerful command-line shell and scripting language built on .NET.
-
B.
Red Hat Ansible Automation Platform
Red Hat Ansible Automation Platform is an enterprise-grade IT automation solution that orchestrates configuration management, application deployment, and workflow automation across hybrid and multi-cloud environments.
-
C.
Microsoft Management Console 2.0
Microsoft Management Console 2.0 is a system administration framework from Microsoft that provides a unified, extensible interface for managing Windows components and services through snap-in tools.
-
D.
SolarWinds
SolarWinds is an American software company best known for its IT infrastructure management tools and for being at the center of a major 2020 supply-chain cyberattack.
-
E.
Continuous Diagnostics and Mitigation tools
Continuous Diagnostics and Mitigation tools are cybersecurity solutions that provide ongoing monitoring, vulnerability management, and risk assessment to help organizations strengthen and maintain their security posture.
- F. None of above. chosen
- G. Unsure - the case is ambiguous/there is not enough information to decide.
Target entity: Just Enough Administration (JEA) Target entity description: Just Enough Administration (JEA) is a PowerShell-based security framework that enables role-based, least-privilege remote administration by granting users only the specific commands and access they need.
-
A.
PowerShell
PowerShell is a task automation and configuration management framework from Microsoft, featuring a powerful command-line shell and scripting language built on .NET.
-
B.
Red Hat Ansible Automation Platform
Red Hat Ansible Automation Platform is an enterprise-grade IT automation solution that orchestrates configuration management, application deployment, and workflow automation across hybrid and multi-cloud environments.
-
C.
Microsoft Management Console 2.0
Microsoft Management Console 2.0 is a system administration framework from Microsoft that provides a unified, extensible interface for managing Windows components and services through snap-in tools.
-
D.
SolarWinds
SolarWinds is an American software company best known for its IT infrastructure management tools and for being at the center of a major 2020 supply-chain cyberattack.
-
E.
Continuous Diagnostics and Mitigation tools
Continuous Diagnostics and Mitigation tools are cybersecurity solutions that provide ongoing monitoring, vulnerability management, and risk assessment to help organizations strengthen and maintain their security posture.
- F. None of above. chosen
Statements (49)
| Predicate | Object |
|---|---|
| instanceOf |
PowerShell feature
ⓘ
least-privilege administration technology ⓘ security framework ⓘ |
| abbreviation | JEA ⓘ |
| accessControl | maps users or groups to specific JEA roles ⓘ |
| basedOn | PowerShell ⓘ |
| benefit |
improves accountability of admin actions
ⓘ
reduces attack surface of administrative endpoints ⓘ supports compliance requirements for privileged access control ⓘ |
| category |
Windows security technology
ⓘ
privileged access management ⓘ |
| configurationMechanism |
Desired State Configuration (DSC)
ⓘ
surface form:
PowerShell DSC can be used to deploy JEA configurations
|
| controls |
which PowerShell providers a user can access
ⓘ
which cmdlets a user can run ⓘ which external programs a user can run ⓘ which functions a user can run ⓘ which parameters and parameter values can be used ⓘ |
| designGoal | to allow non-admin users to perform tightly scoped admin tasks safely ⓘ |
| developedBy | Microsoft ⓘ |
| documentationURL | https://learn.microsoft.com/powershell/scripting/learn/remoting/jea/overview ⓘ |
| enables | delegation of specific administrative tasks without full admin rights ⓘ |
| enforces | principle of least privilege ⓘ |
| feature |
PowerShell session configuration
ⓘ
auditing of administrative actions ⓘ command whitelisting ⓘ constrained PowerShell endpoints ⓘ parameter and value constraints ⓘ role capability files ⓘ transcript logging ⓘ |
| fullName |
Just Enough Administration (JEA)
self-linksurface differs
ⓘ
surface form:
Just Enough Administration
|
| integratesWith |
Active Directory-based authentication
ⓘ
Just-In-Time Administration solutions ⓘ PowerShell ⓘ
surface form:
Windows PowerShell
Windows Server ⓘ |
| introducedIn | Windows Management Framework 5.0 ⓘ |
| logging | can record all commands executed in a JEA session ⓘ |
| platform | Windows ⓘ |
| purpose |
to enable granular delegation of administrative tasks
ⓘ
to limit administrative access to only required actions ⓘ to reduce security risk from excessive privileges ⓘ |
| recommendedBy | Microsoft Security Guidance ⓘ |
| scope | can be applied to specific servers or services ⓘ |
| securityModel | endpoint-based privilege restriction ⓘ |
| supports |
least-privilege access
ⓘ
remote administration ⓘ role-based administration ⓘ |
| uses |
PowerShell remoting
ⓘ
PowerShell session configurations (.pssc files) ⓘ role capability files (.psrc files) ⓘ |
How these facts were elicited
The pipeline generated the facts above by prompting gpt-5.1 with this entity's name + description and the instruction below.
You are a knowledge base construction expert. Given a subject entity and a description of it, return factual statements that you know for the subject as a JSON list of dictionaries(triples), where keys must be "subject", "predicate" and "object". The number of facts may be very high, between 25 to 50 or more, for very popular subjects. For less popular subjects, the number of facts can be very low, like 5 or 10. # Requirements - If you don't know the subject at all, return an empty list. - If the subject is not a named entity, return an empty list. - Include at least one triple where predicate is "instanceOf". - Do not get too wordy. - Separate several objects into multiple triples with one object.
Subject: Just Enough Administration (JEA) Description of subject: Just Enough Administration (JEA) is a PowerShell-based security framework that enables role-based, least-privilege remote administration by granting users only the specific commands and access they need.
Referenced by (2)
Full triples — surface form annotated when it differs from this entity's canonical label.