JEA
E724248
JEA is a PowerShell-based security technology from Microsoft that enables role-based, least-privilege administration of Windows systems.
Statements (41)
| Predicate | Object |
|---|---|
| instanceOf |
PowerShell feature
ⓘ
Windows administration technology ⓘ security technology ⓘ |
| basedOn | PowerShell session configuration ⓘ |
| category |
Windows security feature
ⓘ
administration tool ⓘ |
| configuredWith |
PowerShell DSC
NERFINISHED
ⓘ
PowerShell scripts ⓘ |
| controls |
which commands a user can run
ⓘ
which parameters a user can use ⓘ which resources a user can access ⓘ |
| developedBy | Microsoft ⓘ |
| documentationUrl | https://learn.microsoft.com/powershell/scripting/learn/remoting/jea/overview ⓘ |
| enables |
constrained PowerShell remoting sessions
ⓘ
granular delegation of administrative tasks ⓘ |
| fullName | Just Enough Administration NERFINISHED ⓘ |
| implementedIn | PowerShell NERFINISHED ⓘ |
| introducedIn | Windows Management Framework 5.0 NERFINISHED ⓘ |
| limits | exposure of high-privilege accounts ⓘ |
| logging |
PowerShell script block logging
ⓘ
PowerShell transcription ⓘ |
| platform | Windows ⓘ |
| purpose |
to improve security of remote administration
ⓘ
to limit what administrators can do on a system ⓘ to reduce administrative privileges on Windows systems ⓘ |
| recommendedFor |
compliance-driven environments
ⓘ
securing privileged access ⓘ |
| reducesRiskOf |
credential theft
ⓘ
lateral movement ⓘ misuse of administrative privileges ⓘ |
| relatedTo |
PowerShell Just Enough Administration documentation
NERFINISHED
ⓘ
Windows PowerShell remoting NERFINISHED ⓘ |
| securityModel | role-based access control ⓘ |
| securityPrinciple | least privilege ⓘ |
| supports |
auditing of administrative actions
ⓘ
delegation of specific administrative tasks to non-admin users ⓘ least-privilege administration ⓘ role-based administration ⓘ |
| uses |
PowerShell endpoints
ⓘ
PowerShell role capability files ⓘ PowerShell session configuration files ⓘ |
Referenced by (1)
Full triples — surface form annotated when it differs from this entity's canonical label.
subject surface form:
Just Enough Administration