Elevated Applications Policy Group
2 min
if you want an application or command to run based on an approval mechanism, you should add it to this policy group you can link the elevation request to a manager's approval or require the end user to verify themselves via otp as a condition for the application to execute for managerial approval, an approval workflow must be defined beforehand to select it within the elevation settings you can find detailed instructions on how to define an approval workflow in the relevant section of the reference guide when there are multiple commands with managerial approval set as the elevation method, and an end user needs to run several of them, each command is sent individually to the manager for approval the user can determine which requests were approved and which were rejected by monitoring the prompts provided by the agent the screen below provides an example of this interaction for the linux agent, an approval granted through managerial elevation is valid only for that specific active session if the terminal is closed and a new session is started, the user must request and obtain the same approval again to execute the command