EPM Windows introduced EndpointUtility.exe in versions 22.3 and higher.
The utility tool helps in a variety of ways including log gathering, troubleshooting or forcing a policy update on an endpoint. This can be run both locally, or remotely.
To successfully run EndpointUtility.exe pending the action, the tool should be run elevated from a CMD line. A rule can simply be added to the “(Default) Privilege Management Tools” application group within Web Policy Editor. Further details on criteria can be found in the below KB article.
The more common arguments for EndpointUtility are for log gathering, performing a connection test or forcing a policy update.
PGCapture:
Local: C:\Program Files\Avecto\Privilege Guard Client\EndpointUtility.exe /cc <Path to folder> <Desired file name>
*Remotely: Enter-PSSession -ComputerName <machine name> -Credential DOMAIN\username
C:\Program Files\Avecto\Privilege Guard Client\EndpointUtility.exe /cc <Path to folder> <Desired file name>
Connection Test(OnPrem):
OnPrem: C:\Program Files\Avecto\Privilege Guard Client\EndpointUtility.exe /bi /c /debug
Force Policy Update:
OnPrem: C:\Program Files\Avecto\Privilege Guard Client\EndpointUtility.exe /bi /p
PMC: C:\Program Files\Avecto\Privilege Guard Client\EndpointUtility.exe /pmc /p
*Requires Administrator privileges on remote machine
Further helpful details, commands, tips can be found by reviewing the below KB’s.
