BeyondTrust PowerBroker Desktops allows administrators to assign permissions to applications and tasks, enabling the users to do their job safely and without interruption. With PowerBroker Desktops, organizations control the execution of applications, software installs, ActiveX controls, and system tasks that require elevated or administrative rightsall while keeping the user safe, productive and preserving the users security context. PowerBroker Desktops is integrated with Active Directory and applied through Group Policy. Policy is applied by creating rules in the Group Policy Object Editor. PowerBroker Desktops is implemented as a true Group Policy extension. Applications, users and computers are targeted using standard Group Policy conventions and PowerBroker Desktops per-setting filters. Simply specify the application and which permissions and privileges should be added to and/or removed from the process token when the application is launched. By setting PowerBroker Desktops policy, end-users without administrative privileges will be able to run all applications.