Easy Install
Installation is via an MSI file, installation can be deployed easily via Intune/Endpoint.
Configurable MFA
If appropriate Azure AD/Entra ID P1 or above license exists, MFA requirements and session controls can be controlled via Conditional Access Policies.
No Servers Required
Apart from Azure AD/Entra ID no additional services are required.
Local Group Access
Access can be granted temporarily or perminantly to any local group on an Azure AD/Entra ID registered device.
PIM & Manager/Designated Approvers
If appropriate Azure AD/Entra ID or Identity Governance License exist in Azure AD/Entra ID it can harness PIM or IG functions to further control access.
Custom Actions
Instead of granting Administrative access, custom commands can be created under priviledge ID without UAC.
Works in RDP
Service can escalate priviledge commands on in a remote desktop session as well as console/desktop sessions.
Session Control
Service and Front End application are state aware, if the service is restarted, it will require the user to log on again to use the service.
Endless Possibilities
You have complete easy control on each & every element that provides endless customization possibilities.