No, really. Hear me out on this one.
A Privilege Management solution at its core does one thing: It shatters the binary, on-versus-off nature of Administrator rights into a glorious spread of discrete privileges assigned to specific individuals. With a Privilege Management solution, you can identify exactly what actions every user is allowed to accomplish. Those actions spread across Windows controls, impact applications, and drive custom rules for special needs.
Now, let's take that simple solution one step further. With the "allowing" and "blocking" mechanisms such a solution puts into place, an IT administrator might disallow applications from installing or even running – all but the approved few. Privilege Management might eliminate those inappropriate or quasi-appropriate apps from even finding their way onto your network. Users might be given rights to install certain apps, but not all, eliminating Elf Bowling and its contemporaries entirely.
Privilege Management might even assure software license compliance. By restricting application execution to approved apps only, you'll never get caught red-handed by an audit.
Even some forms of malware might be prevented. With hash rules and certificate rules that positively verify your code hasn't been altered, you know that every executable is the right executable. Take that, malware!
Call me crazy, but I can't get the idea out of my head that Privilege Management and its solutions are exactly what every IT needs. Smartly implemented, they create an IT environment of approved execution, taming a wild and wooly network overnight into a calm and safe suburb of HOA rules and gated security. That's serenity now.
What do you think? Could a Privilege Management solution solve every IT problem? I've got to know what you're thinking.