Control every app and privilege
on your endpoints

On-premises

Cloud via Endpoint Security Platform

30-day free trial

No credit card required

Free forever up to 25 endpoints

Trusted by leading brands worldwide

Just-in-time access control

Grant temporary application execution and privilege elevation, then automatically revokes access based on policy.

Available only in Endpoint Central with Application Control and Endpoint Privilege Management add-on

Autonomous approval

Passwordless Elevation

Block the unknown. Elevate only when necessary.

Application Control

Stop unauthorized applications from running on endpoints.

Allowlist and blocklist apps
Create rules to allow trusted applications and block risky or unapproved software.
Audit unauthorized applications and block events
See what would be blocked before enforcement. Track unmanaged executions and block attempts.
Just-in-time application access
Temporarily allow specific apps when needed and revoke access automatically.

Endpoint Privilege Management

Grant temporary admin access when users need it.

Eliminate excessive admin privileges
Eliminate standing local admin access to reduce attack surface.
Passwordless, app-specific elevation
Elevate only the app or task without sharing admin passwords.
Just-in-time elevation access
Grant time-bound elevation and auto-revoke based on policy.
Elevate control panel and administrative tools
Allow standard users to securely access Control Panel applets and built-in administrative tools without full admin rights.

Discover

Identify applications running across endpoints.

Audit

Monitor execution and policy impact without disrupting users.

Enforce

Allow only approved applications and blocks everything else by policy.

5M+

Endpoints secured

100+

countries served

5000+

organizations worldwide

Pick the Right Path to Control

Start free to validate policies. Upgrade when you are ready to roll out controls at scale.

Free Edition

$0up to 25 endpoints

Professional Edition

$6/ endpoint per year*

Application allowlisting and blocklisting
Audit mode visibility for apps and elevation
Policy-based control for execution and privilege
Elevation workflows without sharing admin credentials
Reporting and activity trail for governance

The more you scale, the lesser you pay per endpoint.

Get a personalized quote

*for 1000 endpoints

Want complete endpoint protection?

Explore Endpoint Central

+ Everything in Application Control Plus

Vulnerability management
Patch Management
Enterprise data security
Data loss prevention
Endpoint detection and response
Enterprise browser security
Peripheral device control

Frequently Asked Questions

How does application control reduce the attack surface?

What types of organizations need application control?

Can application control be deployed without disrupting users?

Can I get a demo of ManageEngine Application Control Plus?