Term · 27. Emerging Categories 2024-2026
Just Enough Administration JEA
Definition
PowerShell capability (and broader IAM principle) restricting administrative actions to the minimum command-set required for a specific role and time window. Combines with Just-In-Time (JIT) Access to deliver Zero Standing Privilege (ZSP) — no permanent administrative rights, only temporary scoped grants. Microsoft implemented JEA in Windows Server 2016+.
- Synonyms
-
- JEA
- Granular admin rights
- Application
- Regulatory: PCI DSS v4.0.1 Req. 7-8
- Standards & regulations
-
- PCI
- Sources
-
- Microsoft PowerShell Just Enough Administration (JEA) primary source
Related terms
-
Bastion Host
Hardened gateway server providing controlled access to internal systems — users connect to bastion, then jump to target …
-
Emergency Account
Highly-privileged account reserved for emergency use — disaster recovery, lockout recovery, after-hours critical inciden …
-
Privileged Account (PA)
Account with elevated rights to administer systems, modify configurations, access sensitive data, or bypass standard con …
-
Privileged Session Management (PSM)
PAM capability that records, monitors, and analyzes sessions involving privileged credentials — SSH sessions to servers, …
-
Shared Account
Account credentials shared by multiple users — historically common for break-glass scenarios or systems without per-user …
-
CMMC (Cybersecurity Maturity Model Certification) (CMMC)
US Department of Defense framework certifying cybersecurity practices of Defense Industrial Base (DIB) contractors handl …