Using the following method you can provide privileged access to a specific application in windows system and capture the user actions:
Application SSO allows you to provide privileged access to specific application in a Windows server and monitor the actions performed in the application without installing a PAM agent.
For information about configuring application SSO, see Application SSO.
The administrator can use the run as privileged user feature to provide privileged access to users for a specific process, system tools, or specific files. For example, service.msc or notepad.exe.
For configuring the windows machine to Run as Privileged, see Workflow to Configure Privileged Access for Windows
After configuring the Run as privileged user policies in Privileged Account Manager, user can execute the Run as privileged user as follows:
Login to the system as an administrator by using any remote desktop accessing tool.
Right-click the process and select Run as privileged user to get privileged access to the process.
NOTE:
In Windows 2008 R2, Shift+right-click the applications in the Start menu to execute Run as privileged user.
In Windows 2012, right-click the application in the folder where the application is installed to execute Run as privileged user.
You can also provide privileged access to specific files.
For Example: To provide privileged access to critical.txt file:
Create a short-cut to Notepad.
Notepad is the process that is used to open the critical.txt file.
Right-click the short-cut to Notepad, then select Properties.
In the Target field, add the file path of the critical.txt file after the file path of the process, then click OK.
NOTE:For example, the path can be added in the following format:
C:\WINDOWS\system32\notepad.exe "C:\critical.txt"
Right-click the shortcut and select Run as privileged user to provide privileged access to the critical.txt file.