With BeyondTrust Remote Support, you can focus on solving user problems, not security concerns. Businesses today must not only meet increasingly stringent company security policies, but many are also subject to industry compliance mandates such as HIPAA or PCI. BeyondTrust Remote Support is designed and built on the principles of a Zero Trust Architecture, along with numerous features that promote secure practices and prevent breaches on a day-to-day basis.
Most remote support solutions require you to create support rep accounts manually or with a convoluted semi-automated process. BeyondTrust seamlessly integrates with external user directories, such as LDAP, for simple and secure user management.
Session logging allows for the review of all customer and support representative interactions, and all the events of an individual support session are logged as a text-based log. This log includes representatives involved, permissions granted by the customer, chat transcripts, system information, and any other actions taken by the BeyondTrust representative.
BeyondTrust also allows enabling video session recordings. This records the visible user interface of the customer screen for the entire screen sharing session. Session logging data is available on the appliance in an un-editable format for up to 90 days, but it can be moved to an external database using the BeyondTrust API or the BeyondTrust Integration Client.
Grant access with even more granularity so that just the right levels of access are granted to those who need it, enforcing the concept of "least privilege" in your service desk. BeyondTrust includes a large number of granular permissions that can be granted to manage which features in BeyondTrust a representative has access to and can require end-user prompting so that the user receiving support must approve representative actions.
Policies can be set for users, groups, or sessions, giving administrators significant flexibility and control. Group policies integrate easily with external directory stores to assign permissions based on your existing structures. Session permission policies enable building a security model for each specific support scenario. You can also restrict BeyondTrust use logins to certain times of day.
With BeyondTrust, each customer gets a segmented, single-tenant environment. Your data is never co-mingled with data from any other customer.
BeyondTrust Remote Support includes password vault, allowing users to directly inject credentials into end servers and systems. Injecting credentials directly into sessions obfuscates them from end users, providing another layer of password security. Remote Support also integrates with other password management products, such as BeyondTrust Password Safe, a full-featured privileged credential management solution.