Tensor lockdown

Shirazmohammed · July 2024

we have just had a pen test and it seems if a user provides id and password to anyone outside the org they can connect to the device, this is an issue as we will get people who pretend to be the organisations service desk and ask for these details, the test showed aa the hacker gained access to the device.

we were under the assumption only agents on team viewer with SSO can only remote on the devices.

JeanK · July 2024

Hi @Shirazmohammed,

Thanks a lot for reaching out!

The Conditional Access feature could cover the exact use case you are describing.

With Conditional Access, you can have full control over which users/devices are allowed/blocked to connect to which users/devices.

Could you please check if you have Conditional Access within your TeamViewer Tensor plan?

/JeanK

Shirazmohammed · July 2024

I don't think we have conditional access policy, is this an Add on?

JeanK · July 2024

Correct - Conditional Access is an add-on.

You can check our https://www.teamviewer.com/en-us/global/support/knowledge-base/teamviewer-tensor-classic/security/conditional-access/ Knowledge Base article to see if this is something you might want to consider in the future. You can also check https://www.teamviewer.com/en/products/tensor/features/conditional-access/ , which also provides more high-level information about it.

Let me know if you have any further questions!

/JeanK

Tensor lockdown

Answers

Categories

This Week's Leaders