TeamViewer should be user policy based. Just realized how broken this really is. Regardless if I create a package or not as long as a user is listed in my TeamViewer account they can connect to what ever computer they want regardless if it is part of the network and/or company owned or not. The installer should simply assign itself to our TeamViewer account plain and simple. Then based on policy allow users to connect to only registered computers or not. I can see our staff abusing this for helping other people no employed by the company.
This should work that same way Active Directory does. Users that have an account in Active Directory can only access computers that are domin joined. Simple.