Manage access for users in your company - TeamViewer Support
<main> <article class="userContent"> <p>As already discussed in the <a href="https://community.teamviewer.com/English/kb/articles/108687-restrict-access" rel="nofollow noreferrer ugc">previous chapter</a> it is in general only possible to make a connection to a device</p><ul><li>if the<strong> TeamViewer ID and the associated password</strong> is known or</li><li>if the access is confirmed via <strong>Easy Access</strong> or</li><li>the connection partner <strong>confirmed the access manually</strong>.</li></ul><p>If non of the above points is given, it is <strong>not </strong>possible to access a device.</p><p>Via your <a href="https://community.teamviewer.com/English/kb/articles/3573-all-about-the-teamviewer-company-profile" rel="nofollow noreferrer ugc">Company Profile</a>, you have even other options than discussed to manage and restrict access for users in your company.</p><h2 data-id="what-is-the-company-profile">What is the Company Profile?</h2><p>Within the <a href="https://login.teamviewer.com/LogOn" rel="nofollow noreferrer ugc">TeamViewer Management Console</a>, it is possible to create an online company which allows you to use additional features to manage your license, groups, modules, user etc. in an easy and secure environment.</p><h3 data-id="benefits-of-a-company-profile">Benefits of a company profile</h3><p>You can</p><ul><li>change user permissions centrally. </li><li>add users to your license (Premium, Corporate or Tensor) and</li><li>create TeamViewer accounts to give the users the ability to log into any TeamViewer application and be working under the license.</li></ul><p>Managing users as a company administrator in your company Profile also gives you access to:</p><ul><li>Connection reports (reports of user connections including date, time and frequency)</li><li>Ability to deactivate or remove a user</li><li>Ability to create channel groups</li><li>Ability to share groups of contacts and devices and to manage group permissions</li><li>Ability to change user account passwords</li><li>Ability to change user permissions</li></ul><p>Once you have <a href="https://community.teamviewer.com/t5/Knowledge-Base/How-to-activate-your-license/ta-p/4326" rel="nofollow noreferrer ugc">activated your license on your TeamViewer account</a> you can create your company profile and begin to add users.</p><p><br></p><h3></h3><h2 data-id="deploy-teamviewer-with-your-specified-settings">Deploy TeamViewer with your specified settings</h2><p>Export a settings file from a TeamViewer client. Since version 15.4, you will receive a *.tvopt file. In previous versions TeamViewer exported a *.reg file. For the import, you can use both file types, but we recommend you to use the *.tvopt file.</p><p>While deploying it in your network, your selected settings like restrict <strong>access control </strong>for incoming connections<strong>, LAN connections </strong>and other settings.</p><p>Find a detailed description about TeamViewer Deployment and more information here:</p><div class="js-embed embedResponsive" data-embedjson="{"body":"This article applies to all TeamViewer customers with a Corporate or Tensor license and to TeamViewer versions in 13.2 or newer. Supported Windows versions: Win 7, Win 8, and Win 10 General This article explains how you can deploy TeamViewer Host and TeamViewer Full in a mass deployment scenario on Windows. Installation…","photoUrl":"https:\/\/us.v-cdn.net\/6032394\/uploads\/QOC82OVO5T1G\/share-image-community-links-287-29.png","url":"https:\/\/community.teamviewer.com\/English\/kb\/articles\/39639-mass-deployment-improvements","embedType":"link","name":"Mass deployment on Windows - TeamViewer Support"}"> <a href="https://community.teamviewer.com/English/kb/articles/39639-mass-deployment-improvements" rel="nofollow noreferrer ugc"> https://community.teamviewer.com/English/kb/articles/39639-mass-deployment-improvements </a> </div><p><br></p><h3 data-id="-1"></h3><h2 data-id="deploy-and-enforce-settings-via-policy">Deploy and enforce settings via policy</h2><p>You can deploy all TeamViewer settings centrally via the Management Console for devices inside your domain and outside:</p><p>Settings policies provide you with the ability to set options for all your installed TeamViewer clients centrally via the TeamViewer Management Console. This way, you can deploy and enforce the same settings to all your clients.</p><p>Below please find a list of recommendations to enforce to your users:</p><ul><li>Access control (incoming connections) → depending on your requirements</li><li>Access control (outgoing connections) → depending on your requirements</li><li>Block and Allowlist</li><li>Changes require administrative rights on this computer → enabled</li><li>Check for new version → Weekly</li><li>Enable blackscreen if partner input is disabled → Home Office setup</li><li>Enable logging</li><li>Incoming LAN connections → depending on your requirements</li><li>Install new versions automatically → All updates (includes new major versions)</li><li>Log incoming connections → enabled</li><li>Log outgoing connections → enabled</li><li>Password strength → depending on your requirements 8 or more characters or disabled</li><li>Random Password after each session → Generate new</li><li>Report connections to this device → enabled</li><li>Temporarily save connection passwords → disabled</li><li>Timing out inactive session → 1 hour or less</li></ul><p>Find a detailed description of how to add TeamViewer Setting Policies and more information about it here:</p><div class="js-embed embedResponsive" data-embedjson="{"body":"This article applies to all users in all licenses. General Settings policies provide you with the ability to set options for all your installed TeamViewer clients centrally via the TeamViewer Management Console. This way, you can deploy and enforce the same settings to all your clients. Create new settings policy Create a…","photoUrl":"https:\/\/us.v-cdn.net\/6032394\/uploads\/QOC82OVO5T1G\/share-image-community-links-287-29.png","url":"https:\/\/community.teamviewer.com\/English\/kb\/articles\/4860-how-to-add-a-new-settings-policy","embedType":"link","name":"TeamViewer Policies - TeamViewer Support"}"> <a href="https://community.teamviewer.com/English/kb/articles/4860-how-to-add-a-new-settings-policy" rel="nofollow noreferrer ugc"> https://community.teamviewer.com/English/kb/articles/4860-how-to-add-a-new-settings-policy </a> </div><p><br></p><h3 data-id="-2"></h3><h2 data-id="conditional-access">Conditional Access</h2><p>With Conditional Access, you can enforce Remote Access Rights to prevent unauthorized activities and align with security policies</p><p>Control TeamViewer usage and access rights throughout your organization using a rules engine you configure within the Management Console. This conditional access provides an additional layer of security for your corporate network.</p><p>TeamViewer customers with a TeamViewer Enterprise/Tensor license and Conditional Access AddOn can use the Conditional access feature. Read more here: </p><div class="js-embed embedResponsive" data-embedjson="{"body":"This article applies to all TeamViewer customers with a TeamViewer Enterprise\/Tensor license and Conditional Access AddOn or Tensor Pro or Unlimited licenses. General This page is a short introduction to the different parts of Conditional Access and its configuration. While block- and allowlist cover incoming connections,…","photoUrl":"https:\/\/us.v-cdn.net\/6032394\/uploads\/QOC82OVO5T1G\/share-image-community-links-287-29.png","url":"https:\/\/community.teamviewer.com\/English\/kb\/articles\/57261-get-started-conditional-access","embedType":"link","name":"Conditional Access - TeamViewer Support"}"> <a href="https://community.teamviewer.com/English/kb/articles/57261-get-started-conditional-access" rel="nofollow noreferrer ugc"> https://community.teamviewer.com/English/kb/articles/57261-get-started-conditional-access </a> </div><p><br></p> </article> </main>
