When using TeamViewer for IT Support, we recommend the following initial settings:
The Golden Security Settings:
- Set up two-factor authentication
- Manage your device and set up Easy Access
- Set up an allowlist
- Make sure to have strong password hygiene
- Update your devices
- Back up your data
Deploy TeamViewer
Make sure to deploy TeamViewer within your company or across your customers with the best security setup for your company.
Find a detailed description of how to deploy TeamViewer and more information here:
If you are using the (Classic) interface, please follow the instructions here.
Enforce setting policies
You can use the TeamViewer settings policy to keep all devices with your preferred setting.
Below, please find a list of recommendations to enforce to your users to start with:
- Access control (incoming connections) → depending on your requirements
- Access control (outgoing connections) → depending on your requirements
- Block and Allowlist
- Changes require administrative rights on this computer → enabled
- Check for new version → Weekly
- Enable black screen if partner input is disabled → Home Office setup
- Enable logging
- Incoming LAN connections → depending on your requirements
- Install new versions automatically → All updates (includes new major versions)
- Log incoming connections → enabled
- Log outgoing connections → enabled
- Password strength → depending on your requirements 8 or more characters or disabled
- Random Password after each session → Generate new
- Report connections to this device → enabled
- Temporarily save connection passwords → disabled
- Timing out inactive session → 1 hour or less
Find a detailed description of how to add TeamViewer Setting Policies and more information about it here:
If you are using the (Classic) interface, please follow the instructions here.
Protect the TeamViewer settings
Make sure no one can make changes to the TeamViewer settings you defined by protecting the TeamViewer settings with a password.
Learn more about it here: