Highlighted
Posted by DomLan
Heptagon

TeamViewer device authorization logic (OAuth perspective)

Hi, 

a really high number of users of our TeamViewer channels, complains the implementation of the authorized device management.
The current implementation makes use of the browser cache (cookie) to store the operator's choice; for users who have configured cleaning the cache when they close the browser the application, the request is daily at each first access via OAuth. Annoying!

TeamViewer could handle this directly on its servers and allow us to get a picture of the authorized devices directly from the Client or the Management Console.

Thank you.

Domenico Langone
MCSD: App Builder
1 Accepted Solution

Accepted Solutions
Posted by DomLan
Heptagon
Solution

Re: TeamViewer device authorization logic (OAuth perspective)

TeamViewer Support confirm this feature, with 2 kinds of workaround:

1. Activate the two factor authentication as an alternative sign-in method. TeamViewer will use this method instead of the confirmation per mail.
2. While signed in in the computer and contact list you can use the client to handover the signed-in token to your default browser:
a. TeamViewer --> connection --> Open Management Console
b. TeamViewer computer and contact list --> box with 3lines --> Open Management Console

Alternatively, you must explicitly request TeamViewer disabling this functionality for the entire domain. This option is only evaluated for the type of company licenses and obtained directly from the TeamViewer support, after providing:

-A confirmation that you wish to forgo the protection of your account provided by Trusted Devices.
-An acknowledgement that you are aware of the risks of reusing a password on other services, e.g. account credentials are leaked due to data breaches at third party websites.

Although the options offered can not be considered for our structural limitations, I wanted to point out the possibility offered by TeamViewer, whom I thank for their kind concern.

@Man: Please consider post as Answered. Thank you.

Regards

Domenico Langone
MCSD: App Builder
1 Reply
Posted by DomLan
Heptagon
Solution

Re: TeamViewer device authorization logic (OAuth perspective)

TeamViewer Support confirm this feature, with 2 kinds of workaround:

1. Activate the two factor authentication as an alternative sign-in method. TeamViewer will use this method instead of the confirmation per mail.
2. While signed in in the computer and contact list you can use the client to handover the signed-in token to your default browser:
a. TeamViewer --> connection --> Open Management Console
b. TeamViewer computer and contact list --> box with 3lines --> Open Management Console

Alternatively, you must explicitly request TeamViewer disabling this functionality for the entire domain. This option is only evaluated for the type of company licenses and obtained directly from the TeamViewer support, after providing:

-A confirmation that you wish to forgo the protection of your account provided by Trusted Devices.
-An acknowledgement that you are aware of the risks of reusing a password on other services, e.g. account credentials are leaked due to data breaches at third party websites.

Although the options offered can not be considered for our structural limitations, I wanted to point out the possibility offered by TeamViewer, whom I thank for their kind concern.

@Man: Please consider post as Answered. Thank you.

Regards

Domenico Langone
MCSD: App Builder