This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
NorthernNetGuy
Advisor
‎2023-07-04 11:38 AM

3rd party remote support

I'm looking to see what solutions others have come up with for this scenario. 

Some applications our end users have require remote administration support. The remote administration is always big security discussion, and we end up with a couple options

- use teamviewer or other remote admin tool for the support session

- use a VPN account on mobile access, and use a clientless RDP from the mobile access portal to the target PC.

 

usually this kind of support is only required for a limited time, a few hours. Both options have different issues.

With Teamviewer, we have less control over the access, but it's easier for the support and end user. We can't remotely terminate the session easily after the required time has elapsed.

With the VPN/mobile access route, we have more control, but there's more overhead in account creation. I also have trouble with identifying a way to limit their session to a specific duration without affecting global policy.

 

What methods are you using for 3rd party remote support, and how do you control it?

0 Kudos
2 Replies
the_rock
Legend
Legend
‎2023-07-04 11:58 AM

We did this for few customers and we usually end up telling contractors to install barebone vpn client and then we give them access based on security rule itself. As far as RA community settings, we just add them there for even being able to connect as local vpn users you create in dashboard. This way, when you need to revoke access, its easy to do.

Hope that helps.

Andy

0 Kudos
Alex-
Leader Leader
Leader
‎2023-07-04 12:43 PM

We recently migrated an installation with a lot of VPN connections based on access roles to Harmony Connect. Works well and resolves usual annoying issues like network overlaps, untrusted computers and the like.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events