Security architecture and recommendations: B100 remote access administrative user's guide Free Trial | Support Virtualization Blog | Webcasts
Remote Desktop Control by BOMGAR Remote Desktop Access Remote Support Solutions Customers Help Desk Support News About Bomgar Contact Bomgar

Bomgar B300 Appliance User's Guide

Security

PDF PDF Version (1.5MB)   Email Email This Item


Bomgar is committed to the highest level of technological security. Each Bomgar solution is carefully tested to eliminate vulnerabilities and points of failure. Bomgar uses Symantec-audited architecture.

Architecture

The architecture of Bomgar solutions lends built-in security to the support process. Because session traffic is outbound from both directions, both the customer and the support representative can work from behind corporate firewalls providing a barrier to any potentially malicious traffic.

In addition, each Bomgar session is initiated by the remote customer when the support issue occurs and is then discontinued automatically when the session is complete, allowing only a small, irregular period of time wherein Bomgar traffic is crossing the Internet. This secure architecture provides the first level of Bomgar security, obscuring the entire support session by leaving existing security structures in place and spontaneously generating each support session.

Bomgar Box

Bomgar accounts and sessions interface with the Bomgar Box, which offers an extremely high level of security within a managed environment. All traffic passing through the Bomgar Box is 256-bit AES SSL (Secure Socket Layer) encrypted along the entire data stream. This encryption is in addition to the heavy data compression inherent in Bomgar traffic. The login pages for the Bomgar Box /appliance interface and /login administrative interface are 256-bit AES SSL encrypted and password-protected, preventing unauthorized users from accessing representative or administrator accounts.

Security Recommendations

  • Install the Bomgar Box outside your company firewall or in a DMZ.
  • Disallow access to the Bomgar Box administrative interface (/appliance) from its public IP address.
  • Regularly change administrative passwords.
  • Set a password expiration from the /login interface to schedule regular password changes for all users.
  • Require representatives to use complex passwords.
  • Accept incoming connections only from end-users you recognize.
  • Disable accounts that will go unused for long periods of time.

Home: Remote desktop access with the B300 >

<< Previous | Next >>

 

The Adobe® logo is a registered trademark of Adobe Systems Incorporated in the United States and/or other countries.

Index


> Introduction
> Bomgar Box Configuration
Administrator Login
Basics
Basics: Reset
Storage
Storage: RAID
My Account
IP Configuration
IP Configuration: Pings
IP Configuration: Edit
IP Configuration: SSL
IP Configuration: Revert
Static Routes
Appliance Administration
SSL Config
SSL Config: Ciphersuites
SSL Config: Certificate
Email Configuration
Utilities
Updates
Updates: Progress Bar
Advanced Support
> Establishing a Connection
> Security
> Licensing & Support
> Copyrights
© 2003-2008 Bomgar Corporation | All Rights Reserved Remote Desktop Access & Control | Remote Support | Remote Access Software for Unattended Systems
Remote Desktop Control by BOMGAR | PrivacyRemote PC Access | Mac Remote Access | Linux Remote Access | Remote Control for Windows Mobile