Updates for Administrators

Bomgar Privileged Access 17.1 contains the following updates for Bomgar administrators.

Feature

Access Invite Portal Branding

Upload an image of your company logo to display on the public-facing web pages of your Privileged Access site. This logo is visible when someone accepts an access invite, goes to the public recording page, responds to an extended availability message, or responds to a request for Jump approval.

API Account Enhancements

API accounts have been expanded to allow you to more securely authenticate to the endpoint credential manager.

Auditability Enhancements for Cloud

Send syslog messages over an encrypted TLS connection to one or more syslog servers.

Enhanced Jump Client Maintenance

No more manually deleting uninstalled Jump Clients from your Jump Interface. An administrator can configure Jump Clients to be automatically removed from the access console once uninstalled or to remain in the list until manually removed.

High Availability ECM

Install multiple endpoint credential managers (ECMs) on different systems to avoid downtime. The appliance routes credential requests through the ECM with the longest uptime. If that ECM cannot be reached, the appliance immediately begins routing requests through the ECM with the next longest uptime and sends an email to alert the administrator of ECM malfunction.

ITSM Workflow Enhancement

When requiring users to enter a ticket ID before they can access an endpoint, you can also choose to treat the ticket ID as sensitive information. If this setting is enabled, the access console shows asterisks instead of text when the user enters the ID, and the ticket ID is treated with the same level of sensitivity applied to other password fields in the system.

Jump Approver Logging

When a user requests access to a Jump Item, the session report now logs the email address of the person who approved the request. This is logged only if the Jump actually occurs. Additionally, if a second person responds to the request, they can see the email address of the person who already approved or denied the request. The requester cannot see who responded to their request unless they have permission to view the session report.

Jump Client Silent Install

Improvements to the Jump Client installer allow for a truly silent install using a --silent or /quiet flag.

Jump Groups

Administrators now have more granular control over which Jump Items users can access and which permissions they have on those Jump Items. Jump Item permissions have been moved from user accounts and group policies and into a new Jump Item Role. Additionally, Jump Item access has been separated from teams. Instead, Jump Items are collected into Jump Groups, which grant their members varying levels of access to those items. Users are assigned to Jump Groups individually or through group policies.

Low Profile Jump Clients

To prevent end-users from deleting Jump Clients, right-clicking on a Jump Client no longer gives users the option to uninstall. Instead, an uninstall script is included to allow an administrator to uninstall if necessary. Furthermore, Jump Client icons are now a more subdued color to avoid drawing attention.

More Scalable Jump Client Upgrades

Jump Clients can now finish deploying even if they cannot make an immediate connection to the appliance. This allows you to update your Bomgar software without having to wait on all Jump Clients to finish redeploying.

Native Multi-Factor Authentication Using Time-Based One-Time Passwords

Gain the security of multi-factor authentication for your local and LDAP user accounts by enabling time-based one-time passwords. When logging into Bomgar, users must provide a one-time password generated by a separate device or app, such as Bomgar Verify.

Policy-Based Recordings

Configure Jump Policies to opt out of session recordings even when recordings are enabled site-wide. Jump Policies can be applied to Jump Items as well as Jump Groups such that certain endpoints or users are not recorded.

Upgrade Notifications

When checking for updates to your Bomgar software, more informative messages tell you if no updates are available or if an update is available but an error occurred when distributing it to your appliance.