How Bomgar Enables Secure Remote Support

Bomgar has always been designed with security at the forefront.  Not only is the product architecture superior from a security standpoint, the product itself has a number of features that strengthen the security on a day to day basis.  

Bomgar is also available in a number of secure deployments, including on-premises and virtual appliances, and the Bomgar Cloud – and each customer’s software build is unique to that organization.

Secure Architecture

We provide each customer a segmented, single-tenant environment via a physical, virtual, or cloud appliance. 

Unique Configuration by Customer

The Bomgar software itself is uniquely built for each customer, and each organization has its own unique URL and customer client.  To generate further trust, add your logo, a customer watermark, and rep profile photos.  

No VPN

Bomgar works through firewall without VPN tunneling, so your perimeter security can remain intact. Outbound only session traffic uses TCP Port 443.

Authentication

Most remote support solutions require you to create support rep accounts manually or with a convoluted semi-automated process.

With Bomgar, you can leverage your existing directories LDAPS, Kerberos, Smart Card, RADIUS) so that if you change a support rep’s account in Active Directory, it is automatically reflected in Bomgar. 

Bomgar lets you associate group policies in Bomgar with groups in your directory, so that if you move a rep from one group to another in LDAPS, their permissions in Bomgar are automatically updated to reflect their new role.

Native Two-Factor Authentication

Two factor authentication increases the security of remote access by requiring a second factor (one time passcode) to login, in addition to the password.  It’s available for every Bomgar users at no additional cost. 

Jump Groups and Roles

Grant access with even more granularity so that just the right levels of access are granted to those who need it.

Data Encryption

Bomgar encrypts all data in transit using TLSv1, and data at rest encryption can be enabled with your organization’s key management solution.

Session Logging

Bomgar provides two types of support session logging. All the events of an individual support session are logged as a text-based log. This log includes representatives involved, permissions granted by the customer, chat transcripts, system information, and any other actions taken by the Bomgar representative. 

Bomgar also allows enabling video session recordings. This records the visible user interface of the customer screen for the entire screen sharing session. Session logging data is available on the appliance in an un-editable format for up to 90 days, but it can be moved to an external database using the Bomgar API or the Bomgar Integration Client.

Learn More about Bomgar's Security