65 results found
-
blocking software from launching
It would be great to have to ability to block unauthorized inventoried software from launching. There are installers that does not require administrator rights to install and some of my users have learned that.
1 vote -
Edit and Export Passwords
The Ability to Edit Existing Stored Passwords is Paramount!
ALso the Ability to Export stored Passwords to .CSV file.These two features should be implemented as they are commonly needed.
1 vote -
Recent processes
We should be able to lock down recent processes by Tech. Our Techs should only be able to see the recent processes from Running Scripts, to those they have ran themselves. Alternately, Tech's should not be able to see when I have run a script against their computers.
1 vote -
Penetration Testing
I would like to have Atera perform Penetration Testing on my clients network. And make the reports/alerts available within the standard security testing.
11 votes -
Possibility to disable APIs.
The API allows, among other things, to retrieve information from conversations. If confidential data is stored in the conversations, it could be a serious cybersecurity issue (Password). API calls should be authenticated and, in my opinion, API calls should be restricted to only certain public IPs. As with the portal login, which has this option. We could even rely on the same IPs that are allowed to authenticate to the portal. Authentication + IPs = security
0 votes -
Admin Audit Logs
Audit logs for terminal connection requests by technicians should include a transcript of the commands, or at the very least create a log locally on the endpoint that can be retrieved/reviewed.
Simply knowing Technician 1 requested a terminal session does not aid in either validating or invalidating issues after a connection was made. Logging on endpoints is not always enabled, collected in a SIEM, or logs are overwritten beyond a certain size/date.
This would allow for IT teams and MSP's to ensure visibility into what commands are being run by who from the Atera platform.
2 votes -
Connect invisibly
In many cases the computers belong to the company and they have a right to monitor their hardware and intellectual property so it would be helpful to either temporarily disable the notification of an admin coming on or remove it completely.
1 vote -
Please change the 2FA method. The current one is really bad
Please change the 2FA method. The current one is really bad
6 votes -
passkeys
Can Atera provide the use of multiple passkeys and/or MFA besides the 2 2FA methods available ? By this, it will provide the technician or admins to further secure their accounts and to better manage SSOs.
5 votes -
Remove devices individually that no longer use Atera 2FA
Currently it is only possible to have one device per OS registered for Atera 2FA. If I replace my phone with a new one I have to go to Atera admin settings and reset 2FA which resets it for all devices including my Windows device which I don't need to have 2FA reset on. Please make it possible to remove devices individually from Atera 2FA settings.
2 votes -
0 votes
-
Show oudated software via info alert an show what is the new version and give the function to update it right away
Show oudated software via info alert an show what is the new version and give the function to update it right away
2 votes -
Only allow login from MAC-addresses.
Its good to have the option to only login in from IP-addresses, but would be a lot more powerful if only allowing login from certain MAC-addresses. This way it has to be your machine you are login into.
Once the admin selects this feature in the admin portal, the change has to be approved with a MFA prompt. So the admin has to have MFA setup before moving on to the MAC-address option. When the approval is granted the MAC-address from the admin computer is automatically added as a approved MAC-address, so not to lock out the admin from the…
1 vote -
Dashlane integation
Dashlane seems to have risen in popularity since the big LastPass hack. Any chance of a third-party password management tool like Dashlane being integrated with Atera?
2 votes -
Splashtop popup
The Splashtop popup in the lower right hand corner, stating someone is remotely monitoring/working on your PC/Server. Can this have an option to leave it visible for the entire remote session. A few customers have asked me (from a security perspective) about this capability as they deal with sensitive data
8 votes -
ipv6 firewall
in the admin menu there is a possibility to use a whitelist. because we think security is really important we use both 2FA and the ip whitelist.
we miss 2 options:
- the possibility to whitelist IPv6 addresses
- the possibility to ad notes next to every ip-address that is whitelisted. (Like: branch office, datacentre, etc etc.)1 vote -
One time secret password
From all password locations in Atera have a button to send the one time secret password or generate and send a new one. Similar to www.onetimesecret.com.
For customer contacts passwords, have the option to send to that user or another email the tech enters.
For other passwords ask for who to send to.
4 votes -
Obfuscate Or Encrypt Scripts [important]
So imo, scripts that are batch or powershell that are ran are stored in the location - C:\Program Files\ATERA Networks\AteraAgent\Packages\AgentPackageSystemTools
Need to be obfuscated or encrypted somehow because they show up in clear text if they are stuck, sometimes these scripts could have a hardcoded password that are needed to work for instance runas etc.... Yeah, I have a script to delete all *.bat and *.ps1 - this is not an answer though.
All it takes is one kid that knows how to work on a vcr to mess things up!
1 vote -
Atera Hosted SIEM
Atera Hosted SIEM: smaller healthcare clinics, they would like to have the SIEM built in. little agent that is on the computer and its only purpose is to record and checks for vulnerability – makes a record of everything you are doing on the computer (Websites you're going into, connected to the shared, used an app to open), sort of like auditing tool. Something that you can use to catch security breach. It’s becoming more and more important.
4 votes -
protect sensitive areas
When I'm logged in to atera I have access to a lot of sensitive informations. Also it is possible to run commands or open command prompt with admin / root privileges. It would be nice to set an additional layer of authentication. For example before I get access to command prompt or change a script I have to enter my password again. FIDO Keys would also be nice to use. So I can insert my FIDO smart card while I'm using atera and can authenticate myself before I access sensitive informations. Session hijacking would work but cannot get my physical…
6 votes
- Don't see your idea?