5 Ways to Boost Kaseya Access Security Without Complicating Things
Many of my MSP clients and IT friends consider Kaseya to be absolutely essential to their daily operations—and with good reason. Kaseya has earned its role as a market leader through advanced design and functionality; its remote monitoring and management (RMM) capabilities stand out from the pack.
“Without Kaseya, it would be impossible to manage the needs of all of my clients unless I was on-site 24/7. And there was more than one of me. And I was much, much smarter, with more hands,” one loyal Kaseya user explained.
Kaseya’s centralized platform for IT management allows for incredible convenience. Using custom dashboards and tools, MSPs can access, view, analyze, and interact with the systems and resources of their clients remotely. With this unprecedented level of control, system issues and problems can be investigated and addressed remotely- making life easier for the MSP, client, and technician.
Of course, as most experienced MSPs know, in the world of IT (and especially remote access), it’s important to stay one step ahead. Which is why I started receiving more calls—from new as well as existing clients—about enhancing their security on Kaseya.
I was impressed by their foresight.
Locking Down Kaseya Access
With its breakthrough remote management options, Kaseya provides off-site tools and network interaction features that are truly game-changers for MSPs and technicians across the board, and their clients will no doubt benefit. But with these advances, and the unique remote system intimacy Kaseya offers, there’s a flip side. Should a malicious person be able to “break into” a Kaseya account, they also would be granted this unprecedented level of remote access and control, and the results could be devastating. With the recent high-profile security breaches making headlines, it’s a risk that’s becoming all too real for many MSPs who use Kaseya.
Here’s the worst case scenario:
A criminal is able to authenticate/ log into Kaseya, gain access to all client system resources and data, and wreak havoc.
Fortunately, there is a solution: putting a stop to the above scenario right at its start. Before the criminal gains access to the systems and wreaks havoc, they must successfully log into Kaseya. With two-factor authentication (2fa), that’s just not going to happen.
Kaseya and 2fa
In order to successfully log into Kaseya with 2fa, users must enter not only a password, but another unique security factor as well—like a fingerprint scan, or a one-time access code generated by a secure mobile app on their smartphone. This ensures that even if a malicious person is able to guess, steal, or “hack” a system password, they won’t be able to access the system, because they won’t be able to enter the needed second security factor.
Even though they saw the need, many of the MSPs I spoke to were initially wary of adding a security step to their Kaseya protocol. After all, the beauty of Kaseya is how easy it makes everything. Would implementing 2fa make things more complicated, frustrating technicians and employees?
“Quite the opposite,” I told them, trying not sound overly excited as I began explaining the many beyond-security benefits of 2fa for Kaseya.
The enhanced level of security that 2fa provides allows admin users to explore advanced security options. MSPs can choose a security software option that not only supports 2fa, but also improves user experience with features like centralized password management and single sign-on (SSO):
- Password Management: With centralized password management, tedious password-related tasks (password resets and expirations, for example) can be automated and scheduled, and password policies (like the creation of strong passwords) can be automatically enforced through the use of password templates and customized password requirements.
- SSO: Easily the most attractive enterprise security option, SSO combines enhanced security with a superior user experience. Technicians login once with 2fa, then are taken to their SSO portal, where they can access all of their applications and programs with just a click. Say goodbye to time-consuming multiple logins; admins can even update passwords on the backend, so that technicians never have to enter or create them—they just sign into SSO.