With MSP’s getting hacked left, right and centre, and RMM tools being used as an attack vector for ransomware, hardening security of the tools we use to administer client infrastructure is important, now more than ever.
With the exception of 2FA/MFA (which we implemented when it became available), what other security hardening options are available for the Admin Portal and Itarian Remote Control app? What other security methods (specific to Itarian) are people using?
Can we lock admin portal and remote control access to only certain IP’s? If not, is there a plan to enable this and if so, what is the ETA?
Are there any other options being proposed? (i.e. notifications when a previously unknown IP logs in, approval required through mobile app when logged in from a new IP etc.)
Can others suggest any other ideas that would be practical and yet make us all sleep better at night?