Enhanced security and flexibility: the new bMS 2024 R1

Argus Experience reaches yet another milestone with the new release. For the first time, it is possible to capture users' perceptions and feedback in addition to detailed device data. This is particularly useful in a wide range of situations because it gives users the opportunity to report minor device and network faults, performance lags and other issues without opening a support ticket. IT admins can quickly identify possible sources of endpoint problems by matching subjective user perceptions with real-world device data. The combination gives admins uncomplicated, direct feedback and information to determine which settings or device configurations need to be optimized.

Another big plus is that background problems that users may not have noticed are also recorded. This allows admins to quickly implement targeted solutions. It also provides an important and meaningful tool for dealing objectively with user perceptions about the company’s IT infrastructure.

Mobile devices are so incredibly practical that it is impossible to imagine the modern working world – or everyday life -- without them. However, "practical" does not always mean "secure." A remote mobile device that accesses a company network is a security risk per se. This is where virtual private networks (VPNs) can be used to establish a secure and encrypted connection. However, VPN access also has its pitfalls. While authorized company apps can securely access company servers, so can user’s personal apps. That can lead to critical security risks such as when sensitive customer data ends up in a user’s messaging app.

The new Per-App VPN within baramundi's module Mobile Devices makes encrypted connections to the company network available only to selected applications with the corresponding certificates when needed. This allows IT admins to close potential security gaps without making the user's work more difficult or inconvenient.

Everyone knows that end-users should only have as many authorizations as absolutely necessary. Why? Because cyber criminals prefer to gain access to company networks via easily accessible end devices. But there's a problem: almost every network allows users to log on to a computer via a local administrator account with the appropriate authorizations to solve problems. With hundreds or even thousands of end devices, it’s very tempting to not to create an individual, secure local admin password for each machine. However, using the same password for multiple machines fundamentally weakens network security, especially if you are unable to change them quickly in an emergency.

baramundi Defense Control solves this dilemma by enabling centralized management of local admin accounts and passwords. The module takes care of the cyclical regeneration of secure local admin passwords on each device. If a technician needs to log on to a device as a local admin, they can use a freshly generated password, then a new one is generated immediately after completing the work. That makes it hard for hackers to exploit local admin access and strengthens overall endpoint and network security.