The Group Policy provided by LogMeIn is great to have. It is really a need to control the access within the corporate to strong service like LogMeIn.
However, I couldn't find a very required value on the Group Policy and this is the LogMeIn account to be used for any LogMeIn product on the computer.
We are using the LogMeIn for management and support reasons, but still need a security solution to prevent the user from changing the account on his computer or even uninstalling LogMeIn and then reinstalling it with private account. The corporate account should be kept in the AD and every LogMeIn product should look there for the account to be used.
Do you know of any way this can be done already? I just think it must be there already, since the rest of the AD Group Policy is well done and documented and this feature is quite simple and yet very powerful.
Unfortunately, the prevention of uninstalling can only be done through Windows permissions. Specifically removing the end-users' rights to install software on there own, or making them non-admins.
Preventing a user from moving the computer to another account can be done through the GPO we provide by ensuring that the user that is logged in has only the Access Rights they need. Generally this is all Login, File Manager, and Remote Control permissions. Always couple this with a Domain Admin that has full rights to the software.
Sean Keough Product Specialist, LogMeIn Customer Support