The GoTo Community is currently experiencing some technical issues affecting new posts and comments. We are actively working with our service provider and apologize for the frustration.
Status:
Reviewed by moderator
Security features for unattended access and SIEM exporting
- We would like a supported method for forwarding Goto Resolve events to our Sentinel instance, so that our security operations center can see events such as unattended access and background access.
- We would like a configuration option within Goto Resolve so that there's a "four eyes" type mechanism for sensitive actions, such as unattended access or background access. When configured, an agent would need a manager or peer to approve in order to perform those specific sensitive actions.
- We would like to be able to enforce password complexity for signature key passwords, and to enforce that signature keys passwords are required for each sensitive action.
3 Comments
Kate,
Thanks for the update. That is a great first step for the additions we are looking for.
Best,
Blaine
You may be interested in a new enhancement now available: Enhanced prompt frequency for Zero Trust.
With this latest enhancement to our security features, administrators can now enforce Zero Trust prompts for IT agents performing sensitive tasks.
To enable this feature, navigate to the GoTo Admin portal and open the Settings menu. Select Zero Trust Status and go to the Settings tab. Ensure the required toggles are turned off, then click Save.
Once this configuration is applied, all IT admins will be prompted to provide the Zero Trust signature key for any sensitive tasks. The option to set the frequency to daily or weekly will no longer be available.
Additionally, more sophisticated permission settings and MFA improvements are on the roadmap and coming soon.
Welcome to the Community, thanks for sharing your ideas here in the Community.
Please note, we typically request ideas be posted one at a time, this allows other members to vote on specific ideas and helps us when providing status updates. I will share with the team your suggestions for enhanced security features.
