Change Default User Permission Behavior when adding New Users in LogMeIn Central
I am reporting a security concern in LogMeIn Central related to default user permissions. When creating a new user via: Users > Manage > Add Users the Computer permissions setting under Group/Computer Permission is set by default to: Access all computers in the account This default grants new users full access to every computer in the LogMeIn Central account, regardless of actual need. This represents a significant security risk because it conflicts with the Principle of Least Privilege and exposes customer environments to potential misuse or accidental access escalation. Recommendation: Please change the default behavior so that new users are initially configured with: Specify the groups and computers the selected user can access This adjustment will ensure users only receive access explicitly assigned to them, preventing inadvertent over-permissioning and reducing customer security risk. Given the nature of this issue, I recommend prioritizing this change as a security remediation rather than a feature enhancement. Thank you for your attention to this matter.
Restricting access based on client IP address
Hi, How can we add 'allow-listed IP's/subnets' to all hosts? I thought this would have been an option within 'Host Preferences' but I cannot find anything in there. At the moment it looks like this IP restriction must be set on each client, which becomes an issue with scale. Could you please confirm if it is possible to do this via the Central Console? We would like to deploy this to all 'hosts'. Client side has the option: LMI Rescue documentation seems to have it, but not Central? https://support.logmein.com/rescue/help/how-to-restrict-access-based-on-ip-address-rescue-ac-c-resc-ac-settings-ip-restrict#:~:text=Use%20the%20IP%20Restriction%20feature%20to%20grant%20or,all%20LogMeIn%20Rescue%20components%20from%20any%20IP%20address. ThanksImprove audit events
Hi, As part of ISO27001 the logging, monitoring and alerts of failed authentication attempts should be made available for auditing. LogMeIn allows you to view your own logins, including failed logins, and even sends an alert to your email address, however, as part of reviews, we cannot see other users failed login attempts. Could you please implement a change: As an 'admin', view all user LMI account login failures within the reports section, showing username, email, time and date, IP address. Send email alert on configured threshold to specified email (for example, more than 2 failed logins within 5 minutes, generate email with details). Thanks,
Report for computers last online
I find the Computers view has a lot of information I use to communicate with my remote users. I have to get large groups of them online and use the computer view to see who was online when so I can prod them. I would like to be able to export that list so I can share it inline in an email so folks know their status. The report would include the same information available on the computer view tab when I log in as the top level manager. Health |status |Computer |updates |antivirus |last online Even just being able to export the data on the computers tab would be great. This page doesn't print and is difficult to copy paste as the paste doesn't keep the rows.
Sub-Groups
Sub-Groups Currently, each customer is a group. This works well enough. Some have a great many endpoints. Would be great if I could Sub-Group "Accounting" under "Customer-1". They could read like: [Customer-1.Accounting] AcctReceivable AcctPayable Invoicing AcctMgr [Customer-1.Production] South Mix Room North Mix Room Dry Room Prod.Manager Any addition in this direction would be appreciated.
Automate addition and removal of LogMeIn liscences?
title says it very good. We are in a situation where would like to automate the adding and removal of liscences because we have many redundant machines. To understand the situation better, everytime we add, retire, rebuild or Intune some PC, its added again if it was already there. We need to always add/remove liscences manually and we are talking of multiple hundreds of computers. Isn't there a way we could automate the adding and removal of liscences? Or again, having a quick way to detect double entries?
