Skip to content
ProVal Technologies
407-588-0101
Facebook Twitter Instagram Linkedin Youtube
  • Home
  • Company
    • ProVal’s Journey
    • Approach
    • Culture & Values
    • Our Team
  • NOC SERVICES FOR MSPS
    • ConnectWise
      • ConnectWise Automate
      • ConnectWise RMM
      • ConnectWise Manage PSA
    • Kaseya
      • Kaseya VSA
      • Datto RMM
    • Managed Backups
    • 24×7 Monitoring
  • Careers
  • Resources
    • MSP Blogs
    • Your Tools. Our Experts.
    • MSP Webinars
    • Testimonials
  • Contact Us
  • Client Portal
Menu
  • Home
  • Company
    • ProVal’s Journey
    • Approach
    • Culture & Values
    • Our Team
  • NOC SERVICES FOR MSPS
    • ConnectWise
      • ConnectWise Automate
      • ConnectWise RMM
      • ConnectWise Manage PSA
    • Kaseya
      • Kaseya VSA
      • Datto RMM
    • Managed Backups
    • 24×7 Monitoring
  • Careers
  • Resources
    • MSP Blogs
    • Your Tools. Our Experts.
    • MSP Webinars
    • Testimonials
  • Contact Us
  • Client Portal

 How Secure is your RMM? 

  • August 5, 2021
  • Greg White
  • Proactive Maintenance, Security

In light of recent events, the ever growing need to lock down each and every tool within your MSP’s tool stack has become very transparent. Hackers worldwide are now specifically targeting MSP’s and one of the easiest ways that they have been able to do so, is through the RMM. 

This begs the question: How Secure is your RMM? Below is a list of our top 13 points that we believe every MSP should be implementing to stay secure and reduce vulnerabilities within the tool. 

  • Backup your RMM nightly and to a secure location.  
  • Review all user accounts regularly for the last login, permission (Principal of least privilege), 2FA/MFA. 
  • Enable SSO, SSO has great user management capabilities as well as the ability to use other authentication providers like Microsoft Azure.  
  • Ensure all user accounts are valid. Deactivate all invalid user accounts. Access to the Data base is as / if not more dangerous as access to the RMM/Remote Control applications. 
  • If your RMM supports White-Listing, it can be configured at the server level to ensure that all connections are locked down to the whitelist. 
  • Segregate the RMM and Remote agent servers from the rest of the internal network whenever possible. 
  • Regularly review client environments for machines missing agents. An agent not being monitored is very vulnerable and can be used to attack other internal devices. 
  • Limit user access to the servers hosting the RMM and Remote-Control applications.
  • Antivirus should be installed on the RMM and Remote-Control servers, however, it is important to ensure the proper exceptions have been applied or this can cause major issues for the applications. 
  • Have plans in place to prevent further access into environments in case of a breach. (A method to prevent communication with the RMM if breached) 
  • Do not link scripts to sites like pastebin or other links that can be spoofed. 
  • Keep the RMM and Remote-Control products up to date as there are many security releases for the product. 
  • Keep plugins/extensions up to date. Many plugins/extensions release updates that will also include security-based items. 
Greg White

Greg White

Greg White works on the business development team here at ProVal Tech. He graduated with a marketing degree from the University of Central Florida and is passionate about finding new ways to grow ProVal and the technology industry as a whole.
PrevPreviousAre Your Backups Safe? A guide to securing your critical data.
NextHow Do I Set Up MFA: CW Automate Best PracticesNext

Categories

Labtech
  • Mac Agent Functionality Within ConnectWise Automate
  • ConnectWise RMM vs Automate: Should I be using CW RMM?
  • ConnectWise Automate on Linux – Best Practices
  • ConnectWise Automate Maintenance Mode Explained Best Practice
  • Uninstalling and Offboarding Automate Agents
  • How to Set Up Automate users to use ConnectWise SSO
  • Windows 10 Build Upgrades are Inevitable – Use Kaseya/ConnectWise Automate to Deploy
  • Best Practice Naming of Patching Groups
  • Automate 12 Patch 9 Now Available!
  • 5 Tips for using the Report Center
  • See All Labtech Posts
Business Continuity
  • See All Business Continuity Posts
Proactive Maintenance
  • See All Proactive Maintenance Posts
Kaseya
  • What Should I be Automating in Kaseya VSA 9.5?
  • Security Best Practices for Kaseya VSA
  • Kaseya VSA: Software Management vs. Patch Management
  • Software Management Enhancements
  • Two-Factor Authentication in Kaseya VSA
  • Windows 7 & Windows 10 Multiple Builds End of Life – Upgrade Using Kaseya or ConnectWise Automate
  • Kaseya Network Monitor: Benefits & Features
  • Kaseya Patch 9.5.0.22 and Future Updates
  • Kaseya’s New State-of-the-Art Contemporary User Interface
  • Kaseya Product Release – April ’19
  • See All Kaseya Posts
Datto
  • Creating & Implementing a Disaster Recovery Plan
  • Disaster Recovery – Minimizing Impact of Downtime
  • Updating a Datto Device
  • Datto Agent Communication Errors
  • Datto
  • See All Datto Posts
StorageCraft
  • See All StorageCraft Posts

Get in touch today for MSP NOC Services

Contact Us

ProVal Technologies, Inc

498 Palm Springs Drive, Ste. 130
Altamonte Springs, FL 32701
United States
Phone: 407-588-0101

Facebook Twitter Instagram Linkedin Youtube
SOC 2 Certified Logo
Form CTA

©2023 ProVal Technologies, Inc All Rights Reserved.

Privacy Policy – Disclaimer

 How Secure is your RMM? 

August Blog

I truly view ProVal as a partner and extension of my team, not as one of my vendors

When our NOC Manager left last fall we wanted to replace the position with an outsourced NOC to reduce headcount, and bring in an expert to both Labtech and our backup solutions. Bringing in ProVal Technologies was one of the best decisions we made last year and has paid for itself.During our first few monthly recurring Labtech admin meetings the ProVal team discovered incorrect settings and policies that were not applying correctly in our Labtech server. Things that we thought were automated and working were not. For example, there were multiple scripts and policies running but set to do nothing such as disk cleanup scripts. Cisco Umbrella was not configured correctly. Server alerting was not set right and the list went on.The backup team sends daily and weekly reports and updates that reduce my technicians time that we used to spend on backup or antivirus tickets that took forever and were tedious.ProVal also brings in great insights to our business and really cares about our success. They will frequently mention to me in meetings what new scripts they can import to make us more efficient or will schedule upgrades to our backups, Labtech, etc so I don’t have to worry. I truly view ProVal as a partner and extension of my team not as one of my vendors.

Chris-Warnick-Headshot
Chris Warnick
Vision Computer Solutions
Northville, MI

They will quickly become an extension of your team and your ROI will reflect the results

We have been a long time user of Labtech and had tried for many years to manage the product internally with no real success at the level we needed to make our solutions more efficient for our customers. Once we hired Vikram and his team at ProVal, it solved all our pain points with the product and we really felt like we were leveraging the tool as it was designed. If this sounds like you and it’s keeping you up at night, then you need these guys. They will quickly become an extension of your team and your ROI will reflect the results.

Bryan-Wolff-Headshot
Bryan Wolff
CEO, Wolff Logics LT Managed & Admin Services
Cedar Park, Texas

They work well, fast and on budget

We met Vikram from ProVal Tech at Gary Pica’s Shnizzfest a year ago. Vikram explained the advantage of having trained, certified personnel take care of our recent Automate implementation. Even though we had taken an implementation package from ConnectWise to start up the program, we felt many custom configurations we needed for our business were lacking. We hired ProVal Tech after Automate was installed to help us with this task. From sales to technicians everyone was professional and knowledgeable. Onboarding was simple, and well documented. Tools on the web were supplied while we did the work, and they allowed us to track what was done, and see the improvements in the environment. It was easy to reach any of the team members, for any concern or question – all answered with courtesy and smile. Once the work was finished, we were given some training and explanations, add to that documentation, about the work and the scripts and features added to the program. We have been happily working with Automate since then. We can only recommend this efficient team of people for any work into Automate: they work well, fast and on budget.

Ben-Prevost-Headshot
Ben Prevost
FarWeb IT
Sherbrooke, Canada