05-23-2024 04:28 PM
Lansweeper documentation points out the passwords of submitted creds are always encrypted and eventually these credentials are passed to assets and mail servers in order to access them. I'm looking for a bit more clarity on how the credentials are passed? How is the application polling and auditing these systems with the credentials? Some of what we found looks to be insecure or is using legacy authentication methods (ntlm fallback) which aren't entirely secure.
05-28-2024 02:02 PM
Hello there!
You can find more information regarding credential and database security in Lansweeper here: https://community.lansweeper.com/t5/installation/credential-and-database-security-in-lansweeper/ta-p...
We would also recommend visiting our trust center for more information regarding security and compliance: https://www.lansweeper.com/trust/
Should you still have questions about security and compliance after visiting our trust center, don't hesitate to reach out to our security team directly, as they are best suited to answer your questions.
Our security team can be contacted via email: security@lansweeper.com
Experience Lansweeper with your own data. Sign up now for a 14-day free trial.
Try Now