LogMeIn Introduces New Security Features

security

Well configured remote access solutions, like LogMeIn, increase productivity with no adverse impact on network security.  As we continue to advance our security features, we are committed to ensuring the ease-of-use for users combined with components that promote secure, safe, and wise use of our products.

According to recent research[1], security concerns are the number one roadblock for businesses moving to the cloud.  Taking the appropriate steps to secure your business is often simple –but 55% of businesses do not require two-step verification to ensure that extra layer of security and authentication[2].  Further, over half of businesses rely on either in-app prompts to direct users on updates and password strength or rely on employees to establish password strength and change passwords on their own[3].

With this in mind, we are excited to announce several new advancements to our Login Policy features that add additional security to prevent unauthorized access to your LogMeIn account and offer several verification options for end-users to gain instant access so that they are better equipped to be productive from anywhere. This is particularly important for those companies in regulated industries that require HIPAA and PCI compliance.[4]

What’s new with Login Policy?

Password Strength
Two new options are available for Password strength: ‘Standard’ and ‘Strong’.  Applying a “Strong” password policy will force users to create a robust, secure password meeting the following requirements.

  • Seven characters or more
  • Made of capital letters, lowercase letters, and numbers
  • Required change every 90 days
  • Does not match user’s LogMeIn ID
  • Does not match the LogMeIn ID or any of the user’s four most recent passwords

Your users will be affected at their next login after the feature has been enabled. If users have a password that does not meet the requirements, they will be forced to change their password.

Forced Two-Factor Authentication
Two-factor authentication adds a second layer of protection to your LogMeIn account.  Now, administrators can require this feature for all users. This added security process prompts users to enter a one-time security code with their password whenever they sign in.  Users have the opportunity to set this up from either a mobile authenticator app or via SMS text message.  Additionally – if the primary method is unavailable, users will be able to request a code via a backup.

All methods of two-factor are available for use. Users can use:

  • Security Codes via SMS
  • Google Authenticator (or Android/Windows equivalent)
  • Emailed Security Codes
  • LogMeIn Authenticator App  – NEW

login policy

 

 

 

 

 

 

 

 

 

 

 

LogMeIn Authentication App

pmi-app-icon-appstore_1024x1024

To make our end users experience as fast and simple as possible, we now have our own LogMeIn Authenticator app which can be used to simplify the second factor authentication to a single gesture.

The LogMeIn Authentication App is a dedicated two-step verification tool for use with LogMeIn accounts[5]. Using LogMeIn Authenticator, users can verify their identity by tapping the notification that they receive when attempting to sign in to their LogMeIn account. The app will also generate security codes as a secondary verification solution when your phone is offline.

 

For a detailed overview of these Login Policy enhancements, check out our online guide for updates on Password Strength and Two-Step Verification or login now. Also download the LogMeIn Authentication App today!

lmiquote

 

[1] Edge Strategies and LogMeIn
[2] Ponemon Research and LogMeIn
[3] ESG Research
[4]  When used and configured properly, the technical security features employed by LogMeIn assist companies with their HIPAA and PCI compliance requirements. In combination with User Access through Group/Computer permissions, LogMeIn allows you to get HIPAA and PCI ready.
[5] Please note it will not work with external sites/apps.

         

Introducing the New Central

We’re rolling out new versions of our LogMeIn Central product line, each designed to deliver unique value to our IT customers, while making it far easier for each and every Central customer to get the right product – and the right capabilities – to meet their specific needs.

What’s new?

Starting this week, there will be three new versions of Central: Central Basic, Central Plus and Central Premier. The foundation of this simplified and improved offering is our signature remote access capabilities, including even faster remote access, some great new features to help better organize large groups of computers, new options to further secure access to your computers with two-factor authentication, as well as mobile and desktop app enhancements. And if that is all you are using today, then the Basic version will likely be a perfect fit.  For those customers who are using Central to empower remote workers, Central Plus offers state-of-the-art remote productivity capabilities like remote printing, multi-monitor support, and file transfer capabilities across ALL computers in an account. Designed for business-critical IT management and automation, Central Premier  delivers  advanced alerts and monitoring, One2Many automated tasks (and scripts), simplified Windows updates, reporting, self-healing alerts (including new mobile alerts), and new premium customer support.

central GG comparison chart

When will this be available?

The new versions of Central are being rolled out over the next few weeks to ALL current Central customers. So if you’re a Central customer, you will soon experience the new version of the product that best meets your needs – and you’ll get this new version for the remainder of your current subscription at no additional cost.  Customers can also choose to gain access to other versions immediately, should they choose, by contacting their account manager.

How will this impact pricing?

The new versions of Central should not only simplify how a customer chooses desired capabilities, but also how they purchase – and scale – their Central account to meet their specific organizational needs. In other words, the pricing has been created to best pair needs with value. One of the biggest changes with this move is the elimination of purchasing individual seats of LogMeIn Pro (for host computers) separate from Central. Pricing will be set simply based on the capabilities you use which translates into which version you need and the number of remote computers you’d like to remotely manage, access or support. For some customers, this will mean not only a more simplified purchasing, but an absolute reduction in total costs.  For others, it will provide a much better way to simplify payment for the value they expect and count on with Central.

Please note, that unless you choose to upgrade prior to the end of your current subscription, pricing won’t change until the time of your Central renewal.  To make the transition as smooth and seamless as possible you will  be notified 30-days in advance of your renewal.  We’ll provide you specific pricing information and details on the product you’ll have post renewal.

When and where can I learn more?

Once your Central account has been updated, you’ll experience the new features first hand We’re also carving out space in our community site, dedicated specifically to the new Central, where product specialists are happy to share more and answer any questions you may have. And in the coming days and weeks, we’ll be posting a whole new series on the Central blog featuring product demos, deep dives on new features, as well as tips & tricks that will help you get the most value out of your Central product.  So subscribe to the blog, check out the community, and keep a look out for the new Central update in your account.

         

[INFOGRAPHIC] MOBILE IS TRANSFORMING CUSTOMER ENGAGEMENT

CMobile Engagement Infographicustomers are engaging with businesses in more ways and on more devices than ever before, and businesses require robust customer engagement solutions to support those interactions. We conducted a global study of nearly 6,000 mobile device owners across ten countries to examine the current state of mobile engagement, customer expectations and preferences, and the differences between those shopping and those seeking support on their mobile device. We believe it is the most comprehensive piece of research ever done on the subject of effective mobile engagement.

Among the findings:  72% of consumers use mobile devices to shop or research products and services; ½ of them engage with companies in some way on their mobile device (i.e. email, chat, etc.); and, unfortunately, they are unsatisfied with their mobile experience more than 40% of the time.

You can get a full copy of the Effective Mobile Engagement research report, or get some quick highlights from the infographic.

         

LogMeIn and the impending death of browser plugins

Update 12/26/2013: Comments on this post are now closed. Should you need support, please contact us.

Update 12/23/2013: When starting a remote session, Firefox might display a “Launch Application” dialog. Please simply enable “Remember my choice for logmein links”, and click on “OK”, without starting to browse for an application with the “Choose…” button. The entry selected by default (“LogMeIn Client Application” or “Launch LogMeIn Client”) should simply work.

Update 12/19/2013: We have updated the Windows LogMeIn Client to version 1.0.0.158 which will solve many of the problems you might have experienced. Users initiating a new RC/FM session will automatically update to the new app.

ending of browser plugins

Starting this week, the way you use LogMeIn to remotely access remote computers from a browser is going to change. Don’t worry, we’ve worked hard to maintain the same quick, easy, and robust experience you’ve come to trust and hopefully enjoy. But ‘how’ we do it is changing, and we just wanted to take a minute to explain what’s changing, why it’s changing, and yes, why this new approach should provide an even better experience for you.

The end of browser plugins 

The dawn of the new era is upon us: browser plugins are soon to be a thing of the past. Many modern browsers have ditched browser plugins completely. iOS and Android led the way, and now Windows 8 “Modern UI” Internet Explorer has also said goodbye to plugin support. OS X’s Safari 6.1 and above enabled click-to-run mode for plugins in October. Firefox will follow in December, and Chrome joins the party in January – their plan is to go even further, and completely remove plugin support by the end of 2014.

So what does this have to do with LogMeIn and your remote access experience?  At LogMeIn, we’ve long utilized plugins to offer a rich set of remote access functionality – plugins offered an elegant means of overcoming the web’s limitations and enrich the browser-based user experience. So we’ve been watching this march towards a plugin-free world and actively exploring the best ways to deliver the same great experience on which you’ve come to love.

Introducing the new, plugin-free LogMeIn

As we started to devise our solution for new age, it quickly became clear that native, operating system level applications offered the best experience. So starting with our next major LogMeIn host release – initially rolled out today — users of Safari 6.1, Firefox 26, Chrome 32 and above won’t see any more plugin installation prompts. Instead, when they first make a remote control or file manager connection in the browser, they will be prompted to download a small support file (.exe file on PC, .zip file on Mac). The LogMeIn Client executable automatically opens a new window and displays the remote control or file manager screen folks know and love. In fact, if you have ever used our online meeting product, join.me, it’s almost an identical experience.

The only difference from an experience standpoint is that your remote access session will be in a new window, not in the browser, itself. And that itself introduces some new benefits, the biggest being that you can now have multiple remote access sessions going at the same time – a perfect solutions for IT pros looking to multi-task management and troubleshooting activities across multiple computers.

The new experience will be gradually rolled out in the coming days and weeks, and you can get a sneak peek at how it works in this video.

So welcome to the new post plugin era. We hope you’ll like our new remote access experience as much as we do. And as always, we’re very interested in your feedback.

         

We’re Ready for Windows 8.1 and IE11

WINDOWS HOST UPDATE VERSION 4.1.3426 AND PLUGIN UPDATE VERSION 1.00.1055

windows 8.1

New features include:

Support for Windows 8.1 and Internet Explorer 11 (IE11)

  • Launch remote control in any supported browser on a computer running Windows 8.1
  • Launch remote control in IE11 running on any supported Windows OS
  • From any client, control any host computer running Windows 8.1
  • Note: Windows RT is not supported

Enhancements

  • Cryptographic protocol enhancements

Host Fixes

  • Improved handling of the number lock key when using the “Use Legacy LogMeIn Mapping” option during remote control
  • Improved Wake On LAN capabilities when waking Windows hosts

Plugin Fixes

  • Improved color reproduction during remote control
  • Fixed a bug that resulted in failure when attempting to connect a drive during remote control