What’s the Best Way to Secure Remote Admin Access to Workstations?

We use ConnectWise ScreenConnect for everything! It’s been a lifesaver for remote tasks and support.

If RDP and VPN aren’t effective for your needs, ScreenConnect is a good option for RMM. Remember, though, LAPS is just for managing local admin passwords, not what you're looking for.

We’ve been using NinjaOne for a few years now and have had no complaints. It handles admin tasks smoothly and securely.

For any privileged access situation, a PAM solution definitely beats LAPS. But honestly, you really should consider an RMM tool. It helps mitigate the risks of open RDP and gives you better security and auditing capabilities. If your helpdesk needs to do a lot of tasks, RMMs usually include admin command access to make things easier.

We use TailScale with Microsoft 365 for authentication, plus DUO for 2FA during Windows Login over RDP. It adds an extra layer of security that's worth considering.

Have you tried Bomgar? It’s a solid tool for providing remote support safely and effectively.

I get that RMM tools are critical for helpdesk support, but what can we do for team members needing occasional admin access? Are there any Microsoft products or Intune functionalities that could help? Thanks!

It sounds like you need a Remote Monitoring and Management (RMM) solution. Those tools are designed to help with exactly what you're describing!

Honestly, it’s like wanting to fix a car without the right tools. MSTSC by itself isn't an RMM. Dive into RMM solutions—they make tasks more efficient and are safer. Going DIY might seem cheaper now, but it usually isn’t in the long run, especially when things go sideways.