Two Factor authentication

Discussion in 'Account and Subscription Management' started by trebuin, Oct 8, 2016.

  1. trebuin

    trebuin Bit poster

    With the recent hack of teamviewer which has two factor and happened to protect me through that, is there plans to enable two factor authentication for our accounts here at parallels?
    WilliamC6 likes this.
  2. Hi, please check this KB for more info about Parallels access secure.
    Please keep you app updated and we will also let you know once we get any info about new protection
  3. trebuin

    trebuin Bit poster

    256-bit AES sadly is not human proof. With the way access functions, I would push two factor much higher, and with the gov't pulling the plug on cell SMS, I would look at a token similar to what Blizzard uses.
  4. WilliamC6

    WilliamC6 Bit poster

    We're wondering the same. We need two factor auth enabled for Access before we can deploy it to all of our users, or the ability to enforce a SAML SSO login-only (where we can enforce two factor ourselves).
    The reassurance of 256-bit encryption is good to see, but we also need two-factor authentication due to the simple risk of user credentials falling into the wrong hands.
    timmo likes this.
  5. PaulChristopher@Parallels

    PaulChristopher@Parallels Product Expert Staff Member

    Hi All, Parallels Access uses state-of-the-art security, including SSL connections and 256-bit AES (Advanced Encryption Standard) encryption, so all data transferred between your computer and Parallels Access app on your iPad is secure even if you're using a public Wi-Fi connection.
    SSL communication is organized via certificates, which each side requests from the trusted Parallels Access certificate authority and can verify it anytime, so it's impossible for an intruder to replace a certificate with his own and compromise the connection between the mobile application and the remote computer.
    Parallels Access has a new build on December 26, 2016 -- the "trusted devices" feature will be enabled.
    Existing users who use a new mobile device or a new Web browser to connect to a remote computer need to confirm the device or browser is trusted.
    No confirmation is required for all devices registered by the moment of the release. Also, if there's a newly created account, the mobile device or the Web browser from which the account is created is assumed trusted by default.

Share This Page