B SERIES APPLIANCE DEPLOYMENT GUIDE
What is BeyondTrust Secure Remote Access Cloud?
BeyondTrust Secure Remote Access Cloud is a cloud-hosted solution that provides the full functionality of BeyondTrust Secure Remote Access in a cloud deployment. It acts as a central platform for routing communication between users and remote systems, offering advanced security features such as TLS encryption, role-based access control, and auditing to ensure secure and compliant remote operations.
How is it useful to my organization?
BeyondTrust Secure Remote Access Cloud enhances your organization's ability to support users and manage IT resources by offering remote control of computers and mobile devices, chat support, skills-based routing, ITSM integration, smart collaboration, embeddable support components, and robust reporting insights. Its cloud-based design reduces infrastructure costs, decreases the workload on IT personnel, and improves support delivery without the need for capital investment, enabling greater efficiency and scalability while maintaining high security standards.
What is Secure Remote Access?
BeyondTrust Secure Remote Access includes Remote Support and Privileged Remote Access, enabling secure remote system access with features like role-based controls, session monitoring, and MFA to enhance productivity and protect assets.
FAQS
Implement Secure Remote Access
What hosting regions are available for the solution?
See BeyondTrust Cloud region availability.
What cloud provider is leveraged to deliver the Secure Remote Access solution?
The solution is hosted within a single tenant EC2 instance in Amazon Web Services. This environment is audited under the requirements for SOC 2 Type 2 and ISO 27001.
Upgrades, uptime, and downtime
What is BeyondTrust’s service level agreement (SLA) for solution availability?
BeyondTrust’s Availability SLA shall be ninety-nine and nine-tenths percent (99.9%) during a calendar month.
Are upgrades or system changes installed during off-peak hours or in a manner that will not impact business operations?
Yes. When notified of an upcoming upgrade, BeyondTrust Technical Support can schedule the upgrade within your change window, if preferred.
Vulnerability and penetration testing
Does the solution undergo frequent vulnerability and penetration testing?
Yes, BeyondTrust performs regular, internal vulnerability scanning and penetration testing on all product solutions. Also, BeyondTrust contracts with third-party vendors to perform periodic penetration tests on the platform to identify risks and remediation that help secure the solution.
Can I perform my own penetration testing against the solution?
Yes, you must notify BeyondTrust in advance of any test by submitting a request using the BeyondTrust Online Support Portal and completing a penetration testing agreement. This activity can be performed only once per calendar year.
Data and access
Does the solution support role-based access for end users and system administrators?
Yes. This is a core component of the solution that can be configured and managed.
Who can access my data?
Access to cloud services by BeyondTrust employees is protected by authentication and authorization mechanisms, and BeyondTrust has implemented an access control authentication approach based on need to know and separation of duties.
What is the range of IP addresses used?
The address assigned to a cloud site is pulled at random from the pool of addresses for the region that the site is deployed in.
Referencing AWS documentation, you can determine the range of addresses that your cloud site may use: https://docs.aws.amazon.com/vpc/latest/userguide/aws-ip-ranges.html
Note
For more information about these topics, see the Cloud Service Guide.
Updated 5 days ago