DocumentationAPI ReferenceRelease Notes
Documentation
Start typing to search…

Security

What is the Security page?

The Security page allows users to manage personal security settings, such as enabling two-factor authentication (2FA) and viewing active sessions.

How is the Security page useful to my organization?

The Security page enhances account security by enabling users to implement 2FA and monitor active sessions, supporting organizational efforts to safeguard sensitive information.

How do I access the Security page?

  1. Sign into app.beyondtrust.io.
    The BeyondTrust Home page displays.
  2. From the main menu, click Remote Support > My Account.
    The Profile page opens and displays by default.
  3. At the top of the page, click Security.
    The Security page displays.

What are passwordless authenticators?

Password authenticators are apps, usually on a mobile device, where you can enable passwordless authentication.

What is passwordless authentication?

Passwordless authentication is a security mechanism that allows you to access systems, applications, or services without the need to enter a traditional password. Instead, it relies on alternative methods of verifying a user's identity, such as biometric authentication (such as fingerprint scanning or facial recognition), one-time passcodes (such as codes sent via SMS, email, or authenticator apps), magic links (via email or text), push notifications (sent to a registered device, where a user approves the login request), hardware security keys (such as a Yubikey or Smart Card), and device-based settings (such as Windows Hello).

Important information about passwordless authenticators

  • Set up authenticators (for example, YubiKey or Windows Hello) within the OS before registering the authenticator. It is important to follow the manufacturer's directions. For example, YubiKey Bio requires a PIN at setup, even for fingerprint authentication.
  • Your browser or OS can timeout the authentication if there are delays responding to prompts.
  • Windows Hello can be set up using a PIN and a fingerprint. If this is done, either method can be used, regardless of how it is registered.
  • Authenticator registration may fail if the browser and OS combination does not support passwordless authentication (for example, Firefox 110 does not support passwordless authentication for Linux and macOS).
  • Authenticators usually record failed authentication attempts, and may lock. They must be reset following the manufacturer's instructions.
  • A failed authentication at the authentication device does not count as a failed login to the BeyondTrust site, as the incorrect information is not submitted to the site

What is two-factor authentication?

Two-Factor Authentication (2FA) is a security method that requires you to provide two different forms of identification to verify your identity. This process adds an extra layer of security to protect accounts and systems by combining two factors from:

  • something you know (such as passwords, PINs, or security questions),
  • something you have (such as a one-time passcode, a hardware security key, or a smart card), and/or
  • something you are (a biometric identifier such as fingerprints, facial recognition, or retina scans).

Change or reset your password

  1. In the Your Password section, enter your username.
  2. Enter your current password.
  3. Enter a new password.
📘

Note

The new password cannot match any of the previous 24 passwords, or any password set within the last 24 hours.

  1. Confirm the new password.
  2. Click Change Password.
    Your password updates immediately.

Register a passwordless authenticator

You can use FIDO2-certified authenticators to securely sign in to Remote Support, the Desktop Representative console, and the Web Rep console without entering your password.

📘

Note

This feature is only available when enabled on the Management > Security page.

Updated 3 months ago

©2003-2026 BeyondTrust Corporation. All Rights Reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.