Protecting our customers’ technology asset data is one of our highest priorities. While many organizations define security solely through internal controls, Lansweeper takes a broader view: security is ultimately measured by our customer’s security outcome.
This belief led to the launch of our Security by Design initiative in 2025, a cross-functional, long-term commitment to ensure Lansweeper remains secure, reliable, and aligned with modern security expectations.
Lansweeper takes responsibility for helping customers use the platform securely in practice. Controls, safeguards, and built-in protections are designed to reduce risks associated with configuration errors and day-to-day operation.
Lansweeper embeds strong security defaults that reduce misconfigurations while keeping the platform straightforward to operate. By minimizing unnecessary choices and reducing setup effort, we help customers maintain a strong security posture with less administrative overhead.
Fundamental security capabilities should not be tied to higher-priced tiers. Features such as SSO and 2FA are provided without additional cost, reflecting our commitment to making secure usage accessible to all customers.
Lansweeper treats all customer data processed in the cloud platform as highly sensitive. Access is extremely limited and monitored. A small number of authorized employees may access data only under strict controls and only for legitimate purposes such as technical support. Authentication for this access requires SSO with 2FA and VPN.
Lansweeper provides identity and access capabilities aligned with common enterprise IAM requirements:
These controls allow organizations to enforce consistent authentication and account-security policies across their environment.
Granular RBAC capabilities allow organizations to enforce least-privilege access. These include, depending on your installation with Lansweeper Cloud Console or Lansweeper Classic:
This structure supports secure operational practices and controlled access across large, distributed environments.
You can find details in our Knowledge base article on how to enhance network security with Lansweeper’s role-based access control for Lansweeper Classic and for Lansweeper Cloud Console.
Lansweeper is expanding support for secure credential handling through upcoming integrations with enterprise credential vaults. These integrations will allow customers to store and manage discovery credentials exclusively within their own vaults, ensuring sensitive secrets remain under their direct control.
Planned integrations include:
These integrations are currently in development and will be introduced as part of the Security by Design initiative. Once available, Lansweeper will connect directly to supported vaults without storing credentials in Lansweeper software.
Lansweeper applies multiple layers of vulnerability management to continuously strengthen platform security and reduce customer risk.
With Lansweeper Cloud Console, updates are delivered automatically, ensuring your scanning environment stays current without requiring manual intervention.
With Lansweeper Classic, the Auto-Update capability keeps your installation current with the latest security patches, fixes, and performance improvements. This reduces administrative effort and helps limit exposure to known vulnerabilities.
You can find detailed guidance on securing your Lansweeper Classic setup in our knowledge base article Secure your Lansweeper On-premises setup.
Lansweeper maintains a comprehensive SSDLC that includes:
These measures help proactively identify, mitigate, and prevent vulnerabilities across the platform.
More information on the disclosure program.
Modernized Discovery follows a secure-by-design architecture that incorporates:
These controls support secure deployment across hybrid IT environments.
Audit Trails provide detailed visibility into user actions, system events, and configuration changes within the Cloud Console. Logs are retained for 180 days and can be exported to external SIEM platforms through API integration for monitoring, investigation, or compliance reporting.
Explore the full platform, free for 14 days.
No credit card required.