Advanced Topic: Agent on the Endpoint
What is an agent on the endpoint?
An agent on the endpoint simply refers to a software program that is installed and running on individual devices. This agent is responsible for monitoring and managing security-related tasks on the device.
Why is an agent on the endpoint important?
- Visibility into the Device: There are hardware and software configurations and changes that can only be detected through on-device observations.
- Remote Monitoring of Assets: agents enable the remote monitoring of global assets and employee devices, regardless of whether they are connected to the organization's network.
- Proactive Threat Mitigation: agents have capabilities to actively respond to risk and threats directly on the device.
- Phish-resistant: if the agent is hardware bound, it cannot be easily phished.
Beyond Identity and agent on the endpoint
Beyond Identity's solution leverages a trusted, hardware-bound agent on the endpoint. This agent manages all the cryptographic keys used for authentication, as well as collecting risk signals directly from the device.
Our agent also integrates with existing security solutions (EDR, MDM, ZTNA, etc.) to enrich an authentication decision as coordinate protective actions directly on the endpoint.
Identity and device trust are a core part of a zero trust architecture. Check out our zero trust assessment for a full analysis on your authentication and device management practices and how to reach an optimal level of zero trust.