Smart automation initiatives increasingly extend beyond individual production lines. Machine builders support installed bases worldwide, manufacturers are centralizing service expertise, and maintenance teams are expected to resolve issues faster and more consistently. Use cases such as remote commissioning, condition-based maintenance or remote troubleshooting all depend on continuous, secure access to operational technology. Without controlled connectivity to machines and control systems, many automation concepts remain theoretical rather than operational.
Remote access is therefore not just an IT issue, but a core enabler of smart automation in OT. However, traditional access models struggle to meet industrial realities. Software agents cannot be installed on many machines and other factory equipment, while classic VPN solutions often grant overly broad network access, increasing cyber risk. To address this challenge and bridge the gap between remote access in IT and OT, TeamViewer has developed an agentless, zero-trust approach that has now been translated into a complete hardware–software–services gateway, together with its partners Kontron and Bechtle.
The software
At the software level, TeamViewer’s Agentless Access is designed to enable secure remote access to industrial systems without installing software on the endpoint itself. Instead of modifying machines or control systems, access is brokered centrally. This way, practically any endpoint inside the network that owns an IP address can be accessed in a secure manner, from HMIs, PLCs, SCADA systems and control panels to peripheral devices such as shopfloor security cameras, sensors, or databases and servers.
This approach is particularly relevant in brownfield environments, where production landscapes have grown over decades and often include validated or proprietary systems that must not be changed. From an operational perspective, agentless access supports typical smart automation use cases such as remote diagnostics, PLC programming and system maintenance, while preserving system integrity.
Why VPN-based access falls short in industrial automation
Many industrial networks still rely on VPN technologies to enable remote access. While VPNs authenticate users, they typically grant access at the network level. Once connected, additional mechanisms such as access control lists must be configured to prevent users from reaching entire subnets. In highly segmented OT environments, this model increases complexity and risk.
Agentless Access follows a fundamentally different principle. Built according to a restrictive-by-design, zero-trust architecture, each connection is authorized individually, limited in time and bound to a specific role, endpoint and purpose. Access is granted point-to-point rather than network-wide, using protocol isolation and controlled tunnelling. This significantly reduces attack surfaces and aligns with industrial security standards such as IEC 62443 and regulatory frameworks like NIS2 and the EU Cyber Resilience Act.
Companies therefore benefit from a high level of governance, while machine builders, plant operators, and internal automation teams can directly access their global systems and in accordance with the requirements of a modern zero-trust architecture. Instead of using homegrown or disparate remote access solutions from different vendors, access is managed through a central platform that covers the needs of both IT and OT teams.
From software to a secure access gateway
TeamViewer has partnered with Kontron and Bechtle to deliver the Secure Access Gateway with Agentless Access pre-configured. Instead of deploying Agentless Access as a purely software-based feature, it is now available as a scalable, preconfigured industrial hardware gateway that can be easily deployed directly across complex production networks. The offer is complemented by comprehensive managed services by Bechtle, covering the whole product lifecycle.
In this setup, the gateway acts as the on-premises access point between OT systems and the TeamViewer platform. It routes all connections securely, without exposing machines directly to the internet and without requiring changes to endpoints. For manufacturers, this transforms an abstract security concept into a tangible, plug-and-play automation component.
Industrial-grade hardware and operating system
The hardware foundation of the gateway is provided by Kontron. Their robust KBox A-251 or KBox A-151 gateway runs KontronOS, a hardened, Linux-based operating system developed specifically for industrial environments. It supports secure boot, role-based access control and controlled update mechanisms, ensuring system integrity even in long-running installations.
Kontron’s gateways are designed for continuous operation and support a wide range of industrial interfaces. This makes them suitable for legacy environments, including systems that still run older operating systems. By tightly integrating TeamViewer Agentless Access into this platform, the gateway delivers a secure and easily scalable access architecture to the shop floor.
Deployment, operation and lifecycle services
Security and automation do not end with hardware deployment. Bechtle complements the gateway solution with managed services. This includes pre-configuration of the gateway hardware, provisioning, delivery and remote commissioning. Optionally, the services also include the licensing for TeamViewer Agentless Access.
Beyond rollout, Bechtle manages monitoring, release and deployment processes as well as incident management. For industrial companies, this service-oriented approach reduces internal effort and ensures that gateways remain secure, compliant and operational over time. Especially in large-scale smart automation initiatives, professional lifecycle management is essential for maintaining consistent security standards across sites.
Enabling secure smart automation at scale
By combining Agentless Access, industrial-grade hardware and managed services, the Secure Access Gateway provides a scalable foundation for smart automation. Engineers and service teams gain controlled access to machines and control systems, while IT and security teams retain governance, auditability and compliance.
As automation becomes more distributed and service-oriented, such integrated access solutions are key to connecting systems securely and efficiently. With its Europe-based and trusted partner ecosystem, TeamViewer turns secure remote access into a standardized industrial building block, enabling smart automation without compromising cybersecurity.
