Fingerprints and User-Agents in BAS
How browser fingerprinting works in Browser Automation Studio — what a fingerprint includes, why BAS uses real ones, and how to keep a consistent identity per account.
A fingerprint is everything a website can learn about your browser without you logging in — and modern anti-bot systems lean on it heavily. BAS’s big advantage is that it drives a real browser with a real, coherent fingerprint, but you still have to manage that identity correctly per account.
What a fingerprint actually includes
The user-agent string is the part people know, but it’s a small piece. A full fingerprint includes:
- User-agent — browser, version, OS.
- Screen and window — resolution, color depth, device pixel ratio.
- Canvas and WebGL — how your hardware renders graphics, which varies subtly per machine.
- Fonts — the set installed on the system.
- Timezone and language — and whether they match the IP’s location.
- Hardware hints — CPU cores, memory, touch support.
Sites combine these into a near-unique ID. Changing one in isolation just creates contradictions.
Why BAS uses real fingerprints
Naive automation either leaks “I’m a bot” signals or sets a few properties that don’t agree with each other. BAS instead applies complete, internally consistent fingerprints taken from real browsers, so the dozens of values line up the way they would on a genuine device. This coherence is the whole point — detectors look for contradictions, not for any single value.
The user-agent is only one signal
Setting a fancy user-agent while leaving the rest default is worse than doing nothing: now the claimed browser disagrees with the canvas, fonts and screen. Treat the user-agent as one field inside a fingerprint, never as a standalone disguise.
One fingerprint per account, kept stable
The rule that mirrors cookies and proxies: each account gets one fingerprint and keeps it. A returning user has a stable device. If an account that always looked like a Windows/Chrome desktop suddenly looks like an Android phone, that inconsistency is a strong bot signal. Store the fingerprint with the account and reuse it every run.
Align fingerprint, proxy and timezone
The three identity layers must agree:
- A US residential proxy with a Moscow timezone and Russian language is a contradiction.
- Match timezone and locale to the proxy’s region.
- Keep the fingerprint, the cookies and the proxy bound together as one persistent identity.
Get this trio aligned and your accounts read as ordinary returning users — fewer captchas, fewer bans. With identity handled, the last core browser skill is running several of these in parallel across tabs and threads, covered next.
FAQ
Is changing the user-agent enough to avoid detection in BAS?
No. The user-agent is just one signal. Modern sites also read canvas, WebGL, fonts, screen and dozens of other properties. A user-agent that disagrees with the rest of the fingerprint is more suspicious than not changing it at all.
What is a browser fingerprint in BAS?
It is the full set of properties a site can read from your browser — user-agent, screen size, canvas and WebGL rendering, installed fonts, timezone, language and more. Together they form a near-unique identity that sites use to recognise visitors.
- Browser Automation Studio: The Complete Practical GuideGuide
- Building Your First Bot in Browser Automation StudioA step-by-step walkthrough of creating your first working BAS bot — from a blank project to a flow that navigates, extracts data, and runs in multiple threads.
- Setting Up Proxies in Browser Automation StudioHow to configure proxies in BAS the right way — proxy types, per-thread assignment, rotation, and the checks that keep multi-account bots from getting flagged.
- Finding Elements in BAS: Selectors That Don't BreakHow element search works in Browser Automation Studio — CSS vs XPath selectors, why recorded ones break, and how to write selectors that survive page changes.