Management and Security powered by Landesk

Agent settings: Remote control

Tools > Configuration > Agent Settings > Remote control

Use the Remote control settings dialog box to specify and save a collection of remote control settings.

About the General settings page

The Remote control settings dialog box's General settings page contains the following features:

  • Allow HTML access: Allows the remote control agent to receive HTML remote control requests. For more information, see HTML remote control.
  • Allow legacy remote control access: Allows the remote control agent to receive legacy remote control requests from the Windows-based remote control viewer application. For more information, see Using the remote control viewer.

There are two sets of remote control permissions you can grant, one set that affects only the legacy Windows remote control viewer application/agent, and another set that affects both the windows remote control remote control viewer/agent and the HTML remote control viewer/agent.

Legacy permissions
  • Remote control: Grants permission to control the device.
  • Draw: Grants permission to use the viewer window's drawing tools on the device.
  • Chat: Grants permission to chat with the device.
  • Run programs on remote device: Grants permission to run programs on the device.
  • Run as administrator: Starts programs with administrator permissions.
Legacy and HTML permissions
  • Remote control view only: Remote control sessions are view only. The remote control viewer can only see the remote computer and can't take control of it.
  • Restart: The remote control viewer can reboot the remote computer.
  • File transfer: The remote control viewer can exchange files with the remote computer.

About the Indicator settings page

The Remote control settings dialog box's Indicator settings page contains the following features:

  • Floating desktop icon: Displays the remote control agent icon on the device screen at all times or only when being remotely controlled. When being controlled by the console, the icon changes to show a magnifying glass and the icon's title bar turns red.
  • System tray icon: Places the remote control agent icon in the system tray. Again, the icon can be visible all the time or only while being remotely controlled.

About the Permission settings page

The Remote control settings dialog box's Permission settings page contains the following features:

  • Permission not needed, full access
  • End user must grant permission and must be logged in
  • End user must grant permission, but only if they are logged in
  • End user must grant permission
  • Display a custom message:

    Prompts the user with a custom message created here for permission to do one of the following:

    • Remote control
    • Chat
    • Remote execute
    • File transfer
    • Restart
    • All permissions
    • Ask permission to use all features at one time
  • Close permission message box after: Allows the user to accept or deny permission (in seconds) to the managed device. This is a configurable time setting for how long the permission window remains open when asking permission to remotely control a managed device.

About the Security settings page

When deploying remote control, you need to consider which security model you want to use. You have these choices:

  • Local template: This is the most basic security that uses whatever remote control settings are specified on the device. This model doesn't require any other authentication or group membership.
  • Windows NT security/local template: Allows only members of the Remote Control Operators group to initiate remote control connections from the console to remote devices. Permitted users are still required to use the permissions set from the Permission settings page of this dialog box.
    Since the Remote Control Operators group is a local group, each device has its own copy of the group. To avoid managing each device's Remote Control Operators group individually, include global (domain level) groups with each local group. Permitted users still use the device's remote control settings, such as permission required.
    • Smart card required: This option is only available when Windows NT security is selected. When you deploy an agent setting with this option selected to managed devices, those devices will require SmartCard hardware authentication before you can remote control them. For more information, see About SmartCard security.
  • Integrated security: This is the most secure option and is the default. Integrated security is described in the next section.

About the Session settings page

The Remote control settings dialog box's Security settings page contains the following features:

  • Lock the remote control computer when the session ends: Locks the managed device to secure mode whether the user is logged in or not.
  • Terminate remote access if the user logs out or locks the machine: Automatically ends the remote control session if the user logs out or locks the machine.
  • Allow the end user to terminate the session: If this option is selected, users being remote controlled can use the remote control floating icon or the system tray icon to stop an active remote control session. If this option isn't selected, users won't be able to stop an active session.
  • Close inactive session after: If no mouse or keyboard activity is transmitted via the remote control viewer for the duration of this timeout, the session will end.