(imported topic written by SystemAdmin)
We’d like to enable RA but not leave it running unless the user initiates assistance.
Is there a way to create offers to run for a certain time?
Click Offer, enable Remote Assistance for 1,4,8,12, 24 hours… which will start all the RA Services, after the user enables, then support team could request assistance… and after the time frame disable the RA services?
(imported comment written by BenKus)
I suppose this is possible by creating Fixlets to enable/disable the services and then scheduling them to run at specific times… but can you help me understand why you might want to do this?
As it is currently set up, only specific groups of users can offer remote assistance and the user must click to accept remote assistance before they can share the view.
Ben
(imported comment written by SystemAdmin)
Ben,
As part of FDCC (Federal Desktop Core Configuration), Remote Assistance solicitation is disabled. Since we only use RA occasionally (when users need assistance), we only want the ports/services listening during a small window of time, to reduce the risk of someone exploiting RA/endpoint.
(imported comment written by BenKus)
Well… the steps would be to use the Enable Task to enable remote assitance, offer the assistance, and then disable it when you were done… You could potentially do this:
regset "
HKEY_LOCAL_MACHINE\Software\BigFix
" “RemoteAssistanceLastEnable”="{now}"
now - (value “RemoteAssistanceLastEnable” of key “HKEY_LOCAL_MACHINE\Software\BigFix” of registry as time) > 4 * hour)
with one extra action after disabling:
regdelete "
HKEY_LOCAL_MACHINE\Software\BigFix
" “RemoteAssistanceLastEnable”
Ben
(imported comment written by SystemAdmin)
Gracias Ben, will let you know how it goes