MeshCentral - RDP integration + RDP NLA support

This week, there is a special new feature released with MeshCentral v1.0.17. There is now a web-based RDP client integrated into the MeshCentral main web site. Starting today, MeshCentral now has 3 integrated remote desktop protocols: MeshAgent, RDP and Intel® AMT KVM. This significantly enhances the flexibility of MeshCentral when it comes to how it can control remote devices. The MeshAgent and RDP are very different in how they work. The MeshAgent remote desktop will control an existing session while RDP will create a new session. Also, RDP is built into Windows with some optimizations that are not easily available to the MeshAgent. In detail:

  • RDP built into the desktop tab. The desktop tab will now present every possible remote desktop option for a device that is supports, this now includes RDP. Based on a modified node-rdpjs by Sylvain Peyrefitte the RDP client acts differently from a MeshAgent desktop session. The most important difference is that an RDP connection creates a new desktop session on the remote computer instead of taking control of an existing session. The protocol is also very different leading to different performance.
  • RDP support in local device group. MeshCentral supports managing devices with no MeshAgent on the local network or remotely thru a MeshAgent relay. The new RDP capability has been added to Windows devices in local device groups allowing easy remoting to devices with no MeshAgents. This makes MeshCentral a lot more useful in managing a larger range of devices.
  • RDP performance settings. As part of the RDP integration, the remote desktop settings dialog box has been improved to support changing settings for all 3 integrates remote protocols. The RDP protocol offers the option to set the new session desktop size and enabled or disable performance options like removing the remote computer’s wallpaper and more.
  • RDP NLA support. A big work item that was difficult and took all last week to accomplish was the addition of Network Layer Authentication (NLA) to the node-rdpjs RDP client. Without this, the remote computers needed to enable “RDP legacy authentication” which is not very secure. This was done by porting RDP NLA support from rdp-js (built in Rust) to node-rdpjs (buit in NodeJS). The work was equivalent to porting a Windows crypto provider from Rust to NodeJS. After a week of work, the result seems to work well.

Special thank you this week to Sylvain Peyrefitte that is the author of both RDP NodeJS and Rust client code bases. Many other features have been added and bug fixes included. As usual, feedback is appreciated. If you see any problems or need support on something, please create a new issue on GitHub or help other users. For more information, visit the portal at https://meshcentral.com.

Enjoy!
Ylian
MeshCentral, Blog, Twitter,
Reddit, GitHub, YouTube.



Popular posts from this blog

Starting work at Microsoft

Image
Hi everyone. It’s been a while since the last blog post and I wanted up update everyone on what is going on. As many of you know already from a discussion on GitHub , Bryan and I have been laid-off from Intel in early November 2022. This was quite a surprise as MeshCentral, MeshCommander, MeshCMD and other tools where widely used. This said, Intel has been having poor financials and Bryan and I where part of a very large first wave of downsizing by the company that involved many people that I know and worked with for a long time. I had been working for Intel for over 25 years having started in September 1998. Over the years I worked on IPsec key negotiation, Universal Plug & Play, DLNA and Intel® AMT. I loved working on all these projects and especially loved working with the open-source community on Mesh projects. Obviously, this was not my decision and Bryan and I had look for what comes next. One option was to continue working on MeshCentral as part of another company or with
Read more

MeshCentral - Windows ARM64, NodeJS v11, NPM Packages

Image
Hi all. It's been a while since I last posted and now that I am settling a bit more in my work at Microsoft, I have a bit of time to occasionally look after MeshCentral again. It's about time, there where a bunch of things that needed to get fixed. Before that, I want to say that I am doing great. I am working on Microsoft Forms which is one of the offerings of Microsoft 365. For kicks, I started a YouTube channel on Microsoft Forms here during a Microsoft hacking week. I tried to up my game since the videos I last published for MeshCentral. Also, I wanted to share pictures below. I was at a Tesla Supercharger last weekend and, by luck, got to see a Tesla Cybertruck in person. It's very big. Obviously, this is a release candidate driven by a Tesla employee. I saw it after attempting to see the solar eclipse over Oregon, but sadly, too many clouds and saw nothing. In any case, back to MeshCentral. In the last few months a few things have happened with the new releases. Wind
Read more

MeshCentral - New Windows Agents - Installation Dialog, Customization and Server Lock

Image
Lots is going on with MeshCentral, just yesterday Bryan Roe released a new MeshAgent for Windows with many improvements. An improved installation dialog box, logo customization and, to continue MeshCentral’s leadership in security, a new agent code signing locking feature that will surely be used by many to improve trust and security of their MeshCentral installation. In addition to this, we have many more server improvements to cover. In detail: MeshAgent with improved installation dialog box . The new MeshAgent for Windows is much improved with months of changes and bug fixes. The most noticeable feature is by far the new installation dialog with the new logo and connection details button. The new installer is a lot friendlier and easier on end-users. MeshAgent with improved customizations . In addition to all the existing agent customizations available in prior versions, the MeshAgent has new server settings for the installation text and logo. You can now set your own 200x200 PNG c
Read more