Hello,
please note this package has a problem:
- the IP allow doesn't work because the deny is missing from the rest of the settings... so it's allowed everywhere
- a regular user can easily modify the TightVNC server configuration.
Thank you
. https://store.wapt.fr/store/tis-vncrestricted
package tis-vncrestricted
Forum Rules
Community Forum Rules
* English support on www.reddit.com/r/wapt
* French community support is available on this forum
* Please prefix the topic title with [RESOLVED] if it is resolved.
* Please do not edit a topic that is tagged [RESOLVED]. Open a new topic referencing the old one.
* Specify the installed WAPT version, full version, and build number (2.2.1.11957 / 2.2.2.12337 / etc.) as well as the Enterprise/Discovery edition.
* Versions 1.8.2 and earlier are no longer supported. The only questions accepted regarding version 1.8.2 are related to upgrading to a supported version (2.1, 2.2, etc.).
* Specify the server OS (Linux/Windows) and version (Debian Buster/Bullseye - CentOS 7 - Windows Server 2012/2016/2019).
* Specify the OS of the administration/package creation machine and the machine with the problematic agent, if applicable (Windows 7/10/11/Debian 11/etc.).
* Avoid asking multiple questions when opening a topic, otherwise it may be ignored. If there are multiple topics, open separate topics, preferably one after the other and not all at the same time (i.e., do not spam the forum).
* Include code snippets, screenshots, and other images directly in the post. Links to Pastebin, Bitly, and other third-party sites will be systematically removed.
* As with any community forum, support is provided voluntarily by members. If you require commercial support, you can contact Tranquil IT's sales department at 02.40.97.57.55
Community Forum Rules
* English support on www.reddit.com/r/wapt
* French community support is available on this forum
* Please prefix the topic title with [RESOLVED] if it is resolved.
* Please do not edit a topic that is tagged [RESOLVED]. Open a new topic referencing the old one.
* Specify the installed WAPT version, full version, and build number (2.2.1.11957 / 2.2.2.12337 / etc.) as well as the Enterprise/Discovery edition.
* Versions 1.8.2 and earlier are no longer supported. The only questions accepted regarding version 1.8.2 are related to upgrading to a supported version (2.1, 2.2, etc.).
* Specify the server OS (Linux/Windows) and version (Debian Buster/Bullseye - CentOS 7 - Windows Server 2012/2016/2019).
* Specify the OS of the administration/package creation machine and the machine with the problematic agent, if applicable (Windows 7/10/11/Debian 11/etc.).
* Avoid asking multiple questions when opening a topic, otherwise it may be ignored. If there are multiple topics, open separate topics, preferably one after the other and not all at the same time (i.e., do not spam the forum).
* Include code snippets, screenshots, and other images directly in the post. Links to Pastebin, Bitly, and other third-party sites will be systematically removed.
* As with any community forum, support is provided voluntarily by members. If you require commercial support, you can contact Tranquil IT's sales department at 02.40.97.57.55
-
jeancharles
- Messages: 21
- Registration: June 11, 2019 - 10:02
Hello,
I confirm that you need to specify a prohibited range in addition to allowing it, and you can also specify a password to block modification of the parameters.
This file lists the arguments to provide:
https://tightvnc.com/doc/win/TightVNC_2 ... ptions.pdf
Here is an example of an installation command line with some parameters specified:
/quiet /norestart ADDLOCAL=Server SERVER_REGISTER_AS_SERVICE=1 SERVER_ADD_FIREWALL_EXCEPTION=1 SERVER_ALLOW_SAS=1 SET_USEVNCAUTHENTICATION=1 VALUE_OF_USEVNCAUTHENTICATION=1 SET_PASSWORD=1 VALUE_OF_PASSWORD=toto SET_USECONTROLAUTHENTICATION=1 VALUE_OF_USECONTROLAUTHENTICATION=1 SET_CONTROLPASSWORD=1 VALUE_OF_CONTROLPASSWORD=toto SET_QUERYTIMEOUT=1 VALUE_OF_QUERYTIMEOUT=0 SET_LOOPBACKONLY=1 VALUE_OF_LOOPBACKONLY=0 SET_IPACCESSCONTROL=1 VALUE_OF_IPACCESSCONTROL="10.0.1.1-10.0.1.128:0,0.0.0.0-255.255.255.255:1"
Alternatively, after deploying the base package, the desired parameters can be configured via GPO.
I'm looking into modifying the existing package; it's a shame the Mirage Driver is missing, but it's not free, although it's easy to install silently to optimize remote connections.
DFMirage-2.0.301-32bits.exe /VERYSILENT /NORESTART
To be continued...
I confirm that you need to specify a prohibited range in addition to allowing it, and you can also specify a password to block modification of the parameters.
This file lists the arguments to provide:
https://tightvnc.com/doc/win/TightVNC_2 ... ptions.pdf
Here is an example of an installation command line with some parameters specified:
/quiet /norestart ADDLOCAL=Server SERVER_REGISTER_AS_SERVICE=1 SERVER_ADD_FIREWALL_EXCEPTION=1 SERVER_ALLOW_SAS=1 SET_USEVNCAUTHENTICATION=1 VALUE_OF_USEVNCAUTHENTICATION=1 SET_PASSWORD=1 VALUE_OF_PASSWORD=toto SET_USECONTROLAUTHENTICATION=1 VALUE_OF_USECONTROLAUTHENTICATION=1 SET_CONTROLPASSWORD=1 VALUE_OF_CONTROLPASSWORD=toto SET_QUERYTIMEOUT=1 VALUE_OF_QUERYTIMEOUT=0 SET_LOOPBACKONLY=1 VALUE_OF_LOOPBACKONLY=0 SET_IPACCESSCONTROL=1 VALUE_OF_IPACCESSCONTROL="10.0.1.1-10.0.1.128:0,0.0.0.0-255.255.255.255:1"
Alternatively, after deploying the base package, the desired parameters can be configured via GPO.
I'm looking into modifying the existing package; it's a shame the Mirage Driver is missing, but it's not free, although it's easy to install silently to optimize remote connections.
DFMirage-2.0.301-32bits.exe /VERYSILENT /NORESTART
To be continued...
