Chris42
Active Contributor
Joined 5 years ago
User Profile
User Widgets
Contributions
Pre-fill custom fields in calling card connection screen?
I have a Calling Card deployment with 2 custom fields on the connect screen. These are obviously stored somewhere locally since they auto-fill, must be in the registry somewhere, but I can't figure out exactly where. My goal here is to be able to pre-fill those values when the calling card is installed remotely as an intune managed app. I can run a powershell command on the remote system, I just need to figure out the registry values to write to. Any suggestions on how to achieve this?Solved1.2KViews0likes3CommentsRe: Windows Defender Firewall issue
OK, so then the firewalls I create in Endpoint should have distinct names, in case I deploy different CC builds to the same machine. And that probably should be distinct profiles, too, with all the rules for one CC instance per policy, not combining all the firewall variants in one big profile. So that's the setup, to sum up for other users: 1, Create the CC, wrap it in an intunewin package, configure its deployment. 2, Create a configuration profile for Endpoint Protection that sets a firewall rule for the particular CC install location. 3, attach both to the user group that gets this CC. All done, nice and easy.8.3KViews0likes0CommentsRe: Windows Defender Firewall issue
It is deployed with a standard MSI. I just wrap the MSI into a .InTuneWin package for distribution, it should be running the MSI on the target machine same as if it was downloaded there. Is there something in the calling card configuration that I missed that would set up the firewall? Or what's more likely is that it's running the MSI out of the administrator login, not out of the user login elevated, and the installer's firewall rules only apply to the current user. If I was to put calling card on a machine direct with the MSI and admin permission, would the firewall problem repeat for a newly created local user account? Either way, I can deploy a firewall rule, The question I have is the \ejwsyp\ portion of the file path. Is that a constant for the calling card app? or is that something particular to the calling card MSI that I configured for our company? Thanks8.2KViews0likes0CommentsRe: Windows Defender Firewall issue
Hello. Sorry for the delay, holidays and such and I thought I had this fixed but... well... So I downloaded Calling Card as you suggested, and deployed it thru InTune. Calling Card does indeed look like the right plan here. Users are now getting a firewall error from that. Note the different program folder than the earlier screenshot. This is occurring after they click Connect on the calling card and I accept the session on my side. What's weird is it only happens once. If the user clicks Cancel, we close the session, and the user starts a new connection there's no prompt that time. Even weirder is that since it's a cancel, I'm not finding any LogMeIn related firewall permissions created as a result of this, so I'm back to wondering what entries should be created ahead of time. Of course what would be ideal would be never getting this even the once. And I can't be sure it won't all happen again if I change out to a new copy of Calling Card - like if someone wants to change our corporate branding. Thanks8.3KViews0likes2CommentsWindows Defender Firewall issue
Hello, Remote users are getting a Windows Defender Firewall prompt about the Rescue applet when I start a connection. Hoping you can guide me to a fix. Here are the details... Users have an AD-joined local account with no admin permissions. They download and run the applet with the 6 digit pin as normal. I'm putting in the local admin password at the Rescue connect screen and elevating the session. When that connects, the user gets this pop-up, The path is c:\users\[username]\appdata\local\logmein rescue applet\lmir0f138001.tmp\lmi_rescue_srv.exe So it's actually a different temp folder path for the applet every time. I want to allow both public and private networks - they're working remote and I have no idea what type of connection they are on. I can actually get connected to their screen, but the pop-up is generating questions from the users, and if they hit Allow it goes to their local machine's UAC which I can't see and it disrupts my connecting. So question 1 is what are the firewall rules I want to create? Question 2 is do you have any advice on deploying such rules through InTune in this case where the applet folder is particular to the user? I've had troubles in the past establishing those types of rules because InTune only wants to manage rules for known paths like Program Files and doesn't seem to have a way to vary the path with a local user account. %appdata% resolves to the InTune admin user, not each local user. (If this part is outside this scope I'll take it to a Windows InTune forum once I know the details of the rule I want.) ThanksSolved8.6KViews0likes7CommentsWindows device manager
I'm having trouble controlling Windows device manager over a remote session. I connect remotely and the user enters their password. I open the device manager from the right-click on the start menu. Windows warns me that it's logged in as a standard user, but I can still open up the properties pop-up for any device. On that properties window it's mostly read-only but there's the security access button for Change Settings. When I click that it reloads the properties window editable - to click the Update Driver button, for example - but at that point my remote session does not have any control over the reloaded window. I can see the new window just fine, and I can still control other items on the remote system. Is this a familiar problem to anyone? Do I need to back up and open the device manager itself in some way with elevated permissions? Do I need to prompt for the user to enter something within the remote desktop session so I can have control of that properties window? Thanks1.3KViews0likes0Comments