Automatos Remote Control Server
Introduction
A remote access application that enables connections to computers running Windows, Linux, and Mac OS. The main features include:
Direct connection using a password: Allows the user to quickly connect to the remote device by entering a password.
Sending invitations via email: The user can send an access invitation to the recipient, which includes instructions to allow the connection.
Sending invitations via link: Alternatively, the user can generate a unique link to facilitate remote access to the device, ensuring convenience and security.
Remote Control Server sends a ping packet to the ISL Conference Proxy server to maintain online status every 30 seconds. There used to be additional packets sent every 5 seconds which were not required. This additional packet sending was removed, and packets are now appended to ping packets, which results in less network traffic.
The ping packet to the server is 131 bytes every 30 seconds to the server, and the server will respond to each ping with the same packet.
Prerequisites
Operating Systems
Microsoft Windows
Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows Server 2016
Microsoft Windows 10 (32-bit and 64-bit)
Microsoft Windows 8.1 (32-bit and 64-bit)
Microsoft Windows Server 2012 R2
Microsoft Windows 8 (32-bit and 64-bit)
Microsoft Windows Server 2012
Microsoft Windows 7 (32-bit and 64-bit)1
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2008
MacOS
macOS 15.X Sequoia
macOS 14.X Sonoma
macOS 13.X Ventura
macOS 12.X Monterey
macOS 11.X Big Sur
Linux
With Gui
Linux kernel 2.6.32 or newer (64-bit)
glibc 2.12 or newer
systemd v246
Tested on :
Ubuntu 16.04, 18.04, 20.04, 22.04
Debian 9, 10, 11, 12
CentOS 8
Not supported:
Wayland, Linux 32-bit, arm64 architecture
Security
Security should be a crucial part of a remote access product, no matter for what purposes you are using it; business or personal
Security Layers
Each connection from a computer to an ISL Conference Proxy server is encrypted with SSL.
ISL AlwaysOn’s activities can be monitored by tracking the history of accesses to a computer. This report shows which ISL Online users accessed the computer and when they accessed it.
A user can always lock access to his/her computer. When disabled, that computer becomes inaccessible until further action.
Layer 1 – ISL Computer visibility
To access a remote computer, it is necessary to establish a link between your account and the target machine. Each user has a digitally signed executable that identifies their account. No other user will be able to view or attempt to establish a remote connection unless the computer administrator has installed the program.
Layer 2 – Computer access password
Whenever the user wants to connect to the remote computer, they will need to enter the access password for each remote access session they initiate.
Layer 3 – MS Windows OS security
Once a user is connected to a remote computer, they will be able to see the Windows console desktop session running on the machine. It is recommended that the user set passwords for all Windows accounts and disable accounts that are not in use. The user should also always log out of the computer when not present, so that when accessing the computer, the Windows account password must be entered.
Installation
The remote connection agent “Automatos Remote Control Server” is not available for download as it is a separate module that requires a subscription.
If you want to integrate it with “CIQ ITAM” or “CIQ DEX,” please consult our sales team for a request.
If you already have a subscription, contact our support team by opening a case at https:support.almaden.ai
Enable/Disable Remote Access
Once installed, the remote access is enabled by default. To enable or disable remote access manually, follow the steps in this manual based on your operating system:
Windows or Linux
Windows Path: “C:Program Files (x86)AutomatosAutomatos Remote Control ServerAutomatosRemoteControlServer.exe”
Linux: ISL AwaysOn
The Computer Status shows the status of the main 3 components:
Remote Access (Enabled/Disabled) – Can this computer be accessed remotely.
Desktop Sharing (Enabled/Disabled) – Can the desktop of this computer be viewed remotely once accessed.
File Sharing (Enabled/Disabled) – Can the files be shared with this computer (send/receive) once accessed. You can change the options by clicking on the ‘Change’ button.
You can choose whether or not the computer is accessible, and desktop and file sharing are enabled:
If Remote Access is disabled, the computer is shown as offline.
If Desktop Sharing is disabled, you can connect to the remote computer, however you will not be able to view the screen
If File Sharing is disabled, you can connect to the remote computer, however the file sharing module is disabled.
Computer with “Desktop Sharing” option disabled will be shown as “Online” however you will not be able to connect to it and warning above will be shown. However, you will be able to access the shared folders on the computer via online interface.
MacOS
1. Open “Settings” via the ISL AlwaysOn tray icon.
2. Click the “Change” button in the Security & Privacy section next to the permission that you’d like to enable, for example, Screen Recording.
3. Click the “Open System Settings” button.
The Privacy & Security window will open into the corresponding subsection. In the Screen & System Audio Recording window click the radio toggle to the right of the the ISLAlwaysOn application name.
4. Enter the password and click on Modify Settings to allow the change. Repeat the process for Accessibility and Full Disk Access.
If all the needed permissions are enabled correctly the state of Security & Privacy in ISL AlwaysOn settings will change to ENABLED.
Overview
Remote Users
Add user accounts that will be allowed to connect remotely
File Sharing
Share directories so it’s accessible for remote support
You can select which folders on the computer can be shared and access by
the supporter.
Remote connection history
Click “Show History” link under Access History section.
Access history allows you to view and search through events related to the current computer – connections made, actions executed, connection timestamps and other information.
Connection Settings
It is possible to set some configurations in the “Automatos Remote Control Server”:
Send Popup to User’s Screen
Requests the user’s consent for the remote connection. If the user rejects, the
connection will not be established (It is possible to disable this message and connect
intrusively).
Prevent Remote Connection Rejection
The remote connection cannot be rejected. If the popup on the user’s screen is
enabled, only the “OK” button will be shown to accept.
Set Popup Display Time for User
Defines the duration the popup countdown will be visible for the user’s acceptance.
Note: To request the predefined settings for your package, please contact our support and
inform what you want to apply at support.almaden.ai
Executable & Proccess
This topic describes executables and processes that are running/started on a computer that has the agent installed and on a computer connecting to it via the Connect client.
Windows
On the remote side (with the agent installed)
AutomatosRemoteControlServerService.exe (watchdog service process – it ensures that the server process is always running)
AutomatosRemoteControlServer.exe (main process that serves functionality)
AutomatosRemoteControlServerTray.exe (tray process is started in each session – it shows the status icon in the system tray)
ISLLightFast.exe (the main ISL Light program that is started by the agent)
MacOS
On the remote side (with the agent installed):
ISL AwaysOn (main process that serves functionality)
ISLAwaysOn Tray (tray process is started in each session – it shows the status icon in the system tray)
Linux
On the remote side (with the agent installed):
ISL AwaysOn service (watchdog service process – it ensures that the server process is always running)
ISL AwaysOn -service-agent (main process that serves functionality)
ISL AwaysOn tray (tray process is started in each session – it shows the status icon in the system tray)
Log Files
You can collect log files to forward to the support team in case of problems
Windows
Dir: C:Program Files (x86)AutomatosAutomatos Remote Control Server
Files: “aon_service.out” , “aon_monitor.out” and “”aon_gui.out”
MacOS
Dir: /Library/Application Support/ISLAlwaysOn
Files: “aon_service.out” , “aon_monitor.out” and “”aon_gui.out”
Linux
Dir: : /opt/ISLOnline/ISLAlwaysOn
Files: “aon_service.out” , “aon_monitor.out” and “”aon_gui.out”
Uninstall
This topic will go through the procedure of removing all traces.
Windows
1. Uninstall the application (Control Panel -> Programs and Features -> uninstall -> Automatos Remote Control Server).
2. Navigate to “C:Program Files(x86)AutomatosAutomatos Remote Control Server” and Delete the folder.
3. Press Win + R (run) and run “regedit” and delete the registry folders:
HKEY_LOCAL_MACHINESOFTWAREWow6432NodeISL Online
HKEY_CURRENT_USERSoftwareISL Online
The computer now has all traces removed.
MacOS
Remove the granted user connection. Open the settings and remove all users under the ‘Remote Users’ section. You can also open up the web interface and delete the computer from all user groups.
Run Uninstall (in Applications).
Remove folders with coomand:
sudo rm -rf ~/.islonline/ISL+AlwaysOn
sudo rm -rf ~/.islonline/Cache/ISL AlwaysOn
sudo rm -rf /etc/islonline/ISL+AlwaysOn/
Linux
Remove the granted users connection by opening the settings and removing all users under the ‘Remote Users’ section. You can also open up the web interface and delete the computer from all user groups.
Uninstall from the terminal with the following command.
sudo /opt/ISLOnline/ISLAlwaysOn/uninstall.pl
sudo rm -rf /opt/ISLOnline/ISLAlwaysOn/
sudo rm -rf /etc/islonline/ISL+AlwaysOn/
