Remote Access plus Architecture
ManageEngine Remote Access Plus is an Enterprise Remote Support Solution that helps system administrators simplify their mundane troubleshooting routines from a central location with advanced remote control and associated features. This page will help you understand how Remote Access Plus works with detailed architecture and ports involved.
Remote Access Plus includes the following components,
- Web console
- Active Directory
How Remote Access Plus works?
Remote Access Plus being an on-premises solution, the first step after downloading the .exe, is to host the server in any of the Windows computers in your network. Read the detailed system requirements. Server acts as the central point from which, various troubleshooting operations can be remotely initiated.
Remote Access Plus is completely web based and browser compatible i.e, one can access server from anywhere within the local network. To access Remote Access Plus server, one has to use any of the supported browsers and provide either the server name, IP address or the FQDN followed by the port details.
Remote Access Plus is capable of managing multiple domains, workgroups and Active Directories. On the very instance of server installation, Remote Access Plus comes with a default admin account and provides you the list of discovered domains in your network. All you have to do is to select a domain and provide your domain credentials with administrator privilege. This credential is used for the following reasons,
- To parse your Domain Controller and list your Active Directory Objects.
- To silently apply the agent installable on demand.
After adding the domains and workgroups you want to manage using Remote Access Plus, You can instantly start performing remote troubleshoot operations. The first time you remotely connect to any computer belonging to the added domain/workgroup, a very light weight agent installable will be silently installed. Know the supported OSs
Remote Access Plus requires a set of ports for seamless functioning and troubleshooting. The list is as follows.
|7020||Web-server port - SSL||TCP||Inbound to server|
|7373||Web-server port - Non-SSL||TCP||Inbound to server|
|7027||Notification Server||TCP||Inbound to server|
|7333||Remote Control - SSL||TCP & UDP||In bound to server|
|7444||Remote Control - Non- SSL||TCP||In bound to server|
|7031||File Transfer - SSL||TCP||In bound to server|
|7032||File Transfer - Non-SSL||TCP||In bound to server|
|49152 - 65535
(Both viewer and side)
|Voice and Video Chat||UDP||In bound to server|
Securing the Communication
Remote Access Plus follows a client-server architecture thereby,
- All your network computers with the Remote Access Plus agent installed, will communicate with the server for every 90 minutes to check for updates.
- Server connects with the agent whenever a remote operation is initiated from the console. Any communication between Remote Access Plus server and agent is completely secured with SSL certificate bundled along with the product package. You can also import third party SSL certificate. Know how to secure communication with third party SSL.