search

gravitational / teleport

The easiest, and most secure way to access and protect all of your infrastructure.
https://goteleport.com
GNU Affero General Public License v3.0
17.62k stars 1.76k forks source link

Windows Desktop Access - Shared Sessions (remote assistance) #11027

Open Valien opened 2 years ago

Valien commented 2 years ago

What

Allow Windows Desktop users to be able to share their session similar to how shared terminal sessions work with SSH. This allows for organizations to do remote assistance/support in leveraging share sessions within Windows.

Currently our Desktop Access only allows 1 connection and subsequent connections will either create a new session or disconnect the existing session (akin to normal RDP access).

How

Extending our desktop access to allow for shared sessions.

Why

Enterprises with large Windows fleets and allowing remote troubleshooting/access to Windows systems.

Workaround

None with Teleport. There are tools like LogMeIn, VNC, and others that allow for web-based remote assistance (Even some built into Windows itself).

robpomeroy commented 2 years ago

@Valien - Thanks for this! Re our conversation yesterday Allen, my current go-to solution is to pair TightVNC with noVNC and websockify. This gives me an HTML5 interface to VNC. Software firewalls and Azure AD Application Proxy give me reasonably secure remote access.

For Teleport, it would be great to have both options available: shared sessions with a physically present end user, and RDP-style sessions for headless endpoints, or those occasions where we would not want a session to be observable by an end user.

Valien commented 2 years ago

You're welcome @robpomeroy ! Glad to get features like this on our issue tracker. As the team matures our Desktop Access protocol features like this make it better!