Non-admin users cannot download resident agents

[Noirvent]

Describe the bug Users that are not administrators cannot downloads the Resident Agents. They get a 401 Unauthorized error. They can however download the "Files Only" versions. Seems linked to the fact that executables are in /API/ClientDownloads/ while files-only versions are in /Content/ This is consistent with all OS agents.

To Reproduce Steps to reproduce the behavior:

1. Log-in as an non-admin user
2. Click on 'Downloads' link
3. Click on 'Windows Installer (x64/x86)' or 'Ubuntu x64 Bash Installer'
4. See error

Remotely Version Server (can be found on about page): 2024.02.23.1927 Agent (can be found in device card): 2024.02.23.1927

Expected Behavior A non-admin user should be able to download and install resident agent.

Desktop (please complete the following information):

• OS: Debian
• Browser [e.g. chrome, safari]: Firefox
• Version [e.g. 22] 122

• [x] I am running Remotely in Docker and not on my QNAP, Synology, or Internet Connected Toaster

[bcurran3]

+1 this.

I too would like the ability for non Remotely admins to download and install the Resident Agents easily.

I do see security concerns here. I have put preconfigured RMM agents up for download on a company website and found Microsoft scanned and installed the agents for testing. Those agents popped up in my admin console of course and almost accrued new monthly service charges for the company.

Some possible ways to control this and appease everyone:

• Add an option to show the Resident Agents download in the Admin/Service Config. This way it could be togged on and off at will be admins as needed. Additionally a selectable timer would be a neat idea; i.e. Allow Resident Agents download for 15 mins/30 mins/ 1 hour/ 8 hours/ 24 hours/etc. After the timer expires the download link is no longer there - a set it and forget it scenario.
• In Downloads/Resident Agents WHEN LOGGED IN, put a permalink to download the Resident Agents with a copy button easily copied and pasted into an e-mail to send off to the new end user by the admin - or better yet an option to e-mail it as an invite to someone right from the Remotely console.
• Display the download link for the Resident Agents for non-logged in users but ask for a password before it downloads. Password would be configured in Admin/Server Config.

FEATURE REQUEST!

p.s. Just one day into evaluating Remotely. I like it. Thanks for your hard work.

[Noirvent]

Actually the links to download the Resident Agents are not showed to non-logged people, but are to logged-in people, ignoring if they are admins or not (granting them that 401 unauthorized if they try to download it). this is inconsistent.

Either:

• the logged-in non-admins should not see the links,since they can't download it anyway (or a warning should say only admins can use them)
• logged-in non-admins should be able to download the agents to install them.

But as a sysadmin hosting Remotely, I would like the ability to delegate the installation of Resident Agents without having to use the admin account. The helpdesk doing support have no need for server config access or user management.

I do see security concerns here. I have put preconfigured RMM agents up for download on a company website and found Microsoft scanned and installed the agents for testing. Those agents popped up in my admin console of course and almost accrued new monthly service charges for the company.

If that is a concern, maybe the server admin should be able to cherry-pick which account as the privilege to download the resident agent or not