1. Splashtop On-Prem - Support
  2. Management Console
  3. Settings

Manage Team Settings

Avatar
Splashtop

A team is a concept in multi-tenant Splashtop On-Prem system, where a tenant is regarded as a team. The Team Administrator is able to access and manage the Team settings in the Settings menu.

teamsetting overview.png

There are 5 sections in the team settings page:

  • General
  • Security
  • Unattended access
  • Attended access
  • User settings

 

General

1-general.png

Team Name: you can customize the Team Name here. The Team Name will reflect in account information of all Streamer and client devices.

User Seats: it shows the maximum count of the team's available user seats and the count of the enabled user seats.

Computers: it shows the maximum count of the team's deployable computers and the count of the deployed computers.

Gateway URL: This parameter serves as the external domain name for accessing the Splashtop Gateway service.

SOS Seats: it shows the maximum count of the team's available SOS seats and the count of the enabled SOS seats.

Security

2-security.png

Two-step verification: 2-Step Verification adds another layer of security by time-based OTP verification provided by prevalent authenticator APPs in mobile phones. An On-Prem client must input a 6-digit TOTP code to log in to the device. 

2step verification.png

Manage trusted devices: Team administrator is able to overview the trusted devices and remove them if necessary.

Require users to enable two-step verification: Here are two checkboxes in the Default Granular Settings column, one is for Admin/Group manager and the other is for Member.

If the first checkbox is checked, an admin user/group manager is required to set up a 2-step verification device when trying to log in to On-Prem client for the first time.

If the second checkbox is checked, a member user is required to set up a 2-step verification device when trying to log in to On-Prem client for the first time. 

mceclip1.png

Refer to the article below for more information:

Set up 2-step verification

In addition to the two checkboxes, there's a separate column named Admin configurable with a down arrow. If you want to allow admin and group manager to configure granular settings for others, you can click the down arrow and select ON. 

Allow users to trust devices: if this option is checked, a Splashtop On-Prem user can choose to trust a client device so that he is exempt from entering TOTP code for future login. And you can click the down arrow to set a valid period (Forever, 1 days, 7 days, and 30 days) for the trusted devices.

 

Disable device and browser authentication when two-step verification is enabled: enabling this option means that device and browser authentication is disabled if you've enabled two-step verification (which provides even greater security).

Device authentication: if this option is checked, device authentication is required before a remote session can be initiated. You can click Detailed settings for more granular settings.

device authentication.png

Browser authentication: if this option is checked, browser-based authentication is required before a remote session can be initiated. You can click Detailed settings for more granular settings.

MAC address restrictions for On-Prem app: because MAC-based addresses are unique to each device, using MAC addresses for authentication might seem more secure. If you check this option, you need to complete more detailed settings to ignore specific MAC addresses. You can input MAC addresses to ignore one by one, or directly import an existing .csv formatted file (which can also be exported).

Log out idle users from On-Prem app: if this option is checked, uses will be force logged out from on-prem app when idle time reaches 15 minutes /1 hour /8 hours /24 hours.

Log out idle users from browser: this setting lets you log out users from the browser when they are idle for a certain amount of time (5 minutes /15 minutes /30 minutes /1 hour /4 hours /8 hours)

Account policy:

account policy.png

Remember app login: if this option is checked, users don't need to enter their credentials every time they log in their account. 

Complex password: by checking this option, you can finely tune the complex password policy, including password minimum length, enable password expiration period, and enforce password policy at next login. 

Account lockout: by checking this option, you can set the account logout threshold and choose how to lock the account out.

Session security:

session security.png

Remote control: this option is designed to disable to restrict remote control from Admin / Group manager and/or Member in a remote session. If you want to allow admin and group manager to configure granular settings for others, you can click the down arrow from the separate column of Admin configurable and select ON. 

Save security code: if this option is checked, the security code will be saved while establishing a remote session.

Save Windows / Mac credential: if this option is checked, the Windows / Mac credential will be saved while establishing a remote session.

 

Unattended access

Splashtop Remote Support or Splashtop Business Access can enable remote support and control with the endpoint installing corresponding software. And initiating a remote session doesn't need anyone being present. 

In this section, some features are supported to be finely tuned from the Default Granular Settings column. 

3.1-unattended access-1.png

File transfer: enable file transfer (upload and/or download) between the local and remote computer (Windows and Mac only). Refer to the article below for more information

File Transfer

Text copy and paste: enable text copy and paste from local to remote computer and/or from remote to local computer.

Remote print: enable document printing from a Streamer computer to a printer connected to the client computer. Refer to the article below for more information:

Remote Print

Remote command: enable sending command to a Streamer computer from a client computer.

Watermark protection: by checking this option, users can customize the watermark text and layout to display during remote session, including font size, font color, font opacity, outline color, outline opacity, etc. 

Request permission to connect: it provides the user 3 options on how to accept the remote connection prompt, namely reject connection after request expires(at login screen, reject automatically), request expires(at login screen, allow automatically), and allow connection after request expires.

Centralized session recording: by checking this option, recorded remote sessions will be automatically recorded to a centralized cloud location. Users can further select who can playback/download/remove recordings from Detailed settings.

3.2-unattended access-2.png

Local session recording: enable local session recording to assign auto recording, path and size limit to storage folder for SOS app by Windows or OS platforms.

Concurrent remote session: enable concurrent remote session to a Streamer computer from multiple client devices.

Paste clipboard as keystrokes: a special way to paste, you can enable it to paste the content in local clipboard to remote computer as key strokes.

Remote wake: enable waking up a Streamer computer from a client device.

Remote reboot: enable rebooting a Streamer computer from a client device. Refer to the article below for more information:

Remote Reboot

Off-session chat: enable off-session chat function. Refer to the article below for more information:

Chat

Device redirection: enable it to select the USB class to user for device redirection.

Wacom Bridge: enable this function to seamless use Wacom's pen technology on local.

Remote microphone: enable this function to transmit a local microphone input to a remote computer.

In-session voice call: enable this function to initiate a voice call to the end-user during the remote access session.

RDP computer: enable connecting to an RDP computer from a client device.

VNC computer: enable connecting to a VNC computer from a client device.

SSH computer: enable connecting to an SSH computer from a client device.

Web app: enable this function to allow users to connect to remote computers with browsers.

System tools for: By entering computer's admin user name and password, to designate who can access system tools.

Offline computers policy: Enabling this option to set  how many days offline computers will be automatically removed.

Auto update Streamers: enable this to apply the Streamer updates to all computers or only specific computers and computer groups.

Scheduled access: enable this to schedule times for when users can remotely access.

Session indicator: from here you can choose display type and if you allow user to close the banner for remote session and background actions.

Attended access

Splashtop On-demand support, a.k.a SOS, is a way of remote support without the endpoint installing any software. Instead, the endpoint downloads and launches a portable SOS app, to which a technician can connect with a Splashtop On-Prem client.

4-attended access.png

Centralized session recording: by enabling this option, recorded remote sessions will be automatically recorded to a centralized cloud location. Users can further select who can playback/download/remove recordings from Detailed settings.

Apply granular control settings as unattended access: if this option is unchecked, e2-step verification and remote control would always follow granular control settings as the user level.

In-session file transfer: enable file transfer (upload and/or download) between the local and remote computer during the remote session. 

Text copy and paste: enable text copy and paste from local to remote computer and/or from remote to local computer.

Watermark protection: by enabling this option, users can customize the watermark text and layout to display during remote session, including font size, font colour, font opacity, outline colour, outline opacity, etc. 

Local session recording: enable session recording for SOS remote support session. For more information on session recording, refer to the article below:

Session Recording

Concurrent remote session: enable concurrent remote session for multiple Splashtop client to connect to the same SOS app.

Paste clipboard as keystrokes: a special way to paste, you can enable it to paste the content in local clipboard to remote computer as key strokes.

In-session voice call: enable this function to initiate a voice call to the end-user during the remote access session.

Web app: enable this function to allow users to connect to remote computers with browsers.

Third Party Integration: from here users can integrate with a third party by clicking Set up API Keys.

Session indicator: from here users can choose display type and if allow user to close the banner.

User Settings

5-user settings.png

Group-specific manager role: enable group manager role who manages a group. Refer to the article below for more information:

Manage Grouping

Allow members to see groups: allow member users to see computers in his group.

Allow members to connect to computers in an active connection: allow member users to establish remote sessions to the computers have already been connected.

Allow members to establish concurrent sessions: allow member users to remote into multiple computers concurrently.

Allow members to disconnect other's sessions: allow member users to end others' remote connections.

Allow members to reboot computers and restart Streamers: select actions that member users are allowed to perform on the computers, including restart Streamer, normal reboot, and safe-mote reboot.

Member's permission for computer notes: manage member users' permission for computer notes, including cannot view and edit, view only, and view and edit.

0 out of 0 found this helpful

Articles in this section

See more