Remote Monitoring & Management Help

Communication and Security - Take Control (SolarWinds)

Take Control (SolarWinds) sessions are sheltered by a proprietary communication protocol with guaranteed global security by the Rijndael Advanced Encryption Standard (AES) using a 256-bit cipher (both when establishing or for the duration of the session). The key exchange is protected by an SSL based in AES-CBC with TLS v1.1. All commands, including keyboard and mouse strokes, file transfers and clipboard information are digitally signed.

Take Control (SolarWinds) does not have access to session content. All encryption is based on an end-to-end negotiation that does not intercept transferred information or decode the information in the gateway. Encryption keys are randomly generated for each session.

Take Control (SolarWinds) utilizes a number of servers located in large data centers spread across the globe with a geolocation method used to ensure that the geographically nearest router is always used for the connection.

To avoid potential communication or connection problems to any of these global servers we would suggest whitelisting the domain mspa.n-able.com in your firewall or web-monitoring software.

URL

*.mspa.n-able.com

Port

80

TCP

443

TCP

3377

TCP  (used as a fall over if 443 is unsuccessful)

UDP Mode (Optional)

In addition to TCP, connections the Viewer includes the facility to utilize the UDP transmission model (please note UDP connections are not available on Mac computers).

In the Viewer go to Advanced, Use RDP

Where UDP Mode is enabled, the Take Control (SolarWinds) viewer initially requires access to port 1234. After the system administrator modifies the firewall to enable the identified IP addresses to communicate with the server, the ports can be random.

Port

1234

UDP

1235

UDP

Services and Processes

Take Control (SolarWinds) includes a number of executables that run continuously or just for the duration of a single session:

Continually Running

BASupSrvc.exe

Service

Allows remote sessions and maintains communication to the Dashboard and infrastructure

BASupSrvcUpdater.exe

Service

Updates the BASupSrv service when required and ensure it is always running.

BASupSrvcCnfg.exe

Process (Normal)

Allows in-session chats between the technician and the user, and also displays the session authorization pop-ups. This process is loaded for each used logged on to the machine and multiple instances can exist at the same time.

Please note that in-session chats are not possible if this process is killed. Also, session authorization pop-ups will not be presented to the local user (the default action defined will occur after a timeout period).

Session Only

BASupTSHelper.exe

Process (Elevated)

Permits image capturing during the remote session.

BASupSrvcEvnt.dll

DLL

Registers Take Control related Events which are displayed in the device's Event Viewer.

To ensure Take Control is reported as the Event source, the .dll will remain on the device even after Take Control is uninstalled.