Configure the legacy settings for the on-premises Remote Management Tunnel Server. Consider using the Remote Management Server in WebSocket mode for your remote management business needs.

Installing and configuring the Tunnel Server

  1. As part of the AirWatch Installer, select the Tunnel Server as a feature to install.
  2. Enter the Internal and External ports used to communicate between the Tunnel Server and the AirWatch Console.

Configuring Legacy Agent Settings

The following settings are used to configure platforms to use the legacy remote management system.

  1. Navigate to the AirWatch Agent settings for the supported platforms.

    • Rugged Android
    • Rugged Windows
    • QNX
  2. Under the Remote Management section, complete the following settings related to the use of Remote Management.

    Setting Description
    Mode

    Define how the remote management applet and the device communicate over the network.

    • Off – Communication happens directly between the applet and the device. This mode is used when the computer with the applet and the device you want to manage remotely are on the same network or virtual network.

    • Inbound – Communication flows from the applet to the device. There is no direct connection available between the applet and the device. The applet initiates a connection with the tunnel server and the tunnel server communicates with the tunnel agent on the device to establish a connection. This option requires that the device and the tunnel server are on the same network.

    • Outbound – Communication flows from the device to the applet. There is no direct connection available between the applet and the device. The applet and the device both establish connections with the tunnel server proactively.

    Enable Encryption Encrypt the data using AES 128-bit encryption.
    Passphrase Enter a passphrase for the encryption.
    Seek Permission

    Enable Seek Permission if you want to prompt the end user to accept or decline the remote management request from the admin.

    • Enter a Seek Permission Message that the end user sees when a remote request is sent.
    • Enter the Yes Caption message for the accept button the end user sees on the Seek Permission request.
    • Enter the No Caption message for the decline button the end user sees on the Seek Permission request.
    Advanced Choose extra configuration options.
    Remote Management Port

    Enter the Remote Management Port used to communicate between the applet and the device.

    Tunnel Agent Port The port used for communication from the applet to the device. This setting is available when Inbound is selected as the Mode.
    Max Sessions Enter the maximum number of sessions allowed through Remote Management.
    Number of Retries The number of retries allowed before communication attempts stop. This setting is available when Outbound is selected as the Mode.
    Retry Frequency (Seconds) The amount of time between attempts to communicate. This setting is available when Outbound is selected as the Mode.
    Heart Beat Interval (Seconds) The amount of time (in seconds) that passes between status updates are sent from the device. This setting is available when Outbound is selected as the Mode.
    Connection Loss Retry Frequency (Seconds) The amount of time (in seconds) that passes between attempts to reestablish a connection. This setting is available when Outbound is selected as the Mode.

  3. If you are using Inbound or Outbound mode, a tunnel server configuration must be defined. Navigate to Settings > Systems > Advanced > Site URLs.

    Under the Remote Management section, complete the following settings related to the use of Remote Management based on the Mode selected.

    • Enable Remote Management Server to allow the applet and the device to communicate with each other.
    • Enter the Legacy Remote Management External URL that communicates with device. The URL must be a public facing URL. This URL is used only for an outbound communication where the device must communicate with the tunnel server on a public IP.
    • Enter the Legacy Remote Management External Port that communicates with device. The default port value is 7779. This port is used only for an outbound communication where the device must communicate with the tunnel server on a public IP.
    • Enter the Legacy Remote Management Internal URL that communicates with the computer the applet is running on. The URL can be internal or external depending on the networks the applet and the tunnel servers use. This URL is used for both inbound and outbound modes since the applet establishes the connection with the tunnel server in both cases.

    • Enter the Legacy Remote Management Internal Portthat communicates with the computer on which the applet is running. The default value of the port is 7778. This port is used for both inbound and outbound modes, since the applet establishes the connection with the tunnel server in both cases.

  4. Select Saveto complete the configuration.

For information on using remote management, see the specific platform section in Remote Management Agent Settings.