Getting started with Screen Sharing
If you are using Tanium™ Cloud, module installation, configuration, and upgrades are handled by the service.
Step 1: Install and configure Screen Sharing
Install and configure Screen Sharing, either through automatic configuration with default settings (Tanium Core Platform 7.4.2 or later only) or through manual configuration with custom settings.
For more information, see Installing Direct Connect and Configuring Direct Connect.
Step 2: Link your Tanium on-premises deployment to a ScreenMeet account
Link your Tanium on-premises deployment to a ScreenMeet account using a one-time passcode (OTP) to activate your license and enable screen sharing functionality.
For more information, see Link ScreenMeet with an on-premises installation.
Step 3:
Step 1: Configure security and network exclusions
Configure Tanium Core Platform, Tanium Client, Tanium Screen Sharing, and ScreenMeet security and network exclusions to ensure proper communications when establishing screen sharing sessions.
For more information on Tanium Core Platform security exclusions, see Tanium Core Platform Deployment Reference Guide: Host system security exclusions.
For more information on Tanium Client port and network exclusions, see Tanium Client Management User Guide: Network connectivity, ports, and firewalls.
For more information on Tanium Screen Sharing security and network exclusions, see Host and network security requirements, Security exclusions, and Internet URLs.
For more information on ScreenMeet URLs and hosts to allow, see ScreenMeet Docs: Firewall configuration and ScreenMeet Docs: Egress IP Addresses.
Step 4:
Step 2: Configure users and user roles
Configure users, adding them to the Screen Sharing Administrator user role to administrate screen sharing, and Screen Sharing Agent user role to use screen sharing.
If you want to customize screen sharing access, you can create custom user roles and assign them to personas. Tanium Console operators can select a persona to change their available permissions without changing user accounts. For example:
-
Assign the Screen Sharing Support Session Unattended permission to a role and persona to allow users that select the persona to create unattended screen sharing sessions
-
Assign the Screen Sharing Console Execute permission to a role and persona to allow users that select the persona to access the ScreenMeet console without accessing administrator settings
By default, the Screen Sharing Support Session Unattended permission is not assigned to any user role, only Tanium administrators. For information on configuring a custom role and persona to establish unattended screen sharing sessions, see Configure personas to establish unattended screen sharing sessions.
For more information on user role permissions, see Screen Sharing user role permissions.
Step 5:
Step 3: Initiate screen sharing sessions
Initiate screen sharing sessions using Direct Connect for Windows endpoints, Single Endpoint View for macOS endpoints, or the ScreenMeet console for mobile devices.
For more information, see Open an endpoint screen sharing session and ScreenMeet docs: Connecting to Mobile devices.
Step 6:
Step 4: Monitor Screen Sharing license usage
From the Direct Connect settings, monitor current Screen Sharing license usage, filter the list of users allocated a per-user license, and update the Alert Threshold for sending an alert if your ratio of allocated licenses to total licenses exceeds the percentage.
For more information, see Configure ScreenMeet settings.
Step 7:
Step 5: Troubleshoot Screen Sharing
Contact Tanium Support for assistance with troubleshooting Screen Sharing.
Last updated: 9/14/2023 10:29 AM | Feedback