Versions Compared

Version Old Version 15 New Version Current
Changes made by

Philippe JASPARD

Philippe JASPARD

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.



Image Added

Image Added

PROVCONNECT DETAILED FEATURE LIST

Image Added

Table of Contents

Basic features

Warning

Features not supported on Linux or Raspbian OS are clearly indicated with this logo: Image Added


Features

Description

Supported Devices - Native

  • PC, Thin clients, Tablets, laptops, POS, kiosks, digital signage, intelligent systems (IoT)
  • Embeded devices (black boxes, embedded PCs etc…)
  • Attached peripherals (depending on the peripheral - integration work may be needed)

Supported Devices - with custom integration

  • Peripherals or specific features (IoT): humidity sensor, accelerometer etc…

Interface with the IT systems

webservices development

  • interface with the Ticketing systems (through email inbounds format) or through a custom API (This can be done with specific custom development)

Supported client OS

  • Windows: XP, 7, 8, 10 and 11 (embedded or not so including POS ready, IoT etc...)
  • Linux (Ubuntu version 18.04 and above, Mac OS) , Other Linux OS support can be added with on demand (centos, redhat, Fedora, Mac OS   etc…)
  • Raspbian
  • Android (end 2019expected 2025)
  • iOS (2020)

Architecture - communication and Security

Features

Description

Agent

  • Windows: .net Net framework 2.0 for old OS (XP); .net Net framwork 4.6 (win7 and above);
  • Linux: .net Net Core 3.1 (Linux and Mac OS)
  • RAM Load: 7 to 25MB
  • Pulse: a few kb
  • Pulse frequency: configurable but the broker MQTT WanPulse Instant Synchronization Module (WISM) allows immediate pulse so by default the pulse can be is set at 1 hour or more 4 hours without any impact of the reactivity (30 seconds)
  • Remote Update
  • Native management of the Windows write filters (for embedded OS including IoT)

Server (Manager)

  • - Supported OS: Windows 2012 R2 and above
  • VM supported
  • .net Net framework 4.6
  • MS IIS 7  and above (Internet Information service)
  • Data Base : Microsoft SQL server
  • Hosting: SaaS or On premise
  • Supported languages: French and english English (possible other languages on demand)
  • Web based system

Communication

  • single direction from agent to server (no port in listening mode on the end point)
  • Security (certificate required)
  • Communication port: https
  • See attached graph Communication protocol: https
  • WISM for the pulse on demand
  • See /wiki/spaces/CRWP/pages/589869 (on prem, all ports can be configured)

Security

  • SSL certificate authentification authentication (agent server)
  • Self signed certificated managed supported but not recommanded. Note that the Remote control is impossible with when using a self signed certificate
  • TLS1.2 between agent and server (if no XP devices managed and exclusive use of .net when using the .Net 4.6 and .net Core agents)

Device lock-down

  • Centralised critical features lock-down through proVlocker (restrict access to specific apps, to control pannels, to the system of the device etc...)
  • Restrict access to specified disks and partitions
  • Very simple lock down solution no need for active directory and complex GPO scripting)
  • USB lockdown or restrict access to mass-storage devices (or only allows read-only)
Authentification
  • Net Core agents. Not superted with .Net 2.0 agents for XP.

Authentication

  • Local accounts
  • Active Directory

Inventory

Features

Description

Inventory Hardware
(automatic collection, stored on the sql and always uptodate); refresh at each reboot or at the defined frequency


Note
  • Inventory information can vary between Windows and Linux OS
  • Inventory frequency can be set (once per day, per week, per month or per year)
  • Automatic inventory collection and storing into the SQL server
  • Inventory can be checked at any time even when the device is offline or switched OFF


Features

Description

Hardware Inventory 

  • HDD (total size, free size, manufacturer, model, smart SMART status, serial number)
  • RAM (total size, free size, type, nb of no. of slots)
  • Partition (letter name, volume name, total size, free size, file system)
  • Bios (serial number, manufacturer, model, version, date)
  • Motherboard (Manufacturermanufacturer, Modelmodel, Serial serial number)
  • Network cards (Namename, Mac address)
  • Processor (Typetype, speed, nb no. of cores)
  • Video card (Namename, Chpsetchipset, Memorymemory, Resolutionresolution)
  • Monitor (serial number, description, legend? , type)
  • Sound devices (Manufacturermanufacturer, name, description)
  • Port connector (type, interface)
  • Controlers (manufacturer, caption, Descriptiondescription, Name)
  • Peripherals (Oposopos: Namename, port used , driver, status)

Software Inventory Software
(automatic collection, stored on the sql and always uptodate); refresh at each reboot ar at the defined frequency

  • OS Name
  • Service Packs
  • OS Fixes (installed KB) - Patch assessment
  • OS ID
  • Installed applications (Name, Publisher, instal install date, version)

Inventory System
(automatic collection, stored on the sql and always uptodate); refresh at each reboot ar at the defined frequencySystem Inventory

  • Host name
  • IP address
  • Process
  • servicesServices
  • Last contact to the server

Inventory Custom Inventory Image Added

  • Get specific information through the dynamic tags (can be a battery e.g. battery level, a peripheral status, an accelerometer value, a powershell script value or any command result, the content of a file, a registry key presence or value etc…)
Groupping

Grouping

Features

Description

Grouping / device organisation

  • Static groups (drag and drop manually)
  • 7 levels of subgroups
OU inherit
  • Organisational Units collected from the AD
  • Dynamic groups (based on the selected inventory value: manufacturer, processor type, processor core number, OS type, OS architecture, presence of an application, custom script or WMI command result etc…)


Management

Features

Description

Remote tasks

  • Software distribution (install or remove applications)
  • Install complex packages built with package builder (pre and post install scripts
etc…
  • etc.…)
  • Task planning (specific date and time,
recurence etc…
  • recurrence etc.…)
Cron
  • CRON task
planing
  • planning
  • Execution of commands (custom or in the command list)
  • Complete OS management: change registry keys, start and stop services, create partitions, launch commands or scripts, launch or kill applications (through execution of a command for Linux OS)
  • complete device configuration: keyboard, mouse, display, network, proxy, NTP, time zone,
Hostname
  • hostname,
Domain
  • domain, environment
variables
  • variables (through execution of a command for Linux OS)
  • Device security configuration: Windows account,
pasword
  • password changes, USB lock down, certificate deployment (through execution of a command for Linux OS)
  • Device interaction: send popup messages, request remote
autorisation
  • authorization from POS user; auto launch application (full screen, replace shell etc..), launch commands, switch screen ON or OFF, reboot or restart device, turn OFF or turn ON (via WoL) (through execution of a command for Linux OS)
  • Install apps (
slient
  • silent mode or not, via our package builder), remove apps, deploy files (any file or script anywhere in the remote device)
retreive
  • retrieve files (log files or standard files)
  • All commands executed silently and with admin rights

File transfer

  • Direct with https
Distributed download (if activated): torrent technology
  • Transfer possible in both ways (push / pull)
Monitoring

Monitoring  Image Added

Automatic incident detection and resolution

Features

Description

Monitoring: Automatic incident detection

  • Hardware alerts (temperature, HD
smart
  • SMART status etc…)
  • Software alerts (process, services etc…)
  • System alerts (registry key change or existance etc..)
  • Security alerts (antivirus, firewall,  etc…)
  • Health alerts (RAM overconsumption, CPU overload, low free space on disk)
  • Custom alerts (on a script result or WMI command for example)
  • Custom alters based on plugins (fan speed, voltage drops, humidity sensor, accelerometer etc...)

Alerts type

  • Email
Visualized on the main console
  • Dashboard visualization

Monitoring: Automatic incident resolution (preventive maintenance)

  • Automatic corrective task execution (no need for human intervention)
remediation
  • Remediation tasks customizable (restart or kill process or service, clean temp files, backup launched based on an event, reactivate firewall, etc...)
  • No trafic with the console. The agent automatically runs the maintenance task that has been pre-loaded with the monitoring rule
  • Drastic decrease of level 1 supports (thousands of calls avoided)
  • Very quick ROI
  • Stop unwanted processes
  • Delete unwanted files (AVI or mpeg files in a specific folder for example)

Peripheral status monitoring

  • Printers, cash drawer, line display etc.. (natively or by custom
dev)Compliance
  • development)

Online / offline Monitoring

Features

Description

Online - offline end point alerting

  • Automatic alerts when an end point is offline
  • Alert generated for defined time within a specific time frame
  • Time frame specification customizable for each day of the week

Alerts type

  • Email

Compliance

Note
  • Compliance criterias may vary between Windows and Linux OS


Features

Description

Compliance checking principle

  • Create and customize compliance profiles (hardware, sofware, system)
  • Check and follow compliance of the end points in realtime
  • Be alerted when a device is not compliant anymore
    • Get global compliance on the dashboard
    Device

    Hardware compliance

    • Computer (
    Manufacturer
    • manufacturer,
    Model
    • model, serial number)
    • Bios (date, manufacturer, model, serial number, version)
    • Mother board (
    Manufacturer
    • manufacturer,
    Model
    • model, serial number)
    • Processor (
    Architecture
    • architecture, cores quandtity,
    Frequency
    • frequency,
    Manufacturer
    • manufacturer,
    Model
    • model)

    Hard Disk and cards compliance

    • Network (adapter name, dhcp, dns, dns auto,
    Domain
    • domain,
    Gateway
    • gateway, IP status, Mac
    Addrss
    • address,
    NetMAsk
    • NetMask,
    Network
    • network address,
    Secondary
    • secondary DNS,
    Setting
    • setting ID, speed)
    • Memory (RAM total size,
    Ram
    • ram size
    Ram
    • , ram type)
    • Disk (description, manufacturer,
    Model
    • model,
    Name
    • name,
    Size
    • size,
    Status
    • status,
    Type
    • type,
    Total
    • total size)
    • Partition (
    File
    • file system, free space, letter, size,
    Type
    • type, volume name)
    • Video card (
    Chipset
    • chipset, memory, model, resolution Serial number)

    Peripherals compliance

    • Monitor (build date, description, type)
    • Pointing device (
    Description
    • description, interface, manufacturer,
    Model
    • model,
    Type
    • type)
    • Keyboard (caption, description, type)
    • Printer (driver, model, port, ready)
    • Sound device (
    Manufacturer
    • manufacturer, model)

    Software and operating system compliance

    • installed applications (date, description, name, publisher, version)
    • Installed QFEs (description, hotfix number, installed by, installed date) - patch assessment
    • Operating system (
    Architecture
    • architecture,
    Build
    • build number,
    Information
    • information,
    Name
    • name,
    Product
    • product identifier)
    • Device security (
    Antispyware
    • antispyware,
    Antivirus
    • antivirus,
    Auto
    • auto-update,
    Firewall
    • firewall,
    Internet
    • internet settings, UAC control)

    Manager Configuration compliance

    • Device group (static group)
    • Monitoring rule (
    Monitoring
    • monitoring rules and incidents)
    • Static and automatic tags values (all tags values and contents)

    Automatic configuration (Staging)

    Features

    Description

    Automatic policies / automatic configuration principle

    • Automatic configuration of the device based on defined criteria
    • Help for deployment of the devices, reduce configuration errors, increase deployment efficiency
    drastically
    • Drastically reduce
    Logistics
    • logistics costs
    • Automatic staging
    Garanties
    • Guarantees compliance of the device (erases any customisation mistakes)

    Automatic policies options

    • If a device joins a group then: play a predefined task (refer to "remote tasks" section in this document) or apply a monitoring rule (refer to "monitoring" in this document)
    if
    • If an inventory data of the device is equal or contains, does not contain, different from, starts with, does not start with, ends with or does not end with, then: move
    ito
    • into a group or  play a predefined task (refer to "remote tasks" section in this document) or apply a monitoring rule (refer to "monitoring" in this document)
    • Automatic policies can also be applied as soon as a device is
    enroled
    • enrolled (zero touch configuration)

    Health and Security

    Features

    Description

    Health & security principle

    • All status are updated in real time
    Information
    • All information gets stored on the server so it is available even for offline devices

    Device Health

    • Used disk space
    • Average CPU consumption
    • Average RAM consumption

    Device Security

    • Antispyware status
    • Antivirus status
    • Auto-update status
    • Firewall status
    • Internet settings status
    • UAC control status

    Secure Remote Control

    Features

    Description

    Remote session control

    • Based on Ultra VNC
    • Reverse process (no need to have a listening port open)
    • Secure SSL stream from device to server
    • Secure websocket from admin
    consolte
    • console to the server
    • Complete control over the session routing - routing of the session is done through the proVconnect server (no external server used for routing the
    repeater
    • session like in products such as Teamviewer)
    • direct RDP connection
    • direct Teamviewer connection
    • Remote secure shell - SSH

    Remote Windows Explorer

    Features

    Description


    • File exploration
    • Browsing the folders of the remote end point
    • Allows you to select files to download
    • Allows you to drop files into folders
    • No interference with the current user session

    Remote Wake-on-Lan (WoL)

    Features

    Description

    Wake up remote devices
    • Direct wake-up of the endpoints if the proVconnect server is on the same LAN
    • Wake up of endpoints located on a remote LAN by using an endpoint online on the remote LAN to wake up all other devices on the same LAN
    • Need to activate the WoL in the BIOS of the endpoints to be woken up

    Patch Management Image Added

    Features

    Description

    Operating Systems Patch Management

    • Full patch availability listing
    • Patch severity classification
    • Patch history
    • Identification of the missing patches
    • Identification of the critical updates
    • Easy to understand dashboard

    Windows Firewall Management Image Added

    Features

    Description

    Full Windows Firewall Configuration

    • Create new firewall rules
    • Duplicate rules from one device to another
    • Delete firewall rules
    • Activate or disable rules
    • Full ports control (open and close)
    • Prevent or authorize specific apps from opening ports 
    • Manage protocols

    Reporting

    Features

    Description

    Reporting and data exports

    • Reporting on all inventory data and task results (deployment, task results etc..)
    • Any inventory data can be displayed on the main console full customization
    • Reporting formats (CSV, Jason, XML, Webservices)

    Plugins extensions

    Features

    Description

    Plugin

    designs

    design and developments


    • Plugin development for custom feature
    • Based on API or SDK, possibility to develop additionnal monitoring features (accelerometer, special electronic card data, humidity sensor, paper presence in printer, voltage drops, raid controlers, etc…)
    • Our development team will develop plugins based on specifications

    Other

    Features

    Description

    Other

    • Very network bandwidth efficient (pulse on demand)
    MQTT broker
    • WISM (WanPulse Instant Synchronization Module) allows the trigger of the pulse on demand and therefore to set the default pulse with long delays and therefore drastically low default network load.
    • Possibility to control the bandwidth used during a deployment (QoS
    and peer to peer
    • )
    • Supports management of 20 000+ devices
    • Modular solution (through plugins)
    • Plug & play: very simple to use, very low training required
    • Very reactive software vendor (we can develop a specific plugin in a few weeks and we can assist the customer in creating scripts or collecting specific data for reporting)
    • Multi-user access to the console (with different level of administrator rights on features and on groups of devices)
    Application audited by ANSSI and in compliance with their recommandations
    • Agent - server communication evaluated by ANSSI (French National agency for security of the information systems) in the context of the development of a cybersecurity product based on proVconnect with Thales
    • Very clear roadmap: patch management, remote imaging, security audit (open ports, TLS1.2, admin rights);
    • Complete
    control
    • ownership of the source codes
    100% made in France
    • by WanPulse