Devolutions ForumDevolutions Forum

Where Is the Data Source Information Stored?

Where Is the Data Source Information Stored?

avatar
an33

Hi,

In the past, there was an entry “Encrypted Data Source” in the local RDM Config (RemoteDesktopManger.cfg in %localappdata%\Devolutions\RemoteDesktopManager).
Now this is no longer available on our clients, but the DataSource is still present.

Please let us know where this information is now stored on the client side.


Best regards

All Comments (8)

avatar
Maxim Robert

Hello An33,

Thank you for you for contacting us on that matter!

The information on the Encrypted Data Source is no longer in the .cfg file but is now separated in another file called RemoteDesktopManager.stv. You can access this file using the path below:

C:\Users\"your user"\AppData\Local\Devolutions\RemoteDesktopManager and use the RemoteDesktopManager.stv

Here's also a helpful topic regarding Ancillary files. It explains an example of the ancillary files and their locations.
https://docs.devolutions.net/rdm/installation/client/ancillary-files/

If you have any other questions, feel free to let us know.

Best regards,

Maxim Robert

avatar
Mathieu Morrissette

Hello,

This is Mathieu from the Devolutions Application Security team. I would like to provide some technical details regarding RDM files.
If you need to move RDM configuration files, I recommend using the built-in export feature (File -> Settings). This method bundles the following files into a single file, ensuring that all necessary components are included. Manually moving the files could lead to issues such as missing encryption keys or lost data source configurations.
The key files involved are:

  • RemoteDesktopManager.enc: Contains the encryption key used to encrypt sensitive options.
  • RemoteDesktopManager.enb: Contains a backup of the encryption key file.
  • RemoteDesktopManager.stv: Contains sensitive options such as data source configurations, authentication tokens, 2FA keys, etc. It is encrypted with the key contained in the .enc file.
  • RemoteDesktopManager.stb: Contains a backup of the sensitive options file.


I hope these additional details assist you in your RDM usage.

Regards,
Mathieu

Mathieu Morrissette

avatar
an33

Hello everyone,

thank you very much for the fast and detailed information - really great :)
Are there any recommendations for distributing the config incl. data source information?

We use the integrated function of RDM to build an MSI with the settings, but from time to time the config is changed/invalidated by the users. That is why we have distributed the .cfg file via GPO up to now.

Is it possible to simply distribute the RemoteDesktopManager.stv, or does it contain additional sensitive information?

Best regards

avatar
Maxim Robert

Hello An33,

Thank you for your response!

Could you please provide us with the information below?

  • Your current RDM version.


  • The data source you are utilizing.


Once we have this information, we will be better equipped to diagnose and respond to your question.

Also, with an Advanced Data Source, the .stv file does not exist since this file is created locally. The sensitive information will depend on the data source you are using.

Thank you for letting us know. If you have any other questions, feel free to let us know.

Best regards,

Maxim Robert

avatar
an33

Hi,

RDM Version 2024.1.28.0 and Devolutions Server.

Best regards

avatar
Maxim Robert

Hello An33,

Thank you for the information, and I am sorry for the delay,

After looking with our team, we suggest following the steps of this helpful topic about the Export Setting under File > Settings.
https://docs.devolutions.net/rdm/commands/file/options/export/

We suggest avoiding manually handling configuration files, which can lead to file corruption issues. This feature will generate a single configuration file that combines all necessary files into one .cfg file. Specifically, it will bundle all .stv, .stb, .enc, .enb, and .cfg files into one .cfg file. This ensures streamlined configuration management and reduces the risk of errors. This feature allows you to easily manage your configuration files without the risk of manual handling errors.

If you have any other questions, feel free to let us know.

Best regards,

Maxim Robert

avatar
an33

Hi,

Thank you very much, that is very helpful.

Is there also a recommendation on how we can distribute changes centrally to many clients? E.g. via GPO?

Best regards

avatar
Mathieu Morrissette

Hello,

I would recommend using an MDM such as Microsoft Intune to deploy the configuration file.
You need to deploy it with the path :
`C:\Program Files\Devolutions\Remote Desktop Manager\Default.cfg`

and you need to set the GPO to force loading this file.
https://docs.devolutions.net/rdm/mac/kb/rdm-windows/how-to-articles/group-policies/#force-the-loading-of-the-defaultcfg-file

If you want to prevent configuration changes by users there is this GPO to hide the settings menu :
https://docs.devolutions.net/rdm/mac/kb/rdm-windows/how-to-articles/group-policies/#disable-the-menu-file-settings

Regards

Mathieu Morrissette