Microsoft Remote Assistant

Microsoft Remote Assistant (MSRA) is a Windows remote-support feature that allows a user to invite a technical support professional to provide assistance over a network using chat.

cant grant remote desktop control
uses RDP
msra.exe

How It Works

User invites a IT support user via an invitation file protected by a passcode
IT support opens the file to connect over RDP

Weakness

Remote Assistance assigns a port dynamically from the ephemeral range (49152 to 65535)

this makes it difficult to configure a firewall to securely allow this connection

Remedy

Use Quick Assist feature as alternative to msra.exe

Weakness

Both Remote Assistance and Quick Assist do not allow tasks that require UAC consent in default configuration.

to enable:

disable Secure Desktop feature of UAC

or, UAC notifications need to be turned off or set to lower level

Weakens security of system

adam's notes

Table of Contents

Microsoft Remote Assistant

How It Works

Graph View

Backlinks