As it currently stands, you are required to open a ports for ScreenConnect web server port 8040 and relay server port 8041 on your router/firewall. With implementations like Cloudflare tunnels, it would be extremely beneficial if you could proxy SC traffic on ports 8040 and 8041 using Cloudflare Tunnels. At this time, only the web server can be proxied but not the relay server. Can you please allow us this feature in order to not expose any open ports on our routers/firewalls and only use the Cloudflare tunnel for direction secure connection to our DNS provider, thank you.

I noticed report manager has a new feature to directly send the report in a email attachment. It would be cool if you could schedule that on a reoccuring task.

In the application maintenance mode, the default is to Ignore Alerts, but NOT Ignore Scripts. 

In the Web setting for maintenance mode, it is set to ignore BOTH by default.

Can we please change the web maintenance mode to match the original application maintenance mode?

Currently there is no support for connecting to a headless endpoint (windows computer without a monitor plugged in). This is a big problem, as we are in the middle of moving from Bomgar to Control and now we realize that we can't support many of our client's servers or even Win10 computers who are headless. Even though the client has no monitor connected, we should still be able to see the Explorer GUI, other remote support apps certainly can do this. This is a HUGE feature-lack.

Due to insurance and industry requirements we are required to host CW Control behind an approved WAF/Proxy. But in doing so all WEB activity is logged with the WAF/proxy IP instead of the endclient IP. This decreases the value of the built-in CW Control logging and triggers functionality.

Support has confirmed that CW Control does not currently support X-Forwarded-For (XFF) which is a de-facto web standard for passing client IPs through web Proxies. Can we get this header feature added? https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Forwarded-For


I was told Control is unable to read the header response so I wouldn't be able to manually enable it via "Security Toolkit" > "ExtraSecurityHttpHeadersList".

Under "Access" for the unattended with the agent installed, it would be nice to be able to have sort/search options for the list to sort by computer name, user, for example.  I know I can create groups that allows for filters, but some sorting options would be VERY convenient (unless I'm totally missing something and it exists already... ?)

Is there anyway we can use the existing read-receipts from Microsoft 365 / Outlook to send read receipts through Manage? That way we know when a user has read the email?

Set the time deviation for time based 2fa to be variable so you don't repeatedly get refused when your phone time doesn't match perfectly with computer or server time. Verizon locks time about 20 seconds off from actual time and this causes a lot of bad 2fa codes. If we can adjust this variable to have some wiggle room this would no longer happen.

When a new version of the Screenconnect client is released & installed, Microsoft Defender for Endpoint - Attack Surface Reductions' rule "Block executable files from running unless they meet a prevalence, age, or trusted list criterion" denies the libraries from being used as they have no reputation.

This is expected behavior as a new version of the client being released globally is seen as "unknown" by Microsoft Security products.

The executables are not being flagged as low reputation as they are digitally signed & Microsoft have "established trust" with the code signing certificate in use.

Our request is to please sign the .dll's as well, without this digital signature, Microsoft wont "trust" the new files straight away which causes issues until enough devices globally have the client installed & Microsoft's systems learn / trust them.

It also enables us to create a trusted code signing certificate "Indicators", excluding any executable & dll from ASR rules etc, preventing these types of issues.

 https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/attack-surface-reduction-rules-reference?view=o365-worldwide#block-executable-files-from-running-unless-they-meet-a-prevalence-age-or-trusted-list-criterion

Support case reference #01401061

 Not sure if there was an recent update to connectwise but copying a cell from excel file on host computer to paste into remote session excel file it tries to paste as picture and not the contents. Can use Clipboard Key Strokes to get the correct info but is an extra step and slower to paste information.