paulmataruso/Rust-Desk-Client-Deployment
1
0
Fork 0
mirror of https://github.com/auchavez/Rust-Desk-Client-Deployment.git synced 2025-10-23 16:24:01 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update Client-Deployment.ps1

Browse Source
This commit is contained in:
auchavez
2025-06-23 12:20:42 -06:00
committed by GitHub
parent 2cfc85843a
commit 9803fa44a4
1 changed files with 111 additions and 76 deletions
Download Patch File Download Diff File Expand all files Collapse all files

177
Client-Deployment.ps1
View File

@@ -1,91 +1,126 @@
$ErrorActionPreference = 'SilentlyContinue' # ============================================================
# RustDesk Client Setup Script (Sanitized & Public Safe)
# ------------------------------------------------------------
# Installs RustDesk silently, applies custom server config,
# sets access password, and validates via logs.
# ============================================================
# Path to the log file $ErrorActionPreference = 'Stop'
$logFile = "C:\Temp\rustdesk_install.log"
# Function to write to the log file # === Logging ===
$logFile = "C:\Temp\rustdesk_combined.log"
function Write-Log { function Write-Log {
param([string]$message) param([string]$msg)
$timestamp = (Get-Date).ToString("yyyy-MM-dd HH:mm:ss") $ts = Get-Date -Format "yyyy-MM-dd HH:mm:ss"
"$timestamp - $message" | Out-File -Append -FilePath $logFile "$ts - $msg" | Out-File -Append -FilePath $logFile
} }
# Predefined password # === General Variables ===
$rustdesk_pw2 = 'PASSWORD' $installerPath = "C:\Temp\rustdesk.exe"
$downloadUrl = "https://github.com/rustdesk/rustdesk/releases/download/1.4.0/rustdesk-1.4.0-x86_64.exe"
$exePath = "C:\Program Files\RustDesk\rustdesk.exe"
$logDir = "$env:APPDATA\RustDesk\log"
# Custom RustDesk configuration # === Custom Configuration ===
$rustdesk_cfg = "rendezvous_server = 'DOMAIN/IP:21116' `nnat_type = 1`nserial = 0`n`n[options]`ncustom-rendezvous-server = 'DOMAIN/IP'`nkey = 'PUBLICKEY'`nwhitelist = '1.1.1.1,2.2.2.2,3.3.0.0/16'`ndirect-server = 'Y'`ndirect-access-port = '21118'" $rendezvousAddress = "your.domain.com"
$relayPort = "21116"
$publicKey = "REPLACE_ME_PUBLIC_KEY"
$passwordPlain = "REPLACE_ME_PASSWORD"
# Log the start of the script $userTomlPath = "C:\Users\$env:USERNAME\AppData\Roaming\RustDesk\config\RustDesk2.toml"
Write-Log "Starting script execution." $svcTomlPath = "C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\RustDesk\config\RustDesk2.toml"
# Run as administrator if not already # === Configuration Template ===
if (-Not ([Security.Principal.WindowsPrincipal][Security.Principal.WindowsIdentity]::GetCurrent()).IsInRole([Security.Principal.WindowsBuiltInRole]::Administrator)) $tomlContent = @"
{ rendezvous_server = '$rendezvousAddress:$relayPort'
Write-Log "Not running with administrator privileges. Attempting to run as administrator." nat_type = 1
Start-Process PowerShell -Verb RunAs -ArgumentList "-NoProfile -ExecutionPolicy Bypass -Command `"cd '$pwd'; & '$PSCommandPath';`""; serial = 0
Exit;
[options]
custom-rendezvous-server = '$rendezvousAddress'
key = '$publicKey'
whitelist = '192.168.1.1,10.0.0.1,172.16.0.0/16'
direct-server = 'Y'
direct-access-port = '21118'
"@
# === Ensure Admin Privileges ===
if (-not ([Security.Principal.WindowsPrincipal] `
[Security.Principal.WindowsIdentity]::GetCurrent()).IsInRole([Security.Principal.WindowsBuiltInRole]::Administrator)) {
Write-Error "❌ This script must be run as Administrator."
exit 1
} }
# Check the installed version of RustDesk # === Create Temp Directory ===
$rdver = ((Get-ItemProperty "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\RustDesk\").Version) if (-not (Test-Path "C:\Temp")) {
New-Item -Path "C:\Temp" -ItemType Directory -Force | Out-Null
# Check if the latest version is already installed
if ($rdver -eq "1.3.7")
{
Write-Log "RustDesk $rdver is the latest version."
Exit
} }
Write-Log "Temp directory ready."
# Create a temporary directory if it doesn't exist # === Download and Install RustDesk ===
if (!(Test-Path C:\Temp)) Write-Log "Downloading RustDesk..."
{ Invoke-WebRequest -Uri $downloadUrl -OutFile $installerPath
New-Item -ItemType Directory -Force -Path C:\Temp > $null Write-Log "Download complete."
}
cd C:\Temp Write-Log "Installing RustDesk silently..."
Start-Process $installerPath -ArgumentList "--silent-install" -Wait
Start-Sleep -Seconds 5
Write-Log "Installation complete."
# Download the installer file # === Stop Service or Process ===
Write-Log "Downloading RustDesk version 1.3.7." $service = Get-Service | Where-Object { $_.Name -match 'rustdesk' } -ErrorAction SilentlyContinue
Invoke-WebRequest "https://github.com/rustdesk/rustdesk/releases/download/1.3.7/rustdesk-1.3.7-x86_64.exe" -Outfile "rustdesk.exe" if ($service) {
# Install RustDesk silently
Write-Log "Starting RustDesk installation."
Start-Process .\rustdesk.exe --silent-install
Start-Sleep -seconds 20
# Stop RustDesk service before applying configuration
Write-Log "Stopping RustDesk service..." Write-Log "Stopping RustDesk service..."
net stop rustdesk Stop-Service $service.Name -Force
} else {
Write-Log "Killing RustDesk process..."
Get-Process rustdesk -ErrorAction SilentlyContinue | Stop-Process -Force
}
Start-Sleep -Seconds 3
# Get the current username # === Apply Configuration ===
$username = ((Get-WMIObject -ClassName Win32_ComputerSystem).Username).Split('\')[1] foreach ($path in @($userTomlPath, $svcTomlPath)) {
$dir = Split-Path $path
if (-not (Test-Path $dir)) { New-Item $dir -ItemType Directory -Force | Out-Null }
Set-Content -Path $path -Value $tomlContent -Encoding UTF8
Write-Log "Config written to $path."
}
# Remove the previous configuration file and create a new one for the user # === Start RustDesk Again ===
$UserConfigPath = "C:\Users\$username\AppData\Roaming\RustDesk\config\RustDesk2.toml" if ($service) {
Remove-Item $UserConfigPath -ErrorAction SilentlyContinue Write-Log "Starting service..."
New-Item $UserConfigPath -Force Start-Service $service.Name
Set-Content $UserConfigPath $rustdesk_cfg } else {
Write-Log "Starting process..."
Start-Process -FilePath $exePath
}
Start-Sleep -Seconds 5
# Remove the previous configuration file for the local service and create a new one # === Set Password Securely ===
$LocalServiceConfigPath = "C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\RustDesk\config\RustDesk2.toml" Write-Log "Setting access password..."
Remove-Item $LocalServiceConfigPath -ErrorAction SilentlyContinue Start-Process -FilePath $exePath -ArgumentList "--password '$passwordPlain'" -Wait
New-Item $LocalServiceConfigPath -Force Start-Sleep -Seconds 5
Set-Content $LocalServiceConfigPath $rustdesk_cfg
# Restart RustDesk service
Write-Log "Starting RustDesk service..."
net start rustdesk
Write-Log "RustDesk configured successfully."
# Set the password
Write-Log "Setting password."
Start-Process -FilePath ".\rustdesk.exe" -ArgumentList "--password "$rustdesk_pw2"" -Wait
Start-Sleep -seconds 20
Write-Log "Password: $rustdesk_pw2"
Write-Output "..............................................."
Write-Output "RustDesk configured successfully."
Write-Output "..............................................."
# === Log Validation ===
if (Test-Path $logDir) {
$recentLogs = Get-ChildItem $logDir -Filter *.log | Sort LastWriteTime -Descending | Select -First 3
$confirmed = $false
foreach ($log in $recentLogs) {
if (Select-String -Path $log.FullName -Pattern 'password') {
Write-Log "✅ Password activity found in $($log.Name)"
Write-Output "✅ Password set successfully (confirmed in log)."
$confirmed = $true
break
}
}
if (-not $confirmed) {
Write-Log "⚠️ Password not confirmed in logs."
Write-Output "⚠️ Could not confirm password in log."
}
} else {
Write-Log "⚠️ RustDesk log directory not found."
Write-Output "⚠️ Log directory missing."
}
Write-Log "✅ Script finished."
Write-Output "✅ RustDesk installation and configuration completed."