Quick assist is a built-in remote control app in Windows 10 intended for home and personal use, that is at least my opinion. Many don’t even know that it exists and for an enterprise we really need to manage it = remove it or block it.
assist works extremely well through firewalls as the session is initiated by
the user that will be remote controlled, the traffic is proxied through
Microsoft Servers and URL’s and uses HTTPS/443.
Why not use
it for remote control within a company when it sounds great?
missing features like:
when, by whom and from where was the machine remote controlled (Remote
assistance have this today)
Because it lacks logging and control of who can remote control that machine, anyone with an MSA or AAD account can call a user and provide them with a 6-digit code and remote control the machine. That is not something that is allowed by my customers that’s for sure. Many customers uninstall TeamViewer automatically but they don’t handle QuickAssist and even know it is there in many cases.
assist can be removed by deploying a PowerShell script using Intune as well
that removes the “Capabiltiy” that Quick Assist is in Windows 10. The script
needs to consist of the following command.