Articles in this section

See more

Restricting Cloudless Fluid Access by User or Group

Avatar
Mahmood Hafiz
Updated
Follow

Jump Desktop Connect lets you restrict which users can connect via Cloudless Fluid by specifying an allowed users list, an allowed groups list, or both.

Requires Jump Desktop Connect 10.5 or later.

Default Behavior

By default, access control lists are disabled:

  • Windows: Any user in the Administrators or Users groups can connect.
  • macOS: Any local user can connect.

Enabling Access Restrictions

Access restrictions can be enabled via Jump Desktop Connect settings on macOS and Windows, or via the Windows Registry for IT/group policy deployments.

Jump Desktop Connect Settings (macOS and Windows)

  1. Open Jump Desktop Connect.
  2. Go to Settings.
  3. Enable Use Allowed Lists.
  4. Add usernames to the Allowed Users list and/or group names to the Allowed Groups list.

Windows Registry (for IT/group policy deployment)

Registry path: HKEY_CURRENT_USER\Software\Jump Desktop\Connect

Key Type Description
RtcLocalAuthUseAllowedLists BOOL Enable or disable access restriction
RtcLocalAuthAllowedUsers StringArray List of allowed usernames
RtcLocalAuthAllowedGroups StringArray List of allowed group names

How It Works

When Use Allowed Lists is enabled, the connecting user is checked against both lists using OR logic:

  1. The connecting user is checked against the Allowed Users list.
  2. The user's group memberships are checked against the Allowed Groups list.
  3. If the user matches either list, the connection is allowed.
  4. If the user matches neither list, the connection is denied.

Important: If access lists are enabled but both lists are empty, all connections will be denied.

User and Group Name Format

  • Windows users: Local username (e.g., john.doe) or domain-qualified name (e.g., DOMAIN\john.doe)
  • Windows groups: Group display name (e.g., Administrators, Remote Desktop Users, Domain Admins)
  • macOS users: Short username (e.g., jdoe)
  • macOS groups: Group name (e.g., admin, staff)

Examples

Allow only specific users:

  • Enable Use Allowed Lists
  • Allowed Users: alice, bob
  • Allowed Groups: (empty)
  • Result: Only alice and bob can connect.

Allow an entire department group:

  • Enable Use Allowed Lists
  • Allowed Users: (empty)
  • Allowed Groups: Engineering
  • Result: Any member of the Engineering group can connect.

Combine both (OR logic):

  • Enable Use Allowed Lists
  • Allowed Users: alice
  • Allowed Groups: Engineering
  • Result: alice can connect, and any member of Engineering can connect — even if alice is not in Engineering.

Related articles

Comments

0 comments

Article is closed for comments.