Remote Access
Connect to endpoints securely from a single web interface.
Remote Access in Breeze includes interactive desktop control, browser terminal sessions, and managed file transfer. All remote session creation is permission-gated and MFA-protected.
Remote Desktop and Terminal
Desktop and terminal sessions use WebRTC as the primary transport with signaling handled by the Breeze server. If peer negotiation fails in constrained network conditions, the viewer can fall back to a WebSocket relay mode with reduced capabilities.
Terminal sessions are full PTY sessions rendered in-browser, supporting interactive shell behavior and resize-aware terminal state.
File Transfer Workflow
File transfer supports both pull and push operations with status tracking (pending, transferring, completed, failed) and progress visibility. Transfers can be cancelled while active.
Security Controls
Remote access enforces:
- MFA checks before session creation
- role-based permission checks (
remote:access) - audit logging for session lifecycle transitions
- organization and user-level concurrency limits
This model keeps remote operations usable for technicians while preserving strong session governance.
Capabilities
PTY Terminal Sessions
Interactive shell access is delivered as real PTY sessions with resize-aware terminal behavior.
Desktop Transport Fallback
Desktop sessions prioritize WebRTC and can fall back to WebSocket relay mode when negotiation fails.
Managed File Transfer
Transfers track direction, progress, and completion state with explicit cancellation support.
MFA and Permission Gates
Session creation requires MFA and remote-access authorization before resources are allocated.