AnyDesk Advanced Options: Customizing Your Client for Ultimate Control
Advanced Options
Table of Contents
Beyond the standard customization options, AnyDesk offers “Advanced” options to assist users in fine-tuning their AnyDesk clients to their exact specifications.
You can either override a setting (meaning there is no way to change it back within AnyDesk) or change the default setting that AnyDesk uses. For security-related features, we recommend using “Override settings” so that they cannot be changed from the user interface of the custom client.
The following are the Advanced Options for AnyDesk for Windows.
Tip: Value possibilities in bold are the default options.
Client Features
| Feature | Key-value Pair | Value Possibilities |
|---|---|---|
| Use specific version | _module=anydesk- |
e.g. _module=anydesk-6.0.8 |
| Automatically register Alias | ad.features.register_alias=true | false, true |
| Auto register Alias to custom namespace ⚠️ For custom Windows MSI installers, in the custom client configurator, please do not enable Automatically register Alias (Hostname as Alias in my.anydesk II). The key-value is applicable for Cloud solution only and does not need to be used for On-Premises clients. | ad.anynet.register.add_to_namespace=true | false, true |
| Request elevation on startup (UAC) | ad.features.auto_uac=true | false, true |
| Allow installation | ad.features.install=true | false, true |
| Stop users from removing or overwriting the license | ad.license.permissions=0 | 0: No permission, 1: Have permission |
Client Settings
| Feature | Key-value Pair | Value Possibilities |
|---|---|---|
| Disable All Settings | ad.ui.cfg_enabled=false | false, true |
User Interface Settings
| Feature | Key-value Pair | Value Possibilities |
|---|---|---|
| Disable User Interface settings | ad.ui.cfg_enable_interface=false | false, true |
| Set default language | ad.ui.lang= |
See Language Codes |
| Disable auto-select language | ad.ui.lang.auto=false | false, true |
| Disable invitation E-Mail option | ad.ui.show_invite=false | false, true |
| Disable the ability to send direct invitations | ad.features.session_invitation.send=false | false, true |
| Disable the ability to receive direct invitations | ad.features.session_invitation.receive=false | false, true |
| Show AnyDesk ID instead of Alias | ad.ui.alias_or_id=true | false, true |
| Hide local taskbar if AnyDesk window is maximized | ad.ui.maximize_type=true | false, true |
| Disable comment on session close | ad.ui.comment_session=false | false, true |
| AnyDesk starts in the advanced view | ad.roster.adv_view=true | false, true |
| Remove the “What’s new”-tile on the main window | ad.ui.show_tile.whats_new=0 | 0: Disable, 1: Enable |
| Remove the “Set password for unattended access”-tile (Pre-AnyDesk 7) | ad.ui.show_tile.password=0 | 0: Disable, 1: Enable |
| Remove the tile about the existence of the Discovery-function | ad.discovery.show_tile=0 | 0: Disable, 1: Enable |
| Disable Recent Sessions | ad.features.recent_out=0 | 0: Disable |
| Disable Favorites | ad.features.favorites=0 | 0: Disable |
| Hide pie menu button on inactivity (Android only) | ad.ui.auto_hide_nubsi=true | false, true |
| Hide plugin installation dialog (Android only) | ad.ui.enable.dialog.plugin.install=0 | 0: Disable, 1: Enable |
| Hide plugin update dialog (Android only) | ad.ui.enable.dialog.plugin.update=0 | 0: Disable, 1: Enable |
| Hide plugin activation dialog (Android only) | ad.ui.enable.dialog.plugin.activation=0 | 0: Disable, 1: Enable |
| Hide battery optimization dialog (Android only) | ad.ui.enable.dialog.battery_optimization=0 | 0: Disable, 1: Enable |
| Hide overlay permission dialog (Android only) | ad.ui.enable.dialog.overlay_permission=0 | 0: Disable, 1: Enable |
| Hide scam warning dialog (Android only) | ad.ui.enable.dialog.local_scam_warning=0 | 0: Disable, 1: Enable |
| Hide auto start of tutorial (Android only) | ad.ui.enable.tutorial_autostart=0 | 0: Disable, 1: Enable |
| Hide privacy policy dialog (Android only) | ad.ui.enable.dialog.privacy_policy=0 | 0: Disable, 1: Enable |
Security Settings
| Feature | Key-value pair | Value possibilities |
|---|---|---|
| Disable Security settings | ad.ui.cfg_enable_security=false | false, true |
| Disable interactive access | ad.security.interactive_access=2 | 2: disable, 1: enable when AnyDesk is open, 0: always enabled |
| Enable Access Control List | ad.security.acl_enabled=true | false, true |
| Disable unattended access | ad.features.unattended=false | false |
| Forbid others to save login information for this computer | ad.security.allow_logon_token=false | false, true |
| Disable Two-Factor-Authentication | ad.features.two_factor_auth=false | false, true |
| Disable File Manager sessions | ad.features.file_manager=false | false, true |
| Terminate existing incoming sessions when receiving a session request (Android only) | ad.security.kickout=1 | 0: Disable, 1: Enable |
| Protect settings with device or biometric credentials (0=disable, 2=enable) | ad.security.settings_protection=2 | 0: Disable, 2: Enable |
Permission Profiles (AnyDesk 7+)
Tip:
We offer a Permission Profile key-value pair generator to help our customers generate the key-value pairs they need for their desired configuration.
Warning:
Unlike the above ad.security key-value pairs, the Permission Profile key-value pairs that were introduced with AnyDesk 7 offer a higher level of customizability and flexibility than ever before.
Up to 10 custom profiles, each with individual sets of permissions and unattended access passwords can be generated to fit the needs of different roles.
These new key-value pairs also offer the ability to separate the permissions found in the Accept Window and in Settings > Security.
For example, with
ad.security.permission_profiles.profile1.permissions.audio=0
in the field, the transmit audio permission will always be off by default when _profile1_is selected. However, the permission can still be reenabled via the Accept Window.
If you do not wish to allow the owner of the remote device being controlled to be able to reenable the permission via the Accept Window, you can additionally include the following key-value pair:
ad.security.permission_profiles.profile1.changeable_in_accept_window.audio=0
| Feature | Key-value pair | Value possibilities |
|---|---|---|
| Internal profile identifier for the below key-value pairs. These are used in combination with the key-value pairs below. | <profile_id> | Default Profiles:Default: _defaultFull Access: _full_accessScreen Sharing: _screen_sharing**(Migrated) Unattended Access:** _unattended_access **Custom Profiles:**profile1profile2…profile10 |
| List of available permissions for the below key-value pairs. These are used in combination with the key-value pairs below. | audio input clipboard clipboard_filesblock_input sas (CTRL+ALT+DEL Action) restart file_manager lock_desk sysinfo whiteboard tcp_tunnel vpn user_pointer privacy_featurerecord_session | |
| Defines whether or not AnyDesk remembers what profile and permissions were used in the previous session between the same two clients. | ad.security.permission_profiles.enable_previous_session=<0,1> | 0: No, 1: Yes |
| Creates a profile with the identifier <profile_id> and is named |
ad.security.permission_profiles.define.<profile_id>= |
e.g. ad.security.permission_profiles.define.profile1=myprofile |
| (Settings) Forbid users connecting to <profile_id> to have |
ad.security.permission_profiles.<profile_id>.permissions. |
0: Disable, 1: Enable |
| (Accept Window) Defines whether |
ad.security.permission_profiles.<profile_id>.changeable_in_accept_window. |
0: Disable, 1: Enable |
| Defines if the user can switch to a different profile while <profile_id> is in use. This does not affect the _screen_sharing and _full_access profiles. | ad.security.permission_profiles.<profile_id>.can_switch_profile=0 | 0: No, 1: Yes |
| Defines whether the <profile_id> profile can be seen in the Accept Window. This is generally for UA-only Profiles. This does not affect the _screen_sharing and _full_access profiles. | ad.security.permission_profiles.<profile_id>.show_in_accept_window=0 | 0: No, 1: Yes |
| Defines an unattended access password for <profile_id> This is not compatible with the _unattended_access profile. | ad.security.permission_profiles.<profile_id>.pwd=<, hash> ad.security.permission_profiles.<profile_id>.salt= |
: Disabled,For example the following disables unattended access for the Default profile:ad.security.permission_profiles._default.pwd= |
| Remove <profile_id> from the custom client | ad.security.permission_profiles.<profile_id>.removed=1 | |
| Allow me to manually create Permission Profiles in Settings > Security | ad.security.permission_profiles.can_create=1 | 0: No, 1: Yes |
| (Settings) Defines what permissions are available across all profiles. This does not affect the _screen_sharing and _full_access profiles. | ad.security.permission_profiles.permissions. |
0: Disable, 1: Enable |
| (Accept Window) Defines what permissions are changeable during a session across all profiles. This does not affect the _screen_sharing and _full_access profiles. | ad.security.permission_profiles.changeable_in_accept_window. |
0: Disable, 1: Enable |
| Defines whether profiles can be changed once they have been selected. This does not affect the _screen_sharing and _full_access profiles. | ad.security.permission_profiles.can_switch_profile = <0,1> | 0: No, 1: Yes |
| Defines whether profiles are shown in the Accept Window. This does not affect the _screen_sharing and _full_access profiles. | ad.security.permission_profiles.show_in_accept_window = <0,1> | 0: No, 1: Yes |
Unattended Access Settings (Pre-AnyDesk 7)
Warning:
With AnyDesk 7 and newer, these key-value pairs only affect the Unattended Access profile assuming one has been created within the custom client configuration.
| Feature | Key-value pair | Value possibilities |
|---|---|---|
| Override standard permissions (only works if different permissions for Unattended Access are set) | ad.security.enable_uaccess_permissions=true | false, true |
| Forbid connecting users to: | ||
| Hear my computer’s sound output | ad.security.uaccess.hear_audio=false | false, true |
| Control my computer’s keyboard and mouse | ad.security.uaccess.control_input=false | false, true |
| Access my computer’s clipboard | ad.security.uaccess.sync_clipbrd=false | false, true |
| Access my computer’s clipboard to transfer files | ad.security.uaccess.clipboard.files=false | false, true |
| Lock my computer’s keyboard and mouse | ad.security.uaccess.block_input=false | false, true |
| Restart my computer | ad.security.uaccess.restart=false | false, true |
| Use the file manager | ad.security.uaccess.file_manager=false | false, true |
| Lock desktop on session end | ad.security.uaccess.lock_account=false | false, true |
| Request system information | ad.security.uaccess.sysinfo=false | false, true |
| Print out my documents on their printer | ad.security.uaccess.print=false | false, true |
| Draw on computer’s screen | ad.security.uaccess.whiteboard=false | false, true |
| Create TCP tunnels | ad.security.uaccess.tcp_tunnel=false | false, true |
| Enabled privacy mode | ad.security.uaccess.privacy_feature=false | false, true |
| Show a colored mouse pointer when physical input is forbidden | ad.security.uaccess.user_pointer=false | false, true |
Interactive Access/Accept Window Settings (Pre-AnyDesk 7)
| Feature | Key-value pair | Value possibilities |
|---|---|---|
| Forbid connecting users to: | ||
| Hear my computer’s sound output | ad.security.hear_audio=false | false, true |
| Control my computer’s keyboard and mouse | ad.security.control_input=false | false, true |
| Access my computer’s clipboard | ad.security.sync_clipbrd=false | false, true |
| Access my computer’s clipboard to transfer files | ad.security.clipboard.files=false | false, true |
| Lock my computer’s keyboard and mouse | ad.security.block_input=false | false, true |
| Restart my computer | ad.security.restart=false | false, true |
| Use the file manager | ad.security.file_manager=false | false, true |
| Request system information | ad.security.sysinfo=false | false, **true |
- Published at