description:When true, indicates that a TLS offloader is in front of the MeshCentral server. More typically, set this to the IP address of the reverse proxy or TLS offloader so that IP forwarding headers will be trusted. For example 172.16.0.0/16
description:Trust forwarded headers from these IPs or domains. Providing the magic string "CloudFlare" will cause the server to download the IP address list of trusted CloudFlare proxies directly from CloudFlare on each server start. For example 172.16.0.0/16. This should be left empty if traefik is used.
description:Enables agent-side, websocket per-message deflate compression. wscompression must also be true for this to work.
schema:
type:boolean
default:true
- variable:allowFraming
label:allowFraming
description:When enabled, the MeshCentral web site can be embedded within another website's iframe.
schema:
type:boolean
default:false
- variable:newAccounts
label:newAccounts
description:When set to true, allow new user accounts to be created from the login page.
schema:
type:boolean
default:false
- variable:allowHighQualityDesktop
label:allowHighQualityDesktop
description:When false, users will only be able to set remote desktop image quality to 60%, this can reduce server bandwidth usage.
schema:
type:boolean
default:true
- variable:agentLogDump
label:agentLogDump
description:Automatically downloads all agent error logs into meshcentral-data/agenterrorlogs.txt.
schema:
type:boolean
default:false
- variable:agentCoreDump
label:agentCoreDump
description:Automatically activates and transfers any agent crash dump files to the server in meshcentral-data/coredumps.
schema:
type:boolean
default:false
- variable:browserPing
label:browserPing
description:When specified, sends data to the browser at x seconds interval and expects a response from the browser.
schema:
type:int
required:true
default:-99
- variable:browserPong
label:browserPong
description:When specified, sends data to the browser at x seconds interval.
schema:
type:int
required:true
default:-99
- variable:agentPing
label:agentPing
description:When specified, sends data to the agent at x seconds interval and expects a response from the agent.
schema:
type:int
required:true
default:-99
- variable:agentPong
label:agentPong
description:When specified, sends data to the agent at x seconds interval.
schema:
type:int
required:true
default:-99
- variable:agentIdleTimeout
label:agentIdleTimeout
description:How much time in seconds with no traffic from an agent before dropping the agent connection.
schema:
type:int
required:true
default:-99
- variable:maxInvalidLogin
label:Section <maxInvalidLogin>
schema:
additional_attrs:true
type:dict
attrs:
- variable:time
label:time
description:Time in minutes over which the a maximum number of invalid login attempts is allowed from an IP address.
schema:
type:int
required:true
default:10
- variable:count
label:count
description:Maximum number of invalid login attempts from an IP address in the time period.
schema:
type:int
required:true
default:10
- variable:coolofftime
label:coolofftime
description:Additional time in minute that login attempts will be denied once the invalid login limit is reached.
schema:
type:int
required:true
default:30
- variable:exclude
label:exclude
description:Ranges of IP addresses that are not subject to invalid login limitations. For example 192.168.1.0/24,172.16.0.1
schema:
type:string
default:""
- variable:maxInvalid2fa
label:Section <maxInvalid2fa>
schema:
additional_attrs:true
type:dict
attrs:
- variable:time
label:time
description:Time in minutes over which the a maximum number of invalid 2FA attempts is allowed from an IP address.
schema:
type:int
required:true
default:10
- variable:count
label:count
description:Maximum number of invalid 2FA attempts from an IP address in the time period.
schema:
type:int
required:true
default:10
- variable:coolofftime
label:coolofftime
description:Additional time in minute that 2FA attempts will be denied once the invalid login limit is reached.
schema:
type:int
required:true
default:30
- variable:exclude
label:exclude
description:Ranges of IP addresses that are not subject to invalid 2FA limitations. For example 192.168.1.0/24,172.16.0.1
schema:
type:string
default:""
- variable:autobackup
label:Section <autobackup>
schema:
additional_attrs:true
type:dict
attrs:
- variable:backupIntervalHours
label:backupIntervalHours
schema:
type:int
required:true
default:24
- variable:keepLastDaysBackup
label:keepLastDaysBackup
schema:
type:int
required:true
default:10
- variable:zipPassword
label:zipPassword
description:Leave empty for no password
schema:
type:string
private:true
default:""
- variable:_setupWebDav
label:Backup to Web DAV
description:Enabled automated upload of the server backups to a WebDAV account.
schema:
type:boolean
default:false
show_subquestions_if:true
subquestions:
- variable:webdav
label:Section <webdav>
schema:
additional_attrs:true
type:dict
attrs:
- variable:url
label:url
description:WebDAV account URL.
schema:
type:string
default:""
- variable:username
label:username
description:WebDAV account username.
schema:
type:string
default:""
- variable:password
label:password
description:WebDAV account password.
schema:
type:string
private:true
default:""
- variable:folderName
label:folderName
description:The name of the folder to create in the WebDAV account.
schema:
type:string
default:MeshCentral-Backups
- variable:maxFiles
label:maxFiles
description:The maximum number of files to keep in the WebDAV folder, older files will be removed if needed.
schema:
type:int
default:10
- variable:relayDNS
label:relayDNS
description:When set, relayPort value is ignored. Set this to a DNS name the points to this server. When the server is accessed using the DNS name, the main web server port is used as a web relay port.
schema:
type:list
default:[]
items:
- variable:relayDNSEntry
label:relayDNS Entry
schema:
type:string
required:true
default:""
- variable:plugins
label:Section <plugins>
schema:
additional_attrs:true
type:dict
attrs:
- variable:enabled
label:enabled
schema:
type:boolean
default:false
- variable:_setupMessaging
label:Setup Messaging
description:This section allow MeshCentral to send messages over user messaging networks like Discord
schema:
type:boolean
default:false
show_subquestions_if:true
subquestions:
- variable:messaging
label:Section <messaging>
schema:
additional_attrs:true
type:dict
attrs:
- variable:_setupTelegram
label:Setup Telegram
schema:
type:boolean
default:false
show_subquestions_if:true
subquestions:
- variable:telegram
label:telegram
description:Configure Telegram messaging system
schema:
additional_attrs:true
type:dict
attrs:
- variable:apiid
label:apiid
schema:
type:string
default:""
- variable:apihash
label:apihash
schema:
type:string
default:""
- variable:session
label:session
schema:
type:string
default:""
- variable:_setupDiscord
label:Setup Discord
schema:
type:boolean
default:false
show_subquestions_if:true
subquestions:
- variable:discord
label:discord
description:Configure Discord messaging system
schema:
additional_attrs:true
type:dict
attrs:
- variable:serverurl
label:serverurl
schema:
type:string
default:""
- variable:token
label:token
schema:
type:string
default:""
- variable:_setupXMPP
label:Setup XMPP
schema:
type:boolean
default:false
show_subquestions_if:true
subquestions:
- variable:xmpp
label:xmpp
description:Configure XMPP messaging system
schema:
additional_attrs:true
type:dict
attrs:
- variable:service
label:service
schema:
type:string
default:""
- variable:credentials
label:credentials
schema:
additional_attrs:true
type:dict
attrs:
- variable:username
label:username
schema:
type:string
default:""
- variable:password
label:password
schema:
type:string
private:true
default:""
- variable:domains
label:Section <domains>
schema:
additional_attrs:true
type:dict
attrs:
- variable:tcdefaultdomain
label:'Section <"">'
schema:
additional_attrs:true
type:dict
attrs:
- variable:certUrl
label:certUrl
description:HTTPS URL when to get the TLS certificate that MeshAgent's will see when connecting to this server. This setting is used when a reverse proxy like Traefik is used in front of MeshCentral.
schema:
type:string
required:true
default:""
- variable:title
label:title
description:The title of this web site. All web pages will have this title.
schema:
type:string
required:true
default:MeshCentral
- variable:title2
label:title2
description:Secondary title text that is placed on the upper right on the title on many web pages.
schema:
type:string
required:true
default:TrueCharts
- variable:welcomeText
label:welcomeText
description:Text that will be shown on the login screen.
schema:
type:string
required:true
default:Welcome to TrueCharts MeshCentral
- variable:minify
label:minify
description:When enabled, the server will send reduced sized web pages.
schema:
type:boolean
default:true
- variable:localSessionRecording
label:localSessionRecording
description:When false, removes the local recording feature on remote desktop.
schema:
type:boolean
default:true
- variable:mstsc
label:mstsc
description:When enabled, activates the built-in web-based RDP client.
schema:
type:boolean
default:true
- variable:ssh
label:ssh
description:When enabled, activates the built-in web-based SSH client.
schema:
type:boolean
default:true
- variable:novnc
label:novnc
description:When enabled, activates the built-in web-based VNC client.
schema:
type:boolean
default:true
- variable:geoLocation
label:geoLocation
description:Enables the geo-location feature and device location map in the user interface, this feature is not being worked on.
schema:
type:boolean
default:true
- variable:nightMode
label:nightMode
description:0= User selects day/night mode, 1 = Always night mode, 2 = Always day mode
schema:
type:int
min:0
max:2
requited:true
default:0
- variable:siteStyle
label:siteStyle
description:Valid numbers are 1 and 2, changes the style of the login page and some secondary pages.
schema:
type:int
min:1
max:2
requited:true
default:2
- variable:deviceMeshRouterLinks
label:Section <deviceMeshRouterLinks>
schema:
additional_attrs:true
type:dict
attrs:
- variable:rdp
label:rdp
description:Display a RDP link in the device tab when supported
schema:
type:boolean
default:true
- variable:ssh
label:ssh
description:Display a SSH link in the device tab when supported
schema:
type:boolean
default:true
- variable:scp
label:scp
description:Display a SCP link in the device tab when supported
schema:
type:boolean
default:true
- variable:_setupAgentCustomization
label:Setup Agent Customization
description:Use this section to customize the agent branding.
schema:
type:boolean
default:false
show_subquestions_if:true
subquestions:
- variable:agentCustomization
label:Section <agentCustomization>
schema:
additional_attrs:true
type:dict
attrs:
- variable:displayName
label:displayName
description:The name of the agent as displayed to the user.
schema:
type:string
default:MeshCentral Agent
- variable:description
label:description
description:The description of the agent as displayed to the user.
schema:
type:string
default:Mesh Agent Background Service
- variable:companyName
label:companyName
description:This will be used as the path to install the agent, by default this is 'Mesh Agent' in Windows and 'meshagent' in other OS's.
schema:
type:string
default:Mesh Agent
- variable:serviceName
label:serviceName
description:The name of the background service, by default this is 'Mesh Agent' in Windows and 'meshagent' in other OS's but should be set to an all lower case, no space string.
schema:
type:string
default:Mesh Agent
- variable:installText
label:installText
description:Text string to show in the agent installation dialog box.
schema:
type:string
default:""
- variable:image
label:image
description:The filename of a image file in .png format located in meshcentral-data to display in the MeshCentral Agent installation dialog, image should be square and from 64x64 to 200x200.
schema:
type:string
default:""
- variable:fileName
label:fileName
description:The agent filename.
schema:
type:string
default:meshagent
- variable:foregroundColor
label:foregroundColor
description:'Foreground text color, valid values are RBG in format 0,0,0 to 255,255,255 or format "#000000" to "#FFFFFF".'
schema:
type:string
default:""
- variable:backgroundColor
label:backgroundColor
description:'Background color, valid values are RBG in format 0,0,0 to 255,255,255 or format "#000000" to "#FFFFFF".'
schema:
type:string
default:""
- variable:additional_meshcentral
group:App Configuration
label:Additional MeshCentral Configuration
schema:
type:list
default:[]
items:
- variable:entry
label:Key - Value Pair
schema:
additional_attrs:true
type:dict
attrs:
- variable:key
label:Key
schema:
type:string
required:true
default:""
- variable:value
label:Value
schema:
type:string
required:true
default:""
- variable:TZ
label:Timezone
group:"General Settings"
schema:
type:string
default:"Etc/UTC"
$ref:
- "definitions/timezone"
- variable:envList
label:Extra Environment Variables
description:"Please be aware that some variables are set in the background, adding duplicates here might cause issues or prevent the app from starting..."
group:"General Settings"
schema:
type:list
default:[]
items:
- variable:envItem
label:Environment Variable
schema:
additional_attrs:true
type:dict
attrs:
- variable:name
label:Name
schema:
type:string
- variable:value
label:Value
schema:
type:string
- variable:service
group:Networking and Services
label:Configure Service(s)
schema:
additional_attrs:true
type:dict
attrs:
- variable:main
label:Main Service
description:The Primary service on which the healthcheck runs, often the webUI
schema:
additional_attrs:true
type:dict
attrs:
- variable:enabled
label:Enable the Service
schema:
type:boolean
default:true
hidden:true
- variable:type
label:Service Type
description:"ClusterIP's are only internally available and Loadbalancer exposes the service using the system loadbalancer"
schema:
type:string
default:LoadBalancer
enum:
- value:LoadBalancer
description:LoadBalancer (Expose Ports)
- value:ClusterIP
description:ClusterIP (Do Not Expose Ports)
- value:Simple
description:Deprecated CHANGE THIS
- variable:loadBalancerIP
label:LoadBalancer IP
description:"MetalLB Only: Selects the Loadbalancer IP to expose on. Required when using PortalButton with MetalLB"
schema:
show_if:[["type","=","LoadBalancer"]]
type:string
default:""
- variable:ports
label:"Service's Port(s) Configuration"
schema:
additional_attrs:true
type:dict
attrs:
- variable:main
label:Main Service Port Configuration
schema:
additional_attrs:true
type:dict
attrs:
- variable:port
label:Port
description:This port exposes the container port on the service
schema:
type:int
default:10205
required:true
- variable:serviceexpert
group:Networking and Services
label:Show Expert Config
schema:
type:boolean
default:false
show_subquestions_if:true
subquestions:
- variable:hostNetwork
group:Networking and Services
label:Host-Networking (Complicated)
schema:
type:boolean
default:false
- variable:externalInterfaces
description:Add External Interfaces
label:Add external Interfaces
group:Networking
schema:
type:list
items:
- variable:interfaceConfiguration
description:Interface Configuration
label:Interface Configuration
schema:
type:dict
$ref:
- "normalize/interfaceConfiguration"
attrs:
- variable:hostInterface
description:Please Specify Host Interface
label:Host Interface
schema:
type:string
required:true
$ref:
- "definitions/interface"
- variable:ipam
description:Define how IP Address will be managed
label:IP Address Management
schema:
type:dict
required:true
attrs:
- variable:type
description:Specify type for IPAM
label:IPAM Type
schema:
type:string
required:true
enum:
- value:dhcp
description:Use DHCP
- value:static
description:Use Static IP
show_subquestions_if:static
subquestions:
- variable:staticIPConfigurations
label:Static IP Addresses
schema:
type:list
items:
- variable:staticIP
label:Static IP
schema:
type:ipaddr
cidr:true
- variable:staticRoutes
label:Static Routes
schema:
type:list
items:
- variable:staticRouteConfiguration
label:Static Route Configuration
schema:
additional_attrs:true
type:dict
attrs:
- variable:destination
label:Destination
schema:
type:ipaddr
cidr:true
required:true
- variable:gateway
label:Gateway
schema:
type:ipaddr
cidr:false
required:true
- variable:serviceList
label:Add Manual Custom Services
group:Networking and Services
schema:
type:list
default:[]
items:
- variable:serviceListEntry
label:Custom Service
schema:
additional_attrs:true
type:dict
attrs:
- variable:enabled
label:Enable the service
schema:
type:boolean
default:true
hidden:true
- variable:name
label:Name
schema:
type:string
default:""
- variable:type
label:Service Type
description:"ClusterIP's are only internally available and Loadbalancer exposes the service using the system loadbalancer"
schema:
type:string
default:LoadBalancer
enum:
- value:LoadBalancer
description:LoadBalancer (Expose Ports)
- value:ClusterIP
description:ClusterIP (Do Not Expose Ports)
- value:Simple
description:Deprecated CHANGE THIS
- variable:loadBalancerIP
label:LoadBalancer IP
description:"MetalLB Only: Selects the Loadbalancer IP to expose on. Required when using PortalButton with MetalLB"
schema:
show_if:[["type","=","LoadBalancer"]]
type:string
default:""
- variable:advancedsvcset
label:Show Advanced Service Settings
schema:
type:boolean
default:false
show_subquestions_if:true
subquestions:
- variable:externalIPs
label:"External IP's"
description:"External IP's"
schema:
type:list
default:[]
items:
- variable:externalIP
label:External IP
schema:
type:string
- variable:ipFamilyPolicy
label:IP Family Policy
description:Specify the IP Policy
schema:
type:string
default:SingleStack
enum:
- value:SingleStack
description:SingleStack
- value:PreferDualStack
description:PreferDualStack
- value:RequireDualStack
description:RequireDualStack
- variable:ipFamilies
label:IP Families
description:(Advanced) The IP Families that should be used
schema:
type:list
default:[]
items:
- variable:ipFamily
label:IP Family
schema:
type:string
- variable:portsList
label:Additional Service Ports
schema:
type:list
default:[]
items:
- variable:portsListEntry
label:Custom ports
schema:
additional_attrs:true
type:dict
attrs:
- variable:enabled
label:Enable the Port
schema:
type:boolean
default:true
hidden:true
- variable:name
label:Port Name
schema:
type:string
default:""
- variable:protocol
label:Port Type
schema:
type:string
default:TCP
enum:
- value:HTTP
description:HTTP
- value:HTTPS
description:HTTPS
- value:TCP
description:TCP
- value:UDP
description:UDP
- variable:targetPort
label:Target Port
description:This port exposes the container port on the service
schema:
type:int
required:true
- variable:port
label:Container Port
schema:
type:int
required:true
- variable:persistence
label:Integrated Persistent Storage
description:Integrated Persistent Storage
group:Storage and Persistence
schema:
additional_attrs:true
type:dict
attrs:
- variable:data
label:App Data Storage
description:Stores the Application Data.
schema:
additional_attrs:true
type:dict
attrs:
- variable:type
label:Type of Storage
description:Sets the persistence type, Anything other than PVC could break rollback!
schema:
type:string
default:pvc
enum:
- value:pvc
description:PVC
- value:hostPath
description:Host Path
- value:emptyDir
description:emptyDir
- value:nfs
description:NFS Share
- variable:server
label:NFS Server
schema:
show_if:[["type","=","nfs"]]
type:string
default:""
- variable:path
label:Path on NFS Server
schema:
show_if:[["type","=","nfs"]]
type:string
default:""
- variable:setPermissions
label:Automatic Permissions
description:Automatically set permissions on install
schema:
show_if:[["type","=","hostPath"]]
type:boolean
default:false
- variable:readOnly
label:Read Only
schema:
type:boolean
default:false
- variable:hostPath
label:Host Path
description:Path inside the container the storage is mounted
schema:
show_if:[["type","=","hostPath"]]
type:hostpath
- variable:medium
label:EmptyDir Medium
schema:
show_if:[["type","=","emptyDir"]]
type:string
default:""
enum:
- value:""
description:Default
- value:Memory
description:Memory
- variable:size
label:Size quotum of Storage (Do NOT REDUCE after installation)
description:This value can ONLY be INCREASED after the installation
schema:
show_if:[["type","=","pvc"]]
type:string
default:256Gi
- variable:files
label:Files Storage
description:Stores the Files
schema:
additional_attrs:true
type:dict
attrs:
- variable:type
label:Type of Storage
description:Sets the persistence type, Anything other than PVC could break rollback!
schema:
type:string
default:pvc
enum:
- value:pvc
description:PVC
- value:hostPath
description:Host Path
- value:emptyDir
description:emptyDir
- value:nfs
description:NFS Share
- variable:server
label:NFS Server
schema:
show_if:[["type","=","nfs"]]
type:string
default:""
- variable:path
label:Path on NFS Server
schema:
show_if:[["type","=","nfs"]]
type:string
default:""
- variable:setPermissions
label:Automatic Permissions
description:Automatically set permissions on install
schema:
show_if:[["type","=","hostPath"]]
type:boolean
default:false
- variable:readOnly
label:Read Only
schema:
type:boolean
default:false
- variable:hostPath
label:Host Path
description:Path inside the container the storage is mounted
schema:
show_if:[["type","=","hostPath"]]
type:hostpath
- variable:medium
label:EmptyDir Medium
schema:
show_if:[["type","=","emptyDir"]]
type:string
default:""
enum:
- value:""
description:Default
- value:Memory
description:Memory
- variable:size
label:Size quotum of Storage (Do NOT REDUCE after installation)
description:This value can ONLY be INCREASED after the installation
schema:
show_if:[["type","=","pvc"]]
type:string
default:256Gi
- variable:web
label:Web Storage
description:Stores the Web Files. Used for web customization
schema:
additional_attrs:true
type:dict
attrs:
- variable:type
label:Type of Storage
description:Sets the persistence type, Anything other than PVC could break rollback!
schema:
type:string
default:pvc
enum:
- value:pvc
description:PVC
- value:hostPath
description:Host Path
- value:emptyDir
description:emptyDir
- value:nfs
description:NFS Share
- variable:server
label:NFS Server
schema:
show_if:[["type","=","nfs"]]
type:string
default:""
- variable:path
label:Path on NFS Server
schema:
show_if:[["type","=","nfs"]]
type:string
default:""
- variable:setPermissions
label:Automatic Permissions
description:Automatically set permissions on install
schema:
show_if:[["type","=","hostPath"]]
type:boolean
default:false
- variable:readOnly
label:Read Only
schema:
type:boolean
default:false
- variable:hostPath
label:Host Path
description:Path inside the container the storage is mounted
schema:
show_if:[["type","=","hostPath"]]
type:hostpath
- variable:medium
label:EmptyDir Medium
schema:
show_if:[["type","=","emptyDir"]]
type:string
default:""
enum:
- value:""
description:Default
- value:Memory
description:Memory
- variable:size
label:Size quotum of Storage (Do NOT REDUCE after installation)
description:This value can ONLY be INCREASED after the installation
schema:
show_if:[["type","=","pvc"]]
type:string
default:256Gi
- variable:backups
label:Backups Storage
description:Stores the Backups
schema:
additional_attrs:true
type:dict
attrs:
- variable:type
label:Type of Storage
description:Sets the persistence type, Anything other than PVC could break rollback!
schema:
type:string
default:pvc
enum:
- value:pvc
description:PVC
- value:hostPath
description:Host Path
- value:emptyDir
description:emptyDir
- value:nfs
description:NFS Share
- variable:server
label:NFS Server
schema:
show_if:[["type","=","nfs"]]
type:string
default:""
- variable:path
label:Path on NFS Server
schema:
show_if:[["type","=","nfs"]]
type:string
default:""
- variable:setPermissions
label:Automatic Permissions
description:Automatically set permissions on install
schema:
show_if:[["type","=","hostPath"]]
type:boolean
default:false
- variable:readOnly
label:Read Only
schema:
type:boolean
default:false
- variable:hostPath
label:Host Path
description:Path inside the container the storage is mounted
schema:
show_if:[["type","=","hostPath"]]
type:hostpath
- variable:medium
label:EmptyDir Medium
schema:
show_if:[["type","=","emptyDir"]]
type:string
default:""
enum:
- value:""
description:Default
- value:Memory
description:Memory
- variable:size
label:Size quotum of Storage (Do NOT REDUCE after installation)
description:This value can ONLY be INCREASED after the installation
schema:
show_if:[["type","=","pvc"]]
type:string
default:256Gi
- variable:persistenceList
label:Additional App Storage
group:Storage and Persistence
schema:
type:list
default:[]
items:
- variable:persistenceListEntry
label:Custom Storage
schema:
additional_attrs:true
type:dict
attrs:
- variable:enabled
label:Enable the storage
schema:
type:boolean
default:true
hidden:true
- variable:type
label:Type of Storage
description:Sets the persistence type, Anything other than PVC could break rollback!
schema:
type:string
default:hostPath
enum:
- value:pvc
description:PVC
- value:hostPath
description:Host Path
- value:emptyDir
description:emptyDir
- value:nfs
description:NFS Share
- variable:server
label:NFS Server
schema:
show_if:[["type","=","nfs"]]
type:string
default:""
- variable:path
label:Path on NFS Server
schema:
show_if:[["type","=","nfs"]]
type:string
default:""
- variable:setPermissions
label:Automatic Permissions
description:Automatically set permissions on install
schema:
show_if:[["type","=","hostPath"]]
type:boolean
default:false
- variable:readOnly
label:Read Only
schema:
type:boolean
default:false
- variable:hostPath
label:Host Path
description:Path inside the container the storage is mounted
schema:
show_if:[["type","=","hostPath"]]
type:hostpath
- variable:mountPath
label:Mount Path
description:Path inside the container the storage is mounted