Apptimized TO GO infrastructure
Infrastructure components
Apptimized TO GO allows a customer to turn a local machine, PC's or VM's into Apptimized VM so that they can be used for discovery and testing.
Apptimized TO GO can be used for discovery and testing on local test PCs or VMs in the customer's own environment.
Apptimized TO GO infrastructure depends on the type of solution a customer chooses (see Cases 1-2).
Case 1. A customer implements Apptimized TO GO agent only to automate discovery and testing within on-premises PCs and VMs.
The figure below shows the scheme of the Apptimized TO GO agent infrastructure.
The infrastructure components details are described in Table 1.
Table 1. Infrastructure components
Component |
Details |
1. Apptimized Portal |
The platform where Apptimized customer manages projects portfolios. Requires an active project with enabled and configured Apptimized TO GO settings. Technical requirement for working in Apptimized: 1. Browsers:
2. Enabled Java-script in browser; 3. Speed of internet connections – min 50 Mb/s. 4. Enabled firewall white list: 195.201.82.88; 195.201.170.90; https://app.apptimized.com/; https://rdproxy.apptimized.com/; https://cdn.apptimized.com; *.chatlio.com |
2. Customer Environment |
Information technology environment, including software, hardware, and systems (e.g., endpoint PCs, VMs, servers, networks).
The access of endpoint PC or VM to the 80 and 443 port of the app.apptimized.com host is a prerequisite. |
2.1. Proxy server |
This component is optional. A proxy server is a third party between the customer and the service (the Apptimized Portal). A proxy server manages the requests sent by the customer and completes them depending on the system's preferences. |
2.2. Apptimized TO GO agent |
Apptimized TO GO agent is a software that sends information from the VM to Apptimized (i.e., screenshots, user actions, etc.), and does not control VM in any case. Apptimized TO GO agent allows a customer to turn a local machine, PC's or VM's into Apptimized VM so that they can be used for discovery and testing. The Apptimized TO GO agent must be installed and launched on a local PC by the local administrator. |
Case 2. A customer implements Apptimized TO GO agent with the TO GO hypervisor connector scenario.
The figure below shows the scheme of the Apptimized TO GO infrastructure.
The infrastructure components details are described in Table 2.
Table 2. Infrastructure components
Component |
Details |
1. Apptimized Portal |
The platform where Apptimized customer manages projects portfolios. Requires an active project with enabled and configured Apptimized TO GO settings. Technical requirement for working in Apptimized: 1. Browsers:
2. Enabled Java-script in browser; 3. Speed of internet connections – min 50 Mb/s. 4. Enabled firewall white list: 195.201.82.88; 195.201.170.90; https://app.apptimized.com/; https://rdproxy.apptimized.com/; https://cdn.apptimized.com; *.chatlio.com |
2. Customer Environment |
Information technology environment, including software, hardware, and systems (e.g., endpoint PCs, VMs, servers, networks). The access of endpoint PC or VM to the 80 and 443 port of the app.apptimized.com host is a prerequisite. |
2.1. RDP proxy server |
RDP proxy server is a third party between the customer and the service (the Apptimized Portal). RDP proxy server helps to provide a rather high level of protection of customer’s sensitive data and valuable information and to achieve anonymity. A Docker engine versions 19.03 and above are used. Docker container is used to provide a virtual desktop environment using the RDP proxy server. A Docker container image is a lightweight, standalone, executable package of software that includes a full asset portfolio of functionality to run an application (i.e., code, runtime, system tools, system libraries and settings). ks uniformly despite differences for instance between development and staging[1]. RDP proxy server is used to display VM in browser. Otherwise, it can be skipped. Note. A minimal specification for RDP proxy server (to handle 15 VM’s at the same time) are the following: |
2.2. TO GO hypervisor server |
This is a server with functionality to manage TO GO hypervisor connector. |
2.3. TO GO hypervisor connector |
Apptimized TO GO hypervisor connector is a software that manages the VMs inside customer infrastructure (e.g., launching them, stopping, making snapshots, etc.). A simplified scheme of the Apptimized TO GO hypervisor connector: The following scripting languages implement depending on what virtualization software is used:
|
2.4. VM hypervisor |
This is a server which controls all VM infrastructure |
2.5. Apptimized TO GO agent |
Apptimized TO GO agent is a software that sends information from the VM to Apptimized (i.e., screenshots, user actions, etc.), and does not controls VM in any case. Apptimized TO GO agent allows a customer to turn a local machine, PC's or VM's into Apptimized VM so that they can be used for discovery and testing. The Apptimized TO GO agent must be installed and launched on a local PC by the local administrator. |
Communication process and methods
The Apptimized Portal communicates to the Customer environment via API.
To integrate the Apptimized Portal, the Apptimized TO GO agent must be installed to the endpoint PC.
To identify the customer, a deployment code (i.e. 3D6-111DC-1) or TO GO file (i.e. 11321.Apptimized.togo) from Apptimized is used. Any other identifications from the customer will not be requested.
When data is received from the Apptimized Portal, the Apptimized TO GO agent mounts a network share with source files and prerequisites using Command PromtPrompt commands.
UI automation is used for capturing user interactions while discovery and testing. Screenshots are sent every 500 milliseconds.
UI automation is used to playback the recorded actions in Echo.
The TO GO agent is configured to communicate with the Apptimized Portal using HTTPS protocol. The text box below provides the certificate details:
Issued by – K Software certificate Authority (DV) 2 https://sectigo.com/legal
Version – V3
Signature algorithm – sha256RSA
Signature hash algorithm – sha256
Public key – RSA (2048 Bits)
TLS – 1.2
The information flow content depends on the type of customer activity (see Cases 3-4).
Case 3. A customer discovers/ tests TimKosse_FileZilla_3.46.3_English(United States) via Apptimized TO GO agent. To run the Apptimized TO GO agent a deployment code is used.
Outbound information - a data sent from the Apptimized Portal:
- an application metadata;
Application vendor - Tim Kosse;
Application name - FileZilla;
Application version - 3.46.3;
Application language - English(United States)
- an action mode metadata;
Echo enabled - True;
Mode - Discovery;
Self service mode - No.
Inbound information - a data sent to the Apptimized Portal:
- a request to receive the manifest;
- records of the customer's actions.
"Type": 10,
"HasKeyboardFocus": true,
"Text": "hello",
"InitialText": null,
"Id": "7167ac61f40342d89cf061f61cab6d49",
"ProducerId": null,
"Window": {
"Title": "*new 2 - Notepad++",
"Screenshot": in base64 string format
Case 4. A customer discovers/ tests TimKosse_FileZilla_3.46.3_English(United States) via Apptimized TO GO agent. To run the Apptimized TO GO agent a TO GO file is used.
Outbound information - a data sent from the Apptimized Portal:
- TO GO file - Apptimized.togo.
Inbound information - a data sent to the Apptimized Portal:
- records of the customer's actions.
"Type": 10,
"HasKeyboardFocus": true,
"Text": "hello",
"InitialText": null,
"Id": "7167ac61f40342d89cf061f61cab6d49",
"ProducerId": null,
"Window": {
"Title": "*new 2 - Notepad++",
"Screenshot": in base64 string format