Documentation

Practical guides for deploying agents, managing endpoints, and getting the most out of DEXtra.

Docs Getting Started Quick Start Guide

Quick Start Guide

Get DEXtra running and your first endpoint reporting in under 5 minutes. No server setup on your end — just sign in, deploy an agent, and start managing.

Prerequisites: A DEXtra account and at least one Windows endpoint (Windows 10/11 or Server 2016+). The agent runs as a background service — no user interaction required.

1. Deploy Your First Agent

Sign in to the DEXtra dashboard and navigate to Deploy Agents. Select your organization and site, then generate a deployment token. You'll get a pre-configured installer that's ready to drop onto any Windows machine.

powershell
# Option A: GUI installer — double-click and follow the wizard
# Token and server are pre-filled from the download

# Option B: Silent install for GPO / Intune / SCCM
msiexec /i DEXtraSetup.msi /quiet

# Option C: Silent install with custom parameters
DEXtraSetup.exe /quiet /url YOUR_SERVER /token YOUR_TOKEN
That's it. The agent connects to the platform automatically. You'll see the endpoint appear in your dashboard within seconds — with full system details already populated.

2. Dashboard Overview

The DEXtra dashboard is your single pane of glass for everything. Every tool, every endpoint, every ticket — one place.

Agent Overview

Live grid of every connected endpoint — status, OS, hardware specs, resource usage, and one-click actions. Tree view organizes agents by organization and site.

AI Helpdesk

End users chat with an AI technician that can pull live system data, diagnose root causes, propose action plans, and execute approved fixes — all without human intervention.

Monitoring & Alerts

Set threshold policies for CPU, RAM, disk, services, and more. Alerts fire to email, Teams, or Slack. Auto-resolve rules close transient alerts automatically.

Remote Access

Full remote desktop from the dashboard — native client for daily work, browser-based web remote for quick access from any device. Plus live PowerShell shells.

Security

Managed Defender policies, SIEM/XDR event dashboard, file integrity monitoring, and compliance scoring — all from one security hub.

Patching & Scripts

Scan for missing patches, set approval policies, and deploy updates on your schedule. Build a reusable script library with scheduled execution.


Agent Deployment

DEXtra gives you multiple ways to get agents onto endpoints, from one-off installs to fleet-wide rollouts.

Deployment Methods

GUI Installer

Download from the deploy portal, double-click, and follow the guided wizard. Server address and token are pre-filled when you download from the dashboard.

Silent / MSI Install

Standard MSI package for Group Policy, Intune, SCCM, or any deployment tool you already use. Pass parameters at install time or pre-bake them into the download.

Deploy Portal

Generate time-limited install tokens scoped to a specific org and site. Share the download link with a client or technician — the installer handles the rest.

Updating Agents

Agents can be updated remotely from the dashboard — no need to touch the endpoint. Right-click an agent and select Update. The agent downloads the update, verifies its integrity, and applies it automatically. The service restarts itself when done.

Integrity Check: Every update package is verified with a cryptographic hash before installation. Corrupted or tampered packages are rejected automatically.

Troubleshooting

  • Agent not appearing? Verify the endpoint can reach your DEXtra server. Check that the install token hasn't expired (tokens are valid for 30 days).
  • Agent showing offline? The agent reconnects automatically after network interruptions. If it stays offline, check the Windows service is running (service name: DEXtraAgent).
  • Tray icon not showing? The tray companion runs in the logged-in user's session. If no user is logged in, the background service still operates normally.

AI Helpdesk

DEXtra's AI helpdesk is not a chatbot — it's an autonomous L1 technician that can read live endpoint data, diagnose issues, build action plans, and execute fixes with your approval.

How It Works

When a user or technician opens a conversation about an endpoint, the AI:

  • Reads live system data from the endpoint (hardware, services, event logs, installed software, resource usage)
  • Correlates the symptoms against known patterns and your Knowledge Base
  • Proposes an action plan with clear steps and a risk rating (low / medium / high)
  • Waits for approval before executing any changes on the endpoint
  • Closes the ticket automatically with a resolution note — or escalates to a human if it can't resolve
Cost Control: Background monitoring, inventory, patching, and alerting do not consume AI conversation credits. Only direct helpdesk conversations count toward your plan's limits.

Approval Workflow

Every action the AI proposes must be approved before it runs. The approval prompt shows exactly what will happen, which endpoint is affected, and the assessed risk level. You can approve, modify, or reject any step.

End users interacting via the tray app also see approval prompts — they can accept or decline changes to their own machine. High-risk actions are always escalated to a technician.

Knowledge Base

Build an internal wiki of SOPs, known fixes, and client-specific notes. The AI reads your Knowledge Base articles automatically when resolving tickets — so the more you document, the smarter and faster it gets. Organize articles by category and search across everything.


Monitoring & Alerts

Set up automated monitoring policies that run continuously in the background. When a threshold is breached, DEXtra fires alerts to the channels you configure.

Creating Policies

Navigate to Monitoring in the sidebar. Each policy defines what to watch and when to alert:

  • Resource thresholds — CPU usage, memory usage, disk space (e.g., alert when disk drops below 10%)
  • Service monitoring — Watch critical Windows services and alert if they stop
  • Custom checks — Define your own conditions with flexible threshold operators

Policies can be scoped to specific organizations, sites, or individual agents.

Alert Channels

Alerts can be sent to multiple destinations simultaneously:

  • Email — Available on all plans
  • Microsoft Teams — Webhook integration for real-time channel notifications
  • Slack — Webhook integration for Slack channels

Each alert includes full context: which agent, what triggered it, current value vs. threshold, and a direct link to the agent in the dashboard.

Auto-resolve rules automatically close alerts when the condition returns to normal — so your team doesn't waste time on transient spikes.


Remote Access

DEXtra provides two ways to connect to any managed endpoint, plus a live remote shell for command-line work.

Native Remote Desktop

Full-featured remote desktop powered by RustDesk, an open-source remote access solution. Launch it from the dashboard by right-clicking an agent and selecting Remote Desktop — DEXtra opens the RustDesk client with credentials pre-filled. Connections are encrypted end-to-end through a self-hosted relay, so traffic never touches third-party servers.

Web Remote Desktop

Need to connect from a machine that doesn't have RustDesk installed? Use Web Remote — a browser-based remote desktop built on the RustDesk web client. Works from any device, no plugins, no installs, no firewall changes. Open it directly from the dashboard and you're connected in seconds.

Remote Shell

Drop into a live PowerShell session on any online agent. Run commands, check configurations, or troubleshoot issues in real time. The shell runs with appropriate privileges on the endpoint and captures full output in the dashboard.

File Browser & Registry

Browse the remote file system, upload and download files, and navigate the Windows registry — all from the dashboard. No need to open a remote desktop session for quick file checks or registry edits.


Security

Security is built into every layer of DEXtra — from how credentials are stored, to how commands are filtered, to how access is controlled. This isn't an add-on module; it's foundational.

Data Protection

  • Credentials are encrypted at rest on both the endpoint and the server using industry-standard authenticated encryption. They are never stored in plaintext.
  • Connections between agents and the platform are encrypted in transit. Remote desktop sessions use end-to-end encryption with ephemeral credentials.
  • Audit trail records every action taken by every user on every endpoint — who, what, when, and the result.

Command Safety

AI-generated commands pass through a safety layer before execution. Dangerous or destructive operations are blocked automatically. Organizations can customize allowed and blocked command patterns to match their security policies.

Roles & Permissions

DEXtra uses a four-tier role model. Each role inherits the permissions of the tier below it:

  • L1 Technician — View agents, read system data, interact with AI helpdesk
  • L2 Technician — Execute scripts, manage patches, remote shell access, approve AI actions
  • Supervisor — Manage users, view reports and KPIs, configure monitoring policies
  • Admin — Full access including org settings, integrations, and security configuration

Roles are scoped per organization — a technician can be L2 in one org and L1 in another.

Managed Defender

Manage Microsoft Defender across your entire fleet from the dashboard:

  • View real-time protection status and threat detections across all endpoints
  • Push antivirus policies (real-time protection, cloud-delivered protection, scan schedules)
  • Trigger on-demand quick or full scans on individual agents or in bulk
  • Quarantine or allow detected threats remotely

SIEM & XDR

The built-in SIEM dashboard aggregates security events from across your fleet into a single, searchable timeline:

  • Security event ingestion — Collects and correlates security-relevant events from all managed endpoints
  • File integrity monitoring — Tracks changes to critical system files and alerts on unexpected modifications
  • Compliance scoring — Security configuration assessment with per-agent scores and fleet-wide reporting
  • Severity-coded timeline — Filter events by severity, type, and time range. Drill into any event for full details.

MFA & SSO ENTERPRISE

Enterprise plans support multi-factor authentication and single sign-on for dashboard access:

  • TOTP — Standard time-based one-time passwords (Google Authenticator, Authy, 1Password, etc.)
  • Backup codes — One-time recovery codes for when your authenticator isn't available
  • SSO — Sign in with your existing identity provider (Azure AD, Okta, Google Workspace, OneLogin, JumpCloud)
  • Org-level enforcement — Admins can require all users in an organization to set up MFA

Patch Management

Keep every endpoint up to date without spreadsheets or manual checks.

How It Works

  • Scan — DEXtra scans endpoints for missing Windows updates on a regular schedule (or on demand)
  • Review — Missing patches appear in the dashboard grouped by severity (Critical, Important, Optional)
  • Approve — Set approval policies to auto-approve certain categories, or review each patch manually
  • Deploy — Push approved patches to individual agents, sites, or your entire fleet on a schedule
  • Report — Compliance reports show patch status across all endpoints — who's current, who's behind, and by how much

Script Library

Build a library of reusable PowerShell and batch scripts. Organize them by category, test them on individual agents, then deploy to groups. Every execution is logged with output, duration, and exit code.

Task Scheduler

Schedule scripts and maintenance tasks to run on a recurring basis — daily maintenance windows, weekly cleanups, monthly compliance checks. Define the schedule, target agents, and DEXtra handles the rest.


Organization Management

For MSPs managing multiple client organizations, DEXtra provides centralized control without sacrificing per-client isolation.

Multi-Org Structure

  • Organization hierarchy — Each client is a separate org with their own agents, sites, users, and settings
  • Centralized overview — See agent counts, health status, security scores, and recent activity across all your client orgs at a glance
  • Audit trail — Every administrative action is logged with timestamps, user attribution, and full searchability

Users & Teams

Add technicians and assign them roles per organization. Supervisors see KPI dashboards tracking ticket resolution, AI vs. human resolution rates, and team performance. Integrations with ConnectWise Manage keep your PSA and RMM in sync.