The TJ-II remote participation design has focused initially on providing remote access to elements that depend exclusively on characteristics of the TJ-II environment: data acquisition, data access, and diagnostics control systems. Aspects related to advanced display tools, audio information from the control room or videoconference sessions can be addressed, at least in a first step, by using standard solutions. Remote access will be accomplished through http servers and web browsers as they are standard elements available on all platforms. Access security rests on a validation scheme in which users are identified through a username and password, these data being transferred in a secure way by using a secure socket layer (SSL). After username and password validation, the security system assigns a session ticket to the user, in which the user profile (access authorization list) is encoded. User profiles determine several access levels to the system. Such levels delimit the authorizations for accessing different services according to the allowed degree of interaction of remote users with the TJ-II environment. The ticket will be sent in every user query, in order to test user permission for the requested action. Services can be classified into five groups: Measurement channel setup, read/write access to the TJ-II databases (raw data, analyzed data, elaborated data, and relational databases), diagnostic control system monitoring/programming, advanced data acquisition system configuration and, finally, reading/writing information on TJ-II operation logbook. The TJ-II remote participation system is strongly coupled with the local data acquisition system.